Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/nCTCc4t5wGx1LngKV228zNxSneE.roa
File: nCTCc4t5wGx1LngKV228zNxSneE.roa (raw, json)
Hash identifier: oAV3VBHcvj0X3f3eqw3kmKxBC3MBdUMTNq2dDgONKtM=
Subject key identifier: 9C:24:C2:73:8B:79:C0:6C:75:2E:78:0A:57:6D:BC:CC:DC:52:9D:E1
Certificate issuer: /CN=ed30a131718560a34ab3493884e858ec431f6ad1
Certificate serial: 018EEB9D6B78C86DCA52A36A2B787ADA5EC6
Authority key identifier: ED:30:A1:31:71:85:60:A3:4A:B3:49:38:84:E8:58:EC:43:1F:6A:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7TChMXGFYKNKs0k4hOhY7EMfatE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/nCTCc4t5wGx1LngKV228zNxSneE.roa
Signing time: Wed 17 Apr 2024 10:32:26 +0000
ROA not before: Wed 17 Apr 2024 10:32:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62257
IP address blocks: 194.147.150.0/24 maxlen: 24
194.180.208.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 13 May 2024 16:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:eb:9d:6b:78:c8:6d:ca:52:a3:6a:2b:78:7a:da:5e:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed30a131718560a34ab3493884e858ec431f6ad1
Validity
Not Before: Apr 17 10:32:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9c24c2738b79c06c752e780a576dbcccdc529de1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:5c:2c:1a:05:0c:b3:db:f0:03:42:3c:0a:17:
e0:52:81:2d:03:b5:43:49:a9:8c:49:09:f6:65:a3:
58:0a:4f:98:32:1f:ec:92:ef:cc:24:71:ed:f7:58:
1a:10:0d:8f:49:94:41:6d:47:3c:44:a0:b9:ce:b9:
d8:6f:72:6e:35:70:fe:94:fc:75:4c:dd:5d:e2:34:
56:64:9e:cb:56:c8:c4:70:fa:d8:8d:a0:c8:a3:02:
5f:54:b1:68:cd:04:cc:7d:53:f9:8c:5e:44:09:7a:
8d:95:af:a7:bb:9f:8b:0d:2e:d6:b3:3c:a1:0a:30:
ec:05:76:05:ff:a8:29:0a:1c:b0:64:c7:ea:8c:9a:
25:06:f0:f2:f1:bd:59:af:46:ce:64:79:08:ab:ae:
0c:c5:3e:64:b0:b3:19:7a:ca:26:33:e9:49:38:55:
9d:10:ed:b9:fd:f0:16:f5:f1:f3:57:02:03:fc:19:
2e:1c:86:d3:0e:3d:2a:5b:ae:f5:ab:6f:2a:d7:ea:
7f:5a:e7:33:9c:8d:17:20:04:46:ed:95:fe:2b:b1:
c5:4a:cb:f4:a0:16:cc:1f:6d:c8:82:92:37:5e:4e:
f2:30:96:17:15:b1:0c:89:c1:88:3b:00:a9:66:36:
37:81:95:62:1a:14:6a:1e:9c:4e:18:f0:a5:b1:41:
05:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:24:C2:73:8B:79:C0:6C:75:2E:78:0A:57:6D:BC:CC:DC:52:9D:E1
X509v3 Authority Key Identifier:
keyid:ED:30:A1:31:71:85:60:A3:4A:B3:49:38:84:E8:58:EC:43:1F:6A:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7TChMXGFYKNKs0k4hOhY7EMfatE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/nCTCc4t5wGx1LngKV228zNxSneE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/7TChMXGFYKNKs0k4hOhY7EMfatE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.150.0/24
194.180.208.0/24
Signature Algorithm: sha256WithRSAEncryption
15:92:0f:b5:63:9f:f3:61:f7:9c:02:63:be:6d:f2:cf:63:48:
cf:47:7f:d0:8c:13:25:0a:a1:2c:02:11:16:b9:b1:bb:69:de:
8d:76:56:d7:33:c1:f5:78:1f:0f:59:f3:61:d5:89:f0:50:ad:
90:e2:95:ce:8f:0a:9e:b1:bc:69:f4:dc:aa:f8:57:85:c4:26:
2b:a3:ac:85:ad:20:82:4e:54:3a:54:b1:be:2d:c4:b6:13:f0:
fc:26:ee:0c:7e:92:e1:41:a4:45:f6:80:24:dd:e0:f9:69:41:
6c:87:81:8b:56:9d:11:03:c2:5e:2c:53:4a:a4:88:c6:ab:bd:
e7:7a:60:60:b9:20:84:d6:5c:74:c7:0f:13:db:74:01:fc:13:
f0:f9:4e:2e:25:39:49:ff:1f:9a:19:73:76:04:ee:32:77:79:
7e:30:6a:48:4a:18:46:75:62:16:56:67:4d:af:c7:72:e9:e4:
09:3b:77:55:e6:80:49:c9:81:24:fd:58:df:d1:f7:c3:cd:61:
83:9f:d4:44:04:ea:f7:3b:33:2f:be:e7:40:40:82:cc:ae:f6:
c2:ef:9f:1e:05:80:15:f8:bc:ad:1a:f2:9d:3e:8f:4d:06:55:
9a:b3:21:93:63:b0:ab:a2:1a:d1:e6:f5:64:92:ed:13:32:89:
de:db:b9:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:15 2024 by rpki-client on console-ams.rpki-client.org