Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/099aeb-c713-42f8-91d6-38447855d669/1/nQ8L27qz8eAiDjYcKgi19ZIE5vw.roa
File: nQ8L27qz8eAiDjYcKgi19ZIE5vw.roa (raw, json)
Hash identifier: UlQKjtpD8nrBV8buRxvA+WHwHWoLCudLtxQ1MNQMNCQ=
Subject key identifier: 9D:0F:0B:DB:BA:B3:F1:E0:22:0E:36:1C:2A:08:B5:F5:92:04:E6:FC
Certificate issuer: /CN=64f47c98440f103825c8ea5074298b18cc113e20
Certificate serial: 01856EB9222360BB48A52B1DDD954546A785
Authority key identifier: 64:F4:7C:98:44:0F:10:38:25:C8:EA:50:74:29:8B:18:CC:11:3E:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZPR8mEQPEDglyOpQdCmLGMwRPiA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/099aeb-c713-42f8-91d6-38447855d669/1/nQ8L27qz8eAiDjYcKgi19ZIE5vw.roa
Signing time: Sun 01 Jan 2023 19:05:04 +0000
ROA not before: Sun 01 Jan 2023 19:05:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201639
IP address blocks: 185.3.188.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:b9:22:23:60:bb:48:a5:2b:1d:dd:95:45:46:a7:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64f47c98440f103825c8ea5074298b18cc113e20
Validity
Not Before: Jan 1 19:05:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9d0f0bdbbab3f1e0220e361c2a08b5f59204e6fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:01:be:b8:9e:93:83:2d:67:80:e9:cb:b2:21:
f2:61:d8:c9:2d:b2:81:3c:c5:b2:a6:36:a6:58:74:
6f:b5:20:92:02:de:cc:3f:e5:eb:40:3d:08:87:8d:
0d:d8:f3:81:5c:38:d5:17:f7:1f:fd:ec:f6:ad:2b:
de:86:ed:1a:25:f0:bb:65:51:9f:65:56:35:9f:a2:
67:cb:71:98:b9:3b:cc:4c:99:f1:08:95:6a:a8:e8:
82:e6:aa:43:0d:87:1b:0b:d6:63:1f:66:f0:ec:44:
78:d9:d3:a5:71:ab:87:a0:34:ae:52:d5:3f:4d:74:
2e:63:ab:35:85:59:96:d2:e6:df:82:29:c0:1d:a5:
8d:99:47:89:05:6c:a9:42:4c:19:cb:0b:6d:e7:80:
11:87:50:ad:7a:c0:52:ee:9a:da:67:de:42:33:36:
db:1c:6b:0d:74:df:14:c7:41:fc:a4:1a:50:14:44:
ef:21:6d:f8:48:90:26:2e:7f:4c:0a:a2:f0:1d:d0:
42:88:3b:9c:51:0e:77:83:30:51:6f:68:66:2a:97:
ad:ff:14:9d:22:46:ef:93:70:97:bc:56:24:bf:c8:
fd:29:48:32:99:bf:6d:53:87:9c:4e:54:32:8c:4b:
a4:cd:7e:60:81:fd:53:cf:b5:37:12:08:28:4c:07:
eb:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:0F:0B:DB:BA:B3:F1:E0:22:0E:36:1C:2A:08:B5:F5:92:04:E6:FC
X509v3 Authority Key Identifier:
keyid:64:F4:7C:98:44:0F:10:38:25:C8:EA:50:74:29:8B:18:CC:11:3E:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZPR8mEQPEDglyOpQdCmLGMwRPiA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/099aeb-c713-42f8-91d6-38447855d669/1/nQ8L27qz8eAiDjYcKgi19ZIE5vw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/099aeb-c713-42f8-91d6-38447855d669/1/ZPR8mEQPEDglyOpQdCmLGMwRPiA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.3.188.0/24
Signature Algorithm: sha256WithRSAEncryption
15:74:22:76:be:2b:aa:37:7d:1c:32:31:e0:27:0d:3f:04:3a:
60:f4:34:d6:b9:19:b0:a1:90:40:53:fa:91:d3:d7:8f:fb:79:
30:a4:bf:77:80:f5:be:5f:8a:8c:93:a7:dd:3b:e1:93:42:eb:
9b:00:07:a4:a9:a1:41:66:69:c7:bd:f5:15:6c:32:3d:ec:6d:
41:90:f7:1f:a0:73:81:f7:53:5f:63:75:d9:d9:69:e4:2e:40:
9e:95:53:16:ec:58:3e:11:e7:c2:f2:34:45:ac:b0:c4:97:35:
07:af:d7:98:b4:9c:a7:47:f0:5c:ff:ea:ba:a8:51:03:92:9c:
61:7d:3c:88:9c:3f:77:3a:1d:66:f7:1c:18:db:89:fc:9f:38:
7e:b9:dd:0d:d1:39:fd:21:84:98:99:14:ab:a4:5c:27:32:e4:
91:5b:80:44:d8:58:82:68:23:b6:bc:84:61:7f:43:fb:af:fa:
a5:b5:ee:6d:e8:b1:30:1b:1f:38:a1:2a:c7:18:f4:77:9b:11:
3b:28:f8:fd:2a:8d:e6:8f:f8:b6:9f:cf:d0:f1:e2:9f:cb:ec:
68:25:49:c0:2b:6d:77:16:5c:9f:5c:c6:e3:fb:56:83:f8:00:
87:ae:21:dd:c6:48:f6:64:68:e9:99:22:f7:22:10:bd:52:77:
19:e2:5e:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:28 2024 by rpki-client on console-fra.rpki-client.org