Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/nkaGnmcNs3jrfYuEi_bsc8_tPPI.roa
File: nkaGnmcNs3jrfYuEi_bsc8_tPPI.roa (raw, json)
Hash identifier: caCcTrMUjnmqC3lGSMMZVUpGr0tPDOOX7IUDXtfzb9M=
Subject key identifier: 9E:46:86:9E:67:0D:B3:78:EB:7D:8B:84:8B:F6:EC:73:CF:ED:3C:F2
Certificate issuer: /CN=59dd542781851c0bce5a3ea5cc387650ffc8277e
Certificate serial: 01856EB8EEA52B008CA457BF6FE5ABD59113
Authority key identifier: 59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/nkaGnmcNs3jrfYuEi_bsc8_tPPI.roa
Signing time: Sun 01 Jan 2023 19:04:51 +0000
ROA not before: Sun 01 Jan 2023 19:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201334
IP address blocks: 85.91.116.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:34:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:b8:ee:a5:2b:00:8c:a4:57:bf:6f:e5:ab:d5:91:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59dd542781851c0bce5a3ea5cc387650ffc8277e
Validity
Not Before: Jan 1 19:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9e46869e670db378eb7d8b848bf6ec73cfed3cf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:0c:94:b5:4b:7d:6a:a6:61:b7:d9:d1:ff:0e:
be:53:d8:d8:62:5d:eb:0c:40:f0:eb:b3:c3:c8:f4:
c1:5d:6b:46:2c:f1:db:37:b4:3a:05:62:92:93:4b:
15:26:9c:36:2c:09:24:9d:29:53:59:8d:0b:7f:30:
82:ed:d1:06:0a:89:42:35:a1:32:12:a7:18:ed:df:
3c:d7:4f:b2:36:a2:18:c5:d8:cb:a7:9f:9d:69:0f:
7a:f5:84:9b:da:6e:1c:58:74:67:ca:01:55:b2:e0:
8a:5b:f4:95:51:ef:ae:8a:01:de:5a:0f:45:e5:5e:
c9:a7:22:d1:2f:c4:88:b3:cf:29:ca:d1:c1:2b:0a:
6e:6f:2b:91:09:97:0c:e3:be:42:33:63:35:c4:a6:
35:03:02:98:79:da:30:47:52:c3:52:d1:76:d7:b8:
b3:be:19:6f:00:b3:69:f1:25:f4:2d:39:4a:f3:76:
a1:db:6a:9b:cc:ab:ef:fe:54:cc:df:38:a7:36:61:
e6:27:0a:2d:68:94:e3:7d:1e:0e:94:90:9c:fc:b5:
19:5c:28:33:38:46:d7:01:10:35:c9:ff:45:ab:11:
0d:21:50:04:cd:6d:5d:ae:14:7b:b9:7e:2f:b1:b5:
41:b9:ba:88:0a:e7:ca:17:e0:a0:cc:0e:a1:ac:fc:
ef:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:46:86:9E:67:0D:B3:78:EB:7D:8B:84:8B:F6:EC:73:CF:ED:3C:F2
X509v3 Authority Key Identifier:
keyid:59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/nkaGnmcNs3jrfYuEi_bsc8_tPPI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.91.116.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:5f:ac:fa:7a:9e:02:0b:a1:a7:2b:1b:42:7f:43:0e:90:26:
db:6e:81:e5:83:90:5e:56:63:7a:4c:74:b5:a7:bf:f0:15:93:
b9:bb:69:6f:5d:01:e2:8d:43:e1:5b:9e:83:ca:1f:1e:25:5a:
e5:83:03:fd:70:a1:3c:48:30:ea:e1:8c:6c:ee:27:72:c5:12:
5c:27:2d:5c:4e:87:71:37:a7:09:57:4f:c2:fe:ef:b9:3a:b3:
e7:e2:d6:23:06:25:73:4d:9a:56:6d:06:29:55:ec:f1:2f:f6:
ec:a0:b7:db:84:94:c3:83:84:25:55:1d:7d:a6:e5:2b:75:82:
89:9f:0d:32:00:a0:a6:16:e3:c5:a9:b4:48:83:9d:bd:ea:e3:
91:b6:fc:e4:9c:d9:bd:ac:57:16:99:f3:06:a6:e9:d1:a0:58:
ca:bf:57:97:18:e1:36:65:fb:22:3a:48:de:e4:bf:c4:5b:d5:
9b:14:47:92:b2:74:76:58:50:f9:a6:48:e0:3d:3f:04:42:a3:
ab:76:e5:75:f3:02:ee:87:57:d7:48:30:43:ed:ad:fa:ec:f1:
31:1f:70:94:87:22:d2:53:59:64:90:1f:f2:18:09:80:f2:d8:
47:16:c8:64:79:bd:da:a4:ac:0c:02:53:bd:c0:45:d3:aa:3c:
5f:71:ed:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:21 2024 by rpki-client on console-ams.rpki-client.org