Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/nxLfdrdP9h0ktCfuBOq2BsssD7E.roa
File: nxLfdrdP9h0ktCfuBOq2BsssD7E.roa (raw, json)
Hash identifier: rEOrV/hHsMQ/gHk1CrAXACdhYCIlqweo851nXg50lQQ=
Subject key identifier: 9F:12:DF:76:B7:4F:F6:1D:24:B4:27:EE:04:EA:B6:06:CB:2C:0F:B1
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 018B96515C837736CE85CF6D8C0C973F1005
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/nxLfdrdP9h0ktCfuBOq2BsssD7E.roa
Signing time: Fri 03 Nov 2023 17:53:16 +0000
ROA not before: Fri 03 Nov 2023 17:53:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35711
IP address blocks: 80.96.14.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:96:51:5c:83:77:36:ce:85:cf:6d:8c:0c:97:3f:10:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Nov 3 17:53:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9f12df76b74ff61d24b427ee04eab606cb2c0fb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:26:ca:d9:aa:11:5f:fd:56:b2:ba:75:8c:09:
5d:b1:20:24:b6:ae:7b:0b:2d:03:e2:66:41:37:7f:
5b:fe:08:d9:31:a0:3e:21:f8:ca:35:0e:f3:33:1a:
5f:ba:04:69:00:3c:7b:99:4f:ee:37:73:6e:06:95:
ef:26:58:fb:5a:38:67:3a:b7:c2:1f:db:4f:06:e1:
1c:b3:d7:2c:6e:58:ff:9f:e3:d1:8b:9e:1e:7d:c5:
4c:be:b9:4d:b9:36:d8:38:bf:ef:e0:fd:a3:13:8d:
3a:a5:36:c5:b3:0d:b3:f7:ac:65:cb:37:ae:d5:a7:
c6:d1:39:49:57:f3:34:2b:cd:d2:70:68:5f:ac:46:
58:96:ae:01:77:00:8c:4f:4e:8d:fd:87:1e:7e:0e:
df:1c:57:40:67:c9:39:8d:43:77:2d:10:c6:58:6a:
18:0e:b4:5f:4a:4e:f5:a7:61:bb:13:d0:61:5d:a1:
cb:2b:19:e5:69:03:a5:92:37:fd:86:e8:2b:f4:2e:
55:77:95:08:44:5a:f4:94:42:ae:bf:32:cb:d1:f3:
61:ec:a7:41:d3:5a:5c:07:ee:8e:fc:1e:3f:e1:03:
16:78:40:98:52:69:de:a8:cc:86:9d:9d:10:93:5d:
c7:dc:f7:97:da:ae:a5:25:30:46:73:29:ba:78:6d:
4a:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:12:DF:76:B7:4F:F6:1D:24:B4:27:EE:04:EA:B6:06:CB:2C:0F:B1
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/nxLfdrdP9h0ktCfuBOq2BsssD7E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.14.0/23
Signature Algorithm: sha256WithRSAEncryption
99:1b:59:11:97:29:69:54:e4:73:90:d0:6a:9d:dc:16:d2:3d:
44:5a:d5:59:4f:4e:61:c1:1f:a7:9b:2a:29:86:1e:c2:e6:05:
e4:af:09:bf:d5:34:96:2a:f7:38:d6:60:73:3c:75:b2:4e:17:
ef:a5:91:e7:d0:bf:ca:6e:23:4a:13:62:8c:ab:41:5c:e6:04:
6b:39:cc:76:4a:e9:47:91:95:43:ac:a8:b7:e4:d9:e8:3c:98:
44:43:0f:a7:e6:fe:f1:8b:36:49:5c:42:29:5b:28:fe:79:45:
7f:1f:5a:9f:7c:ad:e4:2a:c7:bf:9c:a5:34:b4:41:67:0b:93:
d2:84:24:0d:3f:b3:f0:c1:23:2d:20:b9:ca:e5:1f:5e:cf:3b:
15:71:2b:49:40:40:37:c5:8d:52:75:af:23:9a:63:30:33:97:
2c:77:19:1a:91:91:38:e7:28:a4:d3:43:76:70:78:2c:ec:d9:
30:07:9a:99:0d:12:57:7f:3a:b6:92:bb:1e:84:07:a9:2d:a5:
f7:cd:37:0f:1b:83:e2:64:51:c8:94:32:d2:d8:9c:da:79:48:
d8:09:b5:5a:54:4b:a9:dd:cd:72:c6:55:37:57:10:59:54:6a:
ed:98:f1:76:ee:fa:d1:26:4f:a7:81:25:8c:34:50:20:88:7b:
da:04:43:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:05 2024 by rpki-client on console-ams.rpki-client.org