Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/NKO331brjaDMWIJcKyXO7ShmO-A.roa
File: NKO331brjaDMWIJcKyXO7ShmO-A.roa (raw, json)
Hash identifier: 1Tl9wuAWBZKCOOXfaMuyLarlUKZxbfoK/oFqvP+Xd4U=
Subject key identifier: 34:A3:B7:DF:56:EB:8D:A0:CC:58:82:5C:2B:25:CE:ED:28:66:3B:E0
Certificate issuer: /CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Certificate serial: 0192BD4DF9DB87513265C64863ADCA9F649B
Authority key identifier: E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/NKO331brjaDMWIJcKyXO7ShmO-A.roa
Signing time: Thu 24 Oct 2024 06:54:16 +0000
ROA not before: Thu 24 Oct 2024 06:54:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16276
IP address blocks: 89.23.82.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Nov 2024 16:24:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:bd:4d:f9:db:87:51:32:65:c6:48:63:ad:ca:9f:64:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Validity
Not Before: Oct 24 06:54:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=34a3b7df56eb8da0cc58825c2b25ceed28663be0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:67:a8:3e:ba:6a:e3:87:6b:c3:e8:14:03:c5:
c1:65:06:c8:21:30:4e:da:23:cb:ed:7c:14:f3:3d:
e5:70:d6:67:68:f2:c2:b1:fb:73:f1:a8:2d:ef:86:
71:dc:8d:8d:d0:f3:6b:1e:af:cd:fb:07:d3:bb:a9:
1a:f6:74:c6:bf:b8:57:8d:98:a6:cd:a9:60:1b:29:
5c:c4:fb:82:11:dc:52:83:9a:f4:00:43:63:71:79:
e9:60:0e:24:25:a8:33:cb:f9:99:16:7c:a8:bf:55:
a2:db:e9:02:fc:0c:5c:2e:bf:ab:f7:f4:41:5f:66:
cc:07:f3:0e:b1:a2:9a:d5:50:3b:8a:63:cd:ab:11:
ae:e2:50:b3:b2:86:57:d0:4e:f4:eb:a8:e0:a8:8e:
4d:94:6f:0d:75:bb:c5:ac:bb:a4:9a:12:33:51:d1:
59:0a:6f:90:38:bd:ac:a2:81:3c:7c:e3:61:50:25:
de:12:42:97:89:89:ae:7c:66:6b:49:78:f1:8e:91:
dd:9c:50:15:52:c9:96:f7:a1:51:d7:ec:6e:78:92:
74:84:72:43:35:fa:df:fd:46:a6:5e:5a:20:2c:30:
43:21:d3:fa:f1:e0:55:1e:7a:d6:8a:31:52:45:a9:
31:da:c3:54:db:ba:1e:f9:0a:25:72:04:ca:79:37:
b6:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:A3:B7:DF:56:EB:8D:A0:CC:58:82:5C:2B:25:CE:ED:28:66:3B:E0
X509v3 Authority Key Identifier:
keyid:E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/NKO331brjaDMWIJcKyXO7ShmO-A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.23.82.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:51:94:bf:03:9a:6c:33:88:cf:3c:23:20:7f:de:70:a0:86:
67:b6:27:ad:41:26:56:45:20:d4:03:7f:ac:9c:56:85:d4:5e:
f0:16:19:1e:93:09:b3:9d:8c:5d:9a:0b:88:04:82:10:aa:75:
05:0c:a8:31:5b:74:94:32:7e:3b:27:f1:7c:58:fc:36:eb:45:
45:7e:91:85:32:5b:c6:92:91:c3:16:ee:d4:13:41:37:88:7f:
21:ef:30:1c:a7:27:43:da:8a:c3:62:3d:ce:d1:cd:2d:9a:ef:
34:ef:05:77:83:f8:87:fc:69:a3:cb:e0:cd:53:6f:6f:39:a0:
2a:65:b8:64:88:65:67:5b:d5:34:fc:4a:a1:53:d0:8f:4a:89:
27:5d:e0:de:f7:87:a8:68:25:e4:40:d9:3b:bb:7b:03:f3:a9:
b7:c5:32:9b:7e:72:7f:66:a9:9b:6e:16:ec:cf:ce:44:65:66:
5a:ad:45:dc:ec:2c:6d:40:5f:5c:23:29:13:58:65:c9:e6:ee:
9f:f3:ff:62:80:3d:dd:91:cb:f5:13:01:0e:58:c2:fe:b4:13:
3a:40:49:54:e7:66:c5:f5:90:39:19:e0:b3:fe:d7:1b:c3:23:
c1:28:31:04:dc:f7:ef:01:d7:40:b6:03:8d:2d:5e:2d:b4:2c:
7a:a6:ab:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 6 19:54:07 2024 by rpki-client on console-ams.rpki-client.org