Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/efba93-2973-4213-b6f1-449124ace026/1/NSreO2rrYK6wQb8Q9o8E91bgIX8.roa
File: NSreO2rrYK6wQb8Q9o8E91bgIX8.roa (raw, json)
Hash identifier: JBcnsQvj3x6785+8ZYAil6bJGcrPPVXo8mD9T0UoUpc=
Subject key identifier: 35:2A:DE:3B:6A:EB:60:AE:B0:41:BF:10:F6:8F:04:F7:56:E0:21:7F
Certificate issuer: /CN=2becef943d34c80e0a0fd81426e6136b31508fee
Certificate serial: 01877465E8A27DE43884742CAF4B7286A306
Authority key identifier: 2B:EC:EF:94:3D:34:C8:0E:0A:0F:D8:14:26:E6:13:6B:31:50:8F:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K-zvlD00yA4KD9gUJuYTazFQj-4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/efba93-2973-4213-b6f1-449124ace026/1/NSreO2rrYK6wQb8Q9o8E91bgIX8.roa
Signing time: Wed 12 Apr 2023 07:37:28 +0000
ROA not before: Wed 12 Apr 2023 07:37:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12357
IP address blocks: 185.195.178.0/24 maxlen: 24
185.195.177.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Apr 2023 17:31:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:74:65:e8:a2:7d:e4:38:84:74:2c:af:4b:72:86:a3:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2becef943d34c80e0a0fd81426e6136b31508fee
Validity
Not Before: Apr 12 07:37:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=352ade3b6aeb60aeb041bf10f68f04f756e0217f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:8a:a4:02:f3:84:ec:b2:99:cd:42:07:0b:e7:
75:e3:70:9c:1f:eb:02:bb:35:36:2e:c5:d2:b0:65:
b8:ce:26:09:c9:c7:f8:e9:5d:b7:06:50:16:3d:37:
df:d1:b3:5e:80:d8:4f:13:61:c3:49:b7:23:65:c2:
d5:c8:d0:6a:7b:36:2f:94:13:c0:bf:a4:a9:d3:25:
0c:e2:29:c6:16:23:12:7e:43:e8:8a:8c:04:a8:d7:
e1:3d:04:50:cb:a4:4a:38:80:ea:91:21:53:db:93:
6b:15:e0:80:66:b0:8a:64:db:3f:f4:74:1c:84:cf:
6d:2e:78:04:ad:f6:72:23:ce:66:18:3b:6c:b7:ce:
c8:d8:a8:01:91:5a:44:6b:73:2a:64:67:e9:43:ad:
4f:d5:60:b6:dc:03:96:89:5e:a9:31:9d:11:77:6e:
e2:04:d0:3c:bf:27:77:df:a2:41:17:4b:2b:13:70:
86:3c:f2:02:65:bf:29:d2:c7:9c:58:12:30:39:b0:
64:73:c6:05:18:7e:d0:42:51:33:2c:65:cc:2e:31:
45:6c:36:a6:fe:7d:68:79:0b:a6:9f:93:d2:26:e8:
b8:03:92:c4:65:bd:16:e3:c6:20:50:fa:b9:78:74:
6f:dc:c2:e6:42:09:3d:22:c4:88:8b:75:e8:10:f1:
d5:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:2A:DE:3B:6A:EB:60:AE:B0:41:BF:10:F6:8F:04:F7:56:E0:21:7F
X509v3 Authority Key Identifier:
keyid:2B:EC:EF:94:3D:34:C8:0E:0A:0F:D8:14:26:E6:13:6B:31:50:8F:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K-zvlD00yA4KD9gUJuYTazFQj-4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/efba93-2973-4213-b6f1-449124ace026/1/NSreO2rrYK6wQb8Q9o8E91bgIX8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/efba93-2973-4213-b6f1-449124ace026/1/K-zvlD00yA4KD9gUJuYTazFQj-4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.195.177.0-185.195.178.255
Signature Algorithm: sha256WithRSAEncryption
70:f4:ff:8b:3b:d2:1a:53:73:35:14:c6:d1:44:83:f0:e5:6e:
c7:d0:94:e7:38:67:4b:5d:67:7e:f9:16:2a:d4:4c:83:42:5a:
e1:e0:d9:d5:0b:53:e8:e1:a7:42:86:4c:8a:03:9c:8e:29:71:
45:44:61:1b:7f:b3:f6:c0:08:3c:4f:51:19:35:d0:47:6c:0c:
52:2f:51:a5:8e:44:96:51:3d:bf:4b:b5:dd:34:c1:7a:28:d7:
b3:bc:97:27:4f:50:98:22:bc:07:4d:c4:0e:9b:c5:d0:6c:76:
97:82:35:4f:58:6a:63:05:b3:5a:54:de:57:d0:23:ca:63:37:
28:c4:5a:d5:6b:36:84:b3:45:b9:65:97:04:0b:e7:4a:b8:e1:
aa:70:3d:ea:d1:7d:1d:13:d2:07:3c:c2:2a:cb:26:89:22:00:
1b:ed:33:7d:d9:5f:af:88:bf:a3:7e:f5:a1:70:a6:15:23:c8:
ea:d9:3a:20:f3:c2:6e:46:3a:8e:fb:9a:0a:e4:53:d8:d5:1d:
d4:58:4f:10:c6:f4:52:82:46:68:d1:e9:16:39:37:f7:38:bd:
fc:34:f1:2a:0e:72:6f:6b:8f:cd:19:ad:ed:20:01:69:44:48:
18:de:e8:60:bd:7a:19:a1:06:15:94:dc:41:53:80:cf:fa:a2:
17:47:8e:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:16 2024 by rpki-client on console-ams.rpki-client.org