Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/Nw-NH3EfG9wYr1gsukdvzPDk_tQ.roa
File: Nw-NH3EfG9wYr1gsukdvzPDk_tQ.roa (raw, json)
Hash identifier: liIwj6FNL/uYen6km/PefEcsTuaOJIDexwM7bGX94ZM=
Subject key identifier: 37:0F:8D:1F:71:1F:1B:DC:18:AF:58:2C:BA:47:6F:CC:F0:E4:FE:D4
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 018573900E02DFFCF6ECBA60CD7CCD9395F4
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/Nw-NH3EfG9wYr1gsukdvzPDk_tQ.roa
Signing time: Mon 02 Jan 2023 17:38:18 +0000
ROA not before: Mon 02 Jan 2023 17:38:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211772
IP address blocks: 5.182.48.0/24 maxlen: 24
2a0b:b81::/46 maxlen: 48
Validation: Failed, certificate revoked on Tue 07 Nov 2023 15:28:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:90:0e:02:df:fc:f6:ec:ba:60:cd:7c:cd:93:95:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 2 17:38:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=370f8d1f711f1bdc18af582cba476fccf0e4fed4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:0d:04:17:3f:6e:46:73:f7:df:ef:b8:08:e5:
a7:18:cc:72:8d:35:f4:ea:b4:ec:8a:17:f0:af:23:
c0:10:ef:02:b2:c8:68:28:39:9e:7a:1b:9c:7d:17:
20:20:a9:ee:7d:67:56:91:f7:17:b9:9c:9d:8f:84:
da:18:ac:46:7d:96:ef:b6:a9:6a:f2:42:25:02:74:
78:c5:74:46:6b:28:d8:c2:61:87:90:1e:4c:76:6a:
23:7e:52:23:51:e1:59:b3:ea:60:7e:05:0e:1f:10:
fe:97:13:24:92:8c:4d:5a:ef:21:ec:bf:f3:62:ea:
27:8d:8b:24:d4:5c:6f:55:3c:43:d1:9d:66:3d:d0:
48:8e:15:25:b6:82:52:6c:0b:f6:a4:a9:1a:10:2f:
e9:bf:37:ee:b7:d2:e8:2e:42:84:e9:aa:36:d5:6e:
08:dc:21:49:de:3b:5d:45:64:47:62:f2:58:9d:a2:
0b:85:ca:23:1c:6f:be:80:72:90:fb:64:43:89:da:
b8:65:ea:3c:b5:2a:08:42:3d:f2:94:3a:e4:77:50:
2b:ea:cf:0e:a2:5c:b7:46:bc:a8:ac:a4:19:d0:46:
94:e3:99:d9:2f:b5:dc:6f:47:12:21:e9:53:7b:77:
83:2a:20:3c:06:ff:f4:2c:93:29:22:c1:9b:3f:39:
af:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:0F:8D:1F:71:1F:1B:DC:18:AF:58:2C:BA:47:6F:CC:F0:E4:FE:D4
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/Nw-NH3EfG9wYr1gsukdvzPDk_tQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.48.0/24
IPv6:
2a0b:b81::/46
Signature Algorithm: sha256WithRSAEncryption
2b:58:83:57:7a:95:70:8c:af:fd:27:ca:4e:34:74:60:8d:0d:
54:56:11:f2:47:cf:e2:be:9c:4a:02:63:db:13:e8:66:bc:50:
ce:8e:ca:82:b3:4b:0f:6a:45:e3:e3:a6:cd:69:07:a6:02:6c:
03:f5:1a:4e:1b:2c:20:de:3a:66:ad:92:42:f9:96:76:8e:29:
f7:36:52:72:d5:15:36:2e:e5:c1:9e:23:fc:57:fa:2b:61:38:
45:4b:2f:20:1d:ea:c2:a4:1f:2d:62:a3:5f:3b:81:35:b8:c8:
bb:8b:ce:87:64:d2:bf:db:a4:ef:88:90:64:f1:95:2d:a1:d0:
40:ee:95:31:65:81:1b:98:05:fb:6c:a0:bc:97:f4:a2:8a:6c:
25:f2:9e:21:1a:6c:82:b4:62:52:0c:72:d7:ce:51:e2:d1:b9:
e0:74:4e:6f:4a:e5:c1:55:2d:7a:75:f2:d1:ca:9e:65:2b:5b:
f9:c9:6f:54:ed:12:86:45:8f:bc:0a:4a:28:d9:1b:b4:09:06:
5c:de:da:79:ad:26:3c:26:6b:6e:f1:00:d1:90:e0:97:49:83:
c4:13:2b:0b:ab:e8:6a:af:39:e0:da:e4:23:20:c3:02:da:ff:
5a:e4:96:00:97:8a:ec:31:c5:68:77:9c:56:f2:fa:5b:c8:c1:
b0:78:43:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:49 2024 by rpki-client on console-fra.rpki-client.org