Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/235fec-afc9-4d2f-8b59-a99ea91cb5b9/1/nr5vjJs75H2ES95ucVBfaNbZU0o.roa
File: nr5vjJs75H2ES95ucVBfaNbZU0o.roa (raw, json)
Hash identifier: B7grzgkdfVFXmu2hhDh/0OLWvzrNtIGohZqnVJg+ua0=
Subject key identifier: 9E:BE:6F:8C:9B:3B:E4:7D:84:4B:DE:6E:71:50:5F:68:D6:D9:53:4A
Certificate issuer: /CN=76a372b754e49208d646aa7859e348b475e526d2
Certificate serial: 0186969532CB83E5E018EF9E8C1E806D2E32
Authority key identifier: 76:A3:72:B7:54:E4:92:08:D6:46:AA:78:59:E3:48:B4:75:E5:26:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dqNyt1TkkgjWRqp4WeNItHXlJtI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/235fec-afc9-4d2f-8b59-a99ea91cb5b9/1/nr5vjJs75H2ES95ucVBfaNbZU0o.roa
Signing time: Tue 28 Feb 2023 05:53:25 +0000
ROA not before: Tue 28 Feb 2023 05:53:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31549
IP address blocks: 185.211.84.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 27 Sep 2023 10:35:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:96:95:32:cb:83:e5:e0:18:ef:9e:8c:1e:80:6d:2e:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76a372b754e49208d646aa7859e348b475e526d2
Validity
Not Before: Feb 28 05:53:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9ebe6f8c9b3be47d844bde6e71505f68d6d9534a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:d0:5a:21:fb:99:28:6e:78:5e:ab:d4:80:d1:
d3:92:bf:98:9b:a8:b2:66:0c:20:c6:00:7d:00:09:
09:af:93:6e:7e:39:51:13:36:2b:fb:e4:b0:2b:69:
78:99:6a:96:9e:7c:62:3b:2e:db:4f:8a:5b:84:c7:
c4:52:2e:96:9b:76:43:58:09:43:a2:3d:51:b3:97:
96:51:62:5f:dc:c5:b5:a5:ca:6c:61:e7:59:ee:76:
8e:22:3f:a8:98:13:32:c7:a9:13:00:4f:82:9f:69:
19:6d:8d:e6:62:e7:38:af:bc:13:97:bf:19:58:63:
4c:e9:75:a3:dd:96:8d:da:c8:f2:6b:e7:0d:ed:e5:
50:5e:1e:e6:64:a4:2b:d8:9b:15:36:aa:56:25:00:
c8:98:12:28:d4:b0:c7:7c:f1:fa:87:f5:91:ee:41:
a2:6e:b3:b0:f9:32:ff:c2:cc:b5:7a:e3:a2:95:8b:
11:83:fa:30:c9:e9:cf:5d:db:ca:f9:ea:5d:d5:2f:
98:37:92:e9:0c:35:d9:1d:e9:a3:52:eb:12:ca:cc:
a3:52:b9:6f:72:7a:6d:24:56:17:41:24:bc:c1:69:
56:e2:59:d3:8a:62:90:bd:1c:4e:33:59:61:4f:e6:
74:cf:85:11:b7:cc:97:4b:67:e7:a6:f8:34:1b:94:
73:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:BE:6F:8C:9B:3B:E4:7D:84:4B:DE:6E:71:50:5F:68:D6:D9:53:4A
X509v3 Authority Key Identifier:
keyid:76:A3:72:B7:54:E4:92:08:D6:46:AA:78:59:E3:48:B4:75:E5:26:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dqNyt1TkkgjWRqp4WeNItHXlJtI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/235fec-afc9-4d2f-8b59-a99ea91cb5b9/1/nr5vjJs75H2ES95ucVBfaNbZU0o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/235fec-afc9-4d2f-8b59-a99ea91cb5b9/1/dqNyt1TkkgjWRqp4WeNItHXlJtI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.211.84.0/24
Signature Algorithm: sha256WithRSAEncryption
35:01:65:72:57:1d:d8:d3:c8:c1:32:f0:7a:b4:7c:91:f5:14:
ad:3e:f3:c9:bc:8e:11:94:cf:e6:8f:b2:a6:1b:3c:55:2e:24:
5c:e2:83:98:22:8b:35:36:e5:a3:1d:e9:41:81:39:a4:cd:55:
c2:24:22:93:64:79:05:f0:88:bd:d8:63:49:c0:3a:e0:67:49:
a8:68:b3:2e:8b:37:59:5c:c8:d3:73:56:a2:80:da:72:cd:f9:
f6:49:64:a0:78:a7:8f:93:9f:97:8c:fa:f3:78:14:2e:06:af:
63:c1:c6:30:ee:66:0f:d0:43:6f:02:56:59:27:4d:1a:d4:6a:
a2:d0:a6:e3:5b:a9:61:40:a8:6f:25:dc:f8:75:4c:0c:14:03:
12:53:67:b6:a6:0f:c2:ba:71:f8:84:02:02:39:c4:d7:a7:44:
34:8e:3c:c1:f6:2d:67:7d:76:9b:d8:32:54:8a:bf:36:de:b5:
7c:5b:ec:59:cd:42:89:fc:e5:5d:aa:a1:20:bb:71:1c:bb:00:
31:a8:8b:ca:5b:5a:b2:50:b7:7f:48:9d:31:28:cf:80:79:14:
2f:54:ed:b0:41:20:5a:f3:d2:e6:83:4f:67:6a:78:63:43:05:
ae:ad:c6:8c:1e:52:dd:fe:7f:5a:6d:72:3e:e8:17:67:01:c0:
e0:02:6e:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:12 2024 by rpki-client on console-fra.rpki-client.org