Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/0d32fe-c9da-4493-ab8a-03afacea7010/1/NwbduxkHocI-MTM7JQu365H-vKU.roa
File: NwbduxkHocI-MTM7JQu365H-vKU.roa (raw, json)
Hash identifier: h0SJCmGVMOVuAZuxhcZiCmvBpoVg4TwBBzEPhEopXeY=
Subject key identifier: 37:06:DD:BB:19:07:A1:C2:3E:31:33:3B:25:0B:B7:EB:91:FE:BC:A5
Certificate issuer: /CN=57d993319dcc9297694318b246eb36f55ff1370e
Certificate serial: 01856EA69126A97F0C0423BDDFC497941A4D
Authority key identifier: 57:D9:93:31:9D:CC:92:97:69:43:18:B2:46:EB:36:F5:5F:F1:37:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V9mTMZ3MkpdpQxiyRus29V_xNw4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/0d32fe-c9da-4493-ab8a-03afacea7010/1/NwbduxkHocI-MTM7JQu365H-vKU.roa
Signing time: Sun 01 Jan 2023 18:44:47 +0000
ROA not before: Sun 01 Jan 2023 18:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41692
IP address blocks: 194.54.92.0/22 maxlen: 22
2001:7f8:3a::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:a6:91:26:a9:7f:0c:04:23:bd:df:c4:97:94:1a:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57d993319dcc9297694318b246eb36f55ff1370e
Validity
Not Before: Jan 1 18:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3706ddbb1907a1c23e31333b250bb7eb91febca5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:42:9a:98:7f:18:bc:20:a6:de:f2:be:93:ce:
d5:24:02:0b:d9:11:8a:93:5d:ad:79:75:da:49:50:
73:56:9c:f5:03:4f:79:d3:2d:c7:45:45:f3:bb:c6:
68:44:07:c2:14:52:4a:b3:9d:65:d4:ed:43:3b:c1:
9d:19:3b:47:08:bd:89:30:24:58:6d:96:96:e6:b5:
19:b0:3d:d1:03:11:70:2b:d6:89:df:b2:0e:2f:1b:
9b:e2:be:4a:ab:a8:3b:1f:19:c6:2e:cc:72:e9:d1:
ae:fc:5b:65:5b:07:12:8d:71:1d:9c:1a:a8:3e:1b:
6b:97:8b:14:c4:80:03:00:30:ff:0c:c7:64:5c:37:
6b:67:a2:8a:85:ac:0b:84:7f:a7:a6:9e:1f:43:a8:
89:35:c3:0f:88:db:4d:fe:26:bc:ff:7d:e4:d2:43:
1b:7a:e1:16:87:6a:4c:6c:3c:4a:1c:54:2e:cc:e3:
be:04:2c:ab:45:57:c6:00:bc:12:7d:87:e0:66:b0:
e5:6d:d7:48:04:69:15:dc:33:27:54:23:da:18:8d:
bc:65:96:92:2a:6e:62:93:0d:db:b0:70:d9:79:a9:
23:dc:4e:b9:10:22:55:3b:b0:22:ee:1f:10:02:ea:
20:44:fa:ae:be:78:49:97:d7:5f:3f:99:c3:5a:6a:
2d:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:06:DD:BB:19:07:A1:C2:3E:31:33:3B:25:0B:B7:EB:91:FE:BC:A5
X509v3 Authority Key Identifier:
keyid:57:D9:93:31:9D:CC:92:97:69:43:18:B2:46:EB:36:F5:5F:F1:37:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V9mTMZ3MkpdpQxiyRus29V_xNw4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/0d32fe-c9da-4493-ab8a-03afacea7010/1/NwbduxkHocI-MTM7JQu365H-vKU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/0d32fe-c9da-4493-ab8a-03afacea7010/1/V9mTMZ3MkpdpQxiyRus29V_xNw4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.54.92.0/22
IPv6:
2001:7f8:3a::/48
Signature Algorithm: sha256WithRSAEncryption
99:7d:a5:f3:6d:0f:ba:d2:9f:04:73:a7:58:80:39:07:e5:1d:
e7:b0:14:b0:57:61:68:83:26:f3:3b:7c:5f:12:cd:5b:4f:c7:
c5:02:90:ed:62:ca:94:c0:20:5c:64:7c:bf:cc:6d:2e:ac:29:
fb:64:9c:5b:cf:f6:1c:a0:11:47:52:8b:b4:06:d3:3f:f2:dc:
6f:1d:ee:e1:fe:aa:47:29:a6:1b:12:c2:58:58:d5:56:6b:e4:
5d:4d:86:02:39:7d:2b:92:99:a9:4a:ee:2e:df:63:cc:80:7d:
31:48:1f:62:3b:a9:52:e1:85:9a:76:2c:19:91:d8:ef:75:2a:
b3:98:bd:99:3b:b3:25:c1:5e:f6:6e:8f:99:88:f6:16:6f:f3:
90:b2:e9:59:11:d8:27:a4:1a:12:00:1a:6a:8c:d2:cf:9f:0a:
d9:18:9b:ac:b9:86:c3:40:a3:1a:94:62:87:c0:2d:89:d6:23:
e5:d6:a5:26:09:54:7b:e8:72:49:8c:e2:53:20:3c:b1:1f:9f:
aa:92:5d:a1:85:57:80:31:f9:13:16:3e:0f:37:59:fc:15:07:
79:24:6c:20:ad:b1:77:15:87:11:d1:52:db:8d:5a:3e:5d:d9:
4e:2f:32:eb:2a:97:22:07:e3:50:b3:e3:b9:b4:b4:8e:bb:2c:
ff:8b:9c:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:23 2024 by rpki-client on console-fra.rpki-client.org