Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/32e650-0cec-4262-bc93-e3dd776489a1/1/68_NHLyLv85AntzjMRRV1tLPrck.roa
File: 68_NHLyLv85AntzjMRRV1tLPrck.roa (raw, json)
Hash identifier: vIjIklm1nJHylL8fZU1GGyUQTKYa+ujQOUcDNRWB/Hw=
Subject key identifier: EB:CF:CD:1C:BC:8B:BF:CE:40:9E:DC:E3:31:14:55:D6:D2:CF:AD:C9
Certificate issuer: /CN=aae89bc3097768acd67c2dd747d3be1adb72e997
Certificate serial: 018571A7AF2A3670A61CF01B3901DBDE2F1B
Authority key identifier: AA:E8:9B:C3:09:77:68:AC:D6:7C:2D:D7:47:D3:BE:1A:DB:72:E9:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/quibwwl3aKzWfC3XR9O-Gtty6Zc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/32e650-0cec-4262-bc93-e3dd776489a1/1/68_NHLyLv85AntzjMRRV1tLPrck.roa
Signing time: Mon 02 Jan 2023 08:44:52 +0000
ROA not before: Mon 02 Jan 2023 08:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41656
IP address blocks: 91.200.73.0/24 maxlen: 24
194.145.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:a7:af:2a:36:70:a6:1c:f0:1b:39:01:db:de:2f:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aae89bc3097768acd67c2dd747d3be1adb72e997
Validity
Not Before: Jan 2 08:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ebcfcd1cbc8bbfce409edce3311455d6d2cfadc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:27:5e:4a:5f:37:15:75:3c:1d:92:20:b6:a9:
87:24:93:83:e4:1f:f6:58:b6:66:ab:9e:f1:0a:c3:
b8:53:54:5e:ef:fc:1c:be:6b:18:9c:3f:84:6d:27:
c1:de:d5:03:66:5f:65:7f:f3:67:5e:84:11:07:e1:
92:fd:c2:f0:ab:cd:76:f4:77:a9:51:18:b6:d5:95:
eb:7a:63:0a:ce:64:23:1c:b8:a4:6d:23:ea:55:9b:
bd:4a:7b:b2:da:29:8e:0f:7f:44:47:30:b6:4e:c6:
e6:40:a6:0b:e2:ce:ba:b2:b7:08:13:88:98:58:3e:
81:bd:eb:cb:a2:64:57:6a:c2:4b:1f:c8:5b:be:fe:
55:b4:0b:e3:27:a5:eb:45:07:72:82:78:8f:38:30:
52:71:c0:95:08:3e:f6:8f:75:80:b5:ee:24:60:8d:
95:e0:25:b4:66:98:f0:2d:6e:a3:a1:db:9c:75:1e:
c8:de:61:ab:e3:38:27:35:da:65:d8:62:8d:a8:c1:
7b:f0:07:e4:e0:b0:49:41:b3:94:9b:75:9c:a0:f6:
ea:fb:b5:e0:69:30:c6:40:c4:1c:5f:f2:ab:62:0a:
90:eb:f4:bd:a5:7f:4b:7c:13:cd:04:fc:a9:17:bf:
ad:a4:8b:94:f2:08:f6:c1:17:06:d1:9a:28:78:9e:
66:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:CF:CD:1C:BC:8B:BF:CE:40:9E:DC:E3:31:14:55:D6:D2:CF:AD:C9
X509v3 Authority Key Identifier:
keyid:AA:E8:9B:C3:09:77:68:AC:D6:7C:2D:D7:47:D3:BE:1A:DB:72:E9:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/quibwwl3aKzWfC3XR9O-Gtty6Zc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/32e650-0cec-4262-bc93-e3dd776489a1/1/68_NHLyLv85AntzjMRRV1tLPrck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/32e650-0cec-4262-bc93-e3dd776489a1/1/quibwwl3aKzWfC3XR9O-Gtty6Zc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.73.0/24
194.145.203.0/24
Signature Algorithm: sha256WithRSAEncryption
40:93:5c:be:52:ce:99:f3:a2:11:be:c2:7f:ef:ae:ce:59:d8:
27:de:6d:b1:19:75:6c:cd:fd:13:d2:69:bc:f4:34:dd:93:3c:
5b:75:58:da:4c:48:20:bb:b8:67:bf:06:7c:98:f0:56:82:d5:
15:f4:8f:8b:13:7b:05:4c:6c:a5:79:fd:a7:be:63:eb:10:6f:
10:2d:3d:7f:59:fb:2e:87:4c:cc:e9:2e:bd:ba:d3:31:c2:37:
a6:51:bd:85:a4:99:0f:a6:80:b7:59:a5:ca:c1:68:df:a8:a7:
b3:ad:ad:a0:0c:b7:3a:24:ea:12:bf:50:f7:67:73:94:f0:6f:
75:59:4e:08:de:7c:b1:58:43:f6:03:69:79:20:af:29:ae:8d:
9e:f2:52:66:bb:7b:c9:19:dc:59:38:5c:5b:37:9c:9b:f5:0b:
c1:fa:b3:42:83:aa:cc:a5:ec:d9:08:92:44:93:e1:d0:1e:cd:
5a:42:fe:23:4b:f0:74:5f:71:e1:e0:2c:be:2d:a0:aa:8d:91:
70:20:f5:f7:15:ce:87:18:fd:2d:cb:b2:d5:62:00:55:65:4d:
cf:be:89:d5:1d:14:1e:44:87:2d:a0:0c:bb:a9:ab:7b:b1:bb:
b9:17:4f:42:fa:88:ca:d9:05:57:53:c0:51:99:2c:fa:cf:dd:
c5:d9:b6:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:47 2024 by rpki-client on console-ams.rpki-client.org