Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/nCNAhI9wWpJfxL4iAyIRUbRO0Tw.roa
File: nCNAhI9wWpJfxL4iAyIRUbRO0Tw.roa (raw, json)
Hash identifier: O0w3MatZt++mrBxyFGzUDiTqVHpncYfLm1hD7yocAWE=
Subject key identifier: 9C:23:40:84:8F:70:5A:92:5F:C4:BE:22:03:22:11:51:B4:4E:D1:3C
Certificate issuer: /CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Certificate serial: 0188959D461A33A330C2A4D3FFAF0828FF7A
Authority key identifier: E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/nCNAhI9wWpJfxL4iAyIRUbRO0Tw.roa
Signing time: Wed 07 Jun 2023 11:28:12 +0000
ROA not before: Wed 07 Jun 2023 11:28:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47479
IP address blocks: 178.254.134.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:95:9d:46:1a:33:a3:30:c2:a4:d3:ff:af:08:28:ff:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Validity
Not Before: Jun 7 11:28:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9c2340848f705a925fc4be2203221151b44ed13c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:2f:1d:46:57:b0:68:c7:54:2b:c4:e2:da:06:
a8:b5:10:79:e0:26:41:57:bf:39:51:d2:7d:2c:8b:
09:74:46:5a:80:8f:1c:4a:6c:92:0e:ce:b6:0b:e9:
20:93:2e:b8:9a:17:df:2b:b7:c0:b8:fe:84:8c:70:
f5:2e:4d:e1:80:af:3c:c5:fa:74:97:32:28:55:5f:
27:9d:bf:88:93:9a:e9:64:f4:2d:35:20:d0:3f:2c:
27:17:0f:94:08:d5:25:1b:96:06:c9:ed:25:ce:d3:
2b:2f:f2:4b:ec:35:1b:8f:69:78:4d:97:0a:a6:a7:
a9:1b:dd:e3:ee:7f:af:05:6e:57:2b:70:ff:35:0f:
e2:29:2e:d6:ee:81:04:a9:83:68:69:2e:82:96:09:
9c:ef:4e:14:cf:4d:ce:69:67:3e:78:64:d7:bb:61:
01:1e:6f:fd:3a:d1:7c:67:57:ee:fc:de:12:d6:62:
f7:2b:50:b2:86:73:9a:ca:e8:9a:92:b6:dd:21:61:
90:55:e9:d9:7f:42:15:40:76:32:3a:b2:7e:33:1b:
7b:1c:7b:3a:5d:5b:49:db:ca:7b:a9:cf:78:18:f5:
ae:34:ab:32:9e:4c:ea:25:dc:a1:ae:ad:fc:b7:fc:
2c:dc:f9:ac:fb:61:90:f3:4b:82:ce:4f:13:e2:86:
a9:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:23:40:84:8F:70:5A:92:5F:C4:BE:22:03:22:11:51:B4:4E:D1:3C
X509v3 Authority Key Identifier:
keyid:E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/nCNAhI9wWpJfxL4iAyIRUbRO0Tw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.254.134.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:31:1f:d4:6a:ff:a6:48:61:47:92:ad:2c:4e:94:00:e2:bf:
3d:cc:13:08:9c:e3:b5:02:da:d7:ed:be:3f:3a:57:b4:4f:dc:
b5:a9:dd:be:44:ba:a3:12:b2:7c:a9:42:59:ee:f1:50:6e:ed:
b8:08:6d:48:47:69:85:05:d8:7b:6d:44:b2:8a:d8:ea:f5:fc:
8b:64:19:40:fe:7f:bd:45:b1:51:c0:5e:a8:60:04:c2:1c:e0:
52:60:62:e7:b7:ef:fd:98:c8:08:ba:81:ff:eb:2b:87:b8:4f:
b6:93:57:7a:a4:02:f3:8a:61:bc:35:40:f4:aa:73:34:23:3c:
38:c3:44:68:53:fb:da:94:4d:24:d1:39:7c:56:aa:fe:04:a2:
87:8f:c3:58:11:fd:39:74:ce:c0:9b:8b:15:42:45:f9:a6:c8:
d9:dc:ac:e0:c0:f1:33:5d:ef:4a:62:f9:49:d1:d9:a6:4d:8c:
cb:44:61:05:f9:51:36:15:15:c0:97:85:8e:d9:5a:5b:16:1c:
82:c8:ae:4e:77:7e:a9:77:f8:a2:2f:32:bc:06:1c:c3:7a:7c:
b2:f5:0a:c4:f3:d2:51:8d:f3:f8:ce:96:00:10:76:48:87:61:
f1:70:63:c5:5c:b7:d4:9b:c5:1d:98:ba:cf:ee:71:d7:81:0f:
e9:b4:58:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:41 2024 by rpki-client on console-ams.rpki-client.org