Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/NU-jUk9sw2kLVsGycF00vh1G2Jk.roa
File: NU-jUk9sw2kLVsGycF00vh1G2Jk.roa (raw, json)
Hash identifier: 1nKO5X6e8I7aBkQR9wqwEM7yd3QdAG2mkpPwjjoFRi0=
Subject key identifier: 35:4F:A3:52:4F:6C:C3:69:0B:56:C1:B2:70:5D:34:BE:1D:46:D8:99
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 018BA0872F79A313E8E819A1025DA829FF34
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/NU-jUk9sw2kLVsGycF00vh1G2Jk.roa
Signing time: Sun 05 Nov 2023 17:28:15 +0000
ROA not before: Sun 05 Nov 2023 17:28:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 95.214.172.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a0:87:2f:79:a3:13:e8:e8:19:a1:02:5d:a8:29:ff:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Nov 5 17:28:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=354fa3524f6cc3690b56c1b2705d34be1d46d899
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:cf:91:c3:e4:de:2d:94:c9:ab:5d:82:f1:5e:
9c:dc:ee:4a:2d:b3:70:58:b8:ae:a0:0a:5e:96:66:
7d:83:f3:f0:70:88:bd:1a:4a:06:5b:4d:6b:5a:c0:
26:81:cb:ab:cc:43:aa:5c:52:13:0c:63:32:43:a3:
1a:f4:8e:e1:50:0b:03:78:48:c3:4b:16:0c:3b:42:
be:b8:4b:8c:b9:21:62:11:1c:25:d4:a5:30:b5:5a:
b0:a5:cf:9d:9c:fd:6e:be:cd:3e:83:21:c1:02:8d:
18:c2:c4:de:dd:5d:3d:ac:18:39:d3:79:cb:2d:ff:
a0:87:50:54:6f:d8:b0:ab:7a:1f:81:15:81:1d:7c:
a6:3e:20:81:38:6a:d5:23:52:a6:4f:03:95:4b:1e:
3a:6c:44:90:b1:d4:ca:40:b3:ab:63:cd:ca:07:00:
75:82:5c:37:25:fe:aa:ae:b7:00:49:5e:ff:4c:78:
9f:c8:ba:5f:e4:2a:e3:a7:94:66:85:5b:9b:cf:f8:
48:c3:84:9d:f1:c5:86:2a:a4:61:5a:d8:3e:b7:a8:
e0:0a:cb:5f:bc:66:b7:07:b9:a4:aa:6e:68:40:28:
00:7f:44:2b:81:da:83:44:89:a7:08:d7:57:3b:ac:
e7:44:6b:ab:e5:7d:93:71:34:75:f2:6d:a9:d2:b8:
68:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:4F:A3:52:4F:6C:C3:69:0B:56:C1:B2:70:5D:34:BE:1D:46:D8:99
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/NU-jUk9sw2kLVsGycF00vh1G2Jk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.172.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:42:83:03:4a:01:2e:83:65:26:8e:46:8e:9e:c3:87:24:b9:
88:94:4c:00:0e:99:e6:46:d3:69:97:53:55:16:97:e5:63:15:
c1:f0:2a:58:be:6c:e5:66:f7:18:a3:8f:8b:98:74:36:79:c7:
de:60:bf:06:d5:b0:4d:a2:73:15:c5:70:f0:ea:0c:1a:37:1d:
26:bd:6c:ae:8a:96:9f:19:e4:0b:d2:ae:cd:5f:6f:27:dd:b6:
f3:be:7b:b3:30:1b:18:97:9e:5c:2c:f4:15:e6:fd:24:3b:b3:
a5:94:83:f6:eb:11:c7:a1:c9:49:ab:ff:46:e8:37:8e:79:d5:
0f:77:bb:47:9b:68:1f:33:3d:ea:23:04:0d:ce:51:e5:30:4a:
39:e5:8c:90:de:b2:07:5e:b7:b3:6a:58:d7:37:62:1f:76:65:
13:e9:54:16:c8:51:42:38:55:17:79:49:4b:ec:aa:20:90:e3:
ac:de:2a:76:82:3d:01:d6:1b:a3:fc:27:e9:0b:fe:91:1e:f0:
8e:10:d2:e1:e5:95:6c:fc:59:b3:90:71:d3:61:30:96:dc:ae:
9c:79:21:af:13:ea:d6:51:8d:26:eb:76:a7:10:e4:ae:73:2a:
82:ae:82:49:ac:0b:47:35:27:ec:5e:7a:1d:73:ae:14:06:97:
90:cb:5d:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 7 03:03:50 2023 by rpki-client on console-ams.rpki-client.org