Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/NhCTVJvLXincouVwdBcSfIoZl_o.roa
File: NhCTVJvLXincouVwdBcSfIoZl_o.roa (raw, json)
Hash identifier: sd1qm2m4zD8rGIUrf86Jwl6Jw06g9TTmXn/dLZuvzKA=
Subject key identifier: 36:10:93:54:9B:CB:5E:29:DC:A2:E5:70:74:17:12:7C:8A:19:97:FA
Certificate issuer: /CN=36900183cf08a6e5bc807846294a46062e190e3b
Certificate serial: 01856FF95C3D6D576EE7400E23220F26C6E8
Authority key identifier: 36:90:01:83:CF:08:A6:E5:BC:80:78:46:29:4A:46:06:2E:19:0E:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NpABg88IpuW8gHhGKUpGBi4ZDjs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/NhCTVJvLXincouVwdBcSfIoZl_o.roa
Signing time: Mon 02 Jan 2023 00:54:51 +0000
ROA not before: Mon 02 Jan 2023 00:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212298
IP address blocks: 80.91.218.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 May 2023 14:38:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:5c:3d:6d:57:6e:e7:40:0e:23:22:0f:26:c6:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36900183cf08a6e5bc807846294a46062e190e3b
Validity
Not Before: Jan 2 00:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=361093549bcb5e29dca2e5707417127c8a1997fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:84:38:c4:43:eb:29:f9:3b:35:4c:34:8a:11:
4f:19:2c:a2:2f:4b:12:8f:92:13:64:36:ce:d1:c6:
ce:96:32:d9:ba:0c:37:4a:0d:57:c9:03:aa:18:43:
74:fb:5e:41:ab:d6:02:73:d8:e5:87:ab:1c:51:04:
ee:da:ac:cf:aa:e6:a3:6b:42:a6:4b:2b:8e:95:5c:
da:d1:fb:bf:b3:9c:67:29:54:b2:17:b5:b9:67:4f:
86:73:95:52:29:c4:4b:8b:47:56:4c:06:83:6e:42:
45:be:07:34:63:27:50:ea:6a:5d:61:51:57:86:a6:
ca:70:be:09:07:da:f6:95:b6:28:a7:3f:9b:6f:44:
34:87:63:4e:58:9f:44:84:d4:b3:25:97:af:a5:bc:
75:22:0f:5e:39:2c:d5:ee:b9:87:4b:94:98:e1:48:
4e:ce:1d:14:ea:d6:c1:aa:33:bf:99:16:5b:a0:6b:
c3:09:0f:7f:45:b6:bc:c5:d3:40:0c:fb:cb:09:06:
ab:e9:24:99:2d:4e:48:d3:df:76:00:75:89:29:20:
ad:1e:da:14:42:02:2e:af:05:d6:b6:56:18:05:89:
0f:9d:83:0c:89:2a:80:15:b8:3c:1e:40:10:fa:c6:
79:dc:80:5e:81:e0:a0:bf:f6:b5:79:ad:ca:8c:0f:
fd:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:10:93:54:9B:CB:5E:29:DC:A2:E5:70:74:17:12:7C:8A:19:97:FA
X509v3 Authority Key Identifier:
keyid:36:90:01:83:CF:08:A6:E5:BC:80:78:46:29:4A:46:06:2E:19:0E:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NpABg88IpuW8gHhGKUpGBi4ZDjs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/NhCTVJvLXincouVwdBcSfIoZl_o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/NpABg88IpuW8gHhGKUpGBi4ZDjs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.91.218.0/24
Signature Algorithm: sha256WithRSAEncryption
af:8d:f3:47:c4:33:db:21:29:2a:3e:0c:79:82:1f:7b:74:fc:
f1:1c:f5:67:47:0b:4b:78:63:84:66:a2:59:db:49:f4:db:e3:
91:59:f4:1d:92:12:cc:ce:d1:d3:53:17:ba:1f:ba:fc:88:ae:
d8:b0:d2:80:83:43:c0:2e:98:88:91:39:cc:a9:d1:64:cc:43:
66:60:ad:7c:0d:eb:7f:6d:07:4b:f5:ea:5e:f7:c7:3c:51:11:
6b:03:cd:cb:2e:c5:ef:3c:ec:01:77:c2:0b:f8:8e:85:95:47:
19:8f:dd:55:12:fd:59:4b:ba:49:31:e2:c0:95:b2:51:2c:77:
0c:85:03:57:5e:e4:4e:d5:47:87:a6:82:8d:6d:0d:74:3a:0e:
bf:f1:43:82:ec:fc:20:5b:46:99:ca:34:19:e9:e1:f2:02:a9:
29:ec:71:36:e8:0a:b9:ff:f5:c8:e0:1d:2e:db:5a:a2:11:20:
a1:fd:09:ce:d1:36:fc:c3:53:80:3b:05:27:9f:e9:a0:9f:2e:
e3:30:11:12:0a:ba:27:38:ea:05:3f:c3:b7:f0:96:4a:62:fc:
12:a7:81:ea:43:c4:61:7a:50:f5:7a:e9:6a:67:da:f0:49:34:
df:40:84:9f:82:bc:6d:51:fb:b0:7b:da:b3:6f:15:fc:21:40:
bf:bc:8a:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:29 2024 by rpki-client on console-fra.rpki-client.org