Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/NnM9RJppqbgL5M983vLq9--o7FY.roa
File: NnM9RJppqbgL5M983vLq9--o7FY.roa (raw, json)
Hash identifier: QtECmbgf6SzghkXeI9dbhqoN+C4aiF+flQQuhLKfe6s=
Subject key identifier: 36:73:3D:44:9A:69:A9:B8:0B:E4:CF:7C:DE:F2:EA:F7:EF:A8:EC:56
Certificate issuer: /CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Certificate serial: 018EADFF86988AC94382DCF3A715359B395B
Authority key identifier: BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/NnM9RJppqbgL5M983vLq9--o7FY.roa
Signing time: Fri 05 Apr 2024 11:23:08 +0000
ROA not before: Fri 05 Apr 2024 11:23:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198949
IP address blocks: 213.253.194.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Apr 2024 12:02:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:ad:ff:86:98:8a:c9:43:82:dc:f3:a7:15:35:9b:39:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Validity
Not Before: Apr 5 11:23:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=36733d449a69a9b80be4cf7cdef2eaf7efa8ec56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:70:e1:56:13:34:bf:23:c8:c5:df:3a:b7:d0:
4b:3a:f1:b7:5d:68:ba:6f:bd:6b:9b:50:be:7a:6e:
7f:4f:f2:46:87:59:e3:25:a0:e0:c8:0d:ec:3b:31:
c6:4d:71:f2:75:10:f4:9d:69:32:b3:c2:dd:24:53:
27:7d:12:2e:5f:33:f2:69:06:57:1d:b2:f3:59:bd:
a9:fc:9c:4d:b6:e3:8d:d2:7d:0f:01:85:26:17:a9:
a5:78:1d:fd:66:56:cd:3e:0b:90:cd:fa:3a:48:ce:
f8:d1:31:51:c4:3e:b1:d6:41:65:ec:97:8c:6d:53:
27:de:60:c5:ba:48:a1:30:47:e1:fa:22:71:61:10:
ed:62:25:c0:b3:6c:08:c0:a8:b4:db:ca:0d:e9:d1:
e7:15:0d:d6:9e:ff:72:8f:a4:bd:b3:85:a5:4e:43:
8d:ff:50:d6:e3:2b:e7:ef:cb:eb:b2:07:9a:41:0f:
c0:11:53:bd:72:7c:ac:49:fa:85:21:24:7e:a1:86:
8a:d3:f1:24:fe:0a:b7:73:26:35:34:9a:f0:5e:d8:
7e:1b:85:8f:af:fd:94:a7:8b:82:9d:14:e8:34:45:
2a:dc:c3:cd:76:c7:19:6f:0c:b4:37:7d:57:c1:ba:
5a:ec:4f:4f:87:1b:c1:f8:08:0c:df:13:2f:9f:3c:
c0:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:73:3D:44:9A:69:A9:B8:0B:E4:CF:7C:DE:F2:EA:F7:EF:A8:EC:56
X509v3 Authority Key Identifier:
keyid:BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/NnM9RJppqbgL5M983vLq9--o7FY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.253.194.0/24
Signature Algorithm: sha256WithRSAEncryption
af:69:98:38:c9:39:28:c9:02:37:4c:a8:a9:23:9a:16:a2:82:
63:34:4e:03:cf:73:b7:37:9a:7b:a6:95:b1:91:7e:bc:53:87:
20:d4:c4:93:32:1b:d5:b2:92:19:f8:f5:50:9e:04:f0:a4:60:
55:d2:68:e9:92:7c:69:b5:a1:bb:70:b6:12:16:88:df:5d:be:
bc:0f:ba:cf:13:92:2f:b0:79:f9:a1:09:92:43:e3:43:1c:bd:
d8:11:ad:f4:b2:54:86:48:dc:f5:13:94:83:52:45:19:ec:ff:
8f:88:bf:2f:60:5b:83:c1:50:0b:84:9b:01:67:c9:05:79:5e:
0f:e0:2c:1e:d6:2d:ef:fa:3e:f6:71:c4:f8:ad:19:a8:76:33:
88:77:ac:b4:ed:7d:5b:8b:86:44:e2:2b:7f:a6:7e:1e:12:af:
60:f1:8c:fb:ed:52:83:dc:47:d4:8f:23:d4:c8:7e:da:e6:df:
dd:fa:d4:cc:fd:e5:48:20:65:23:04:1b:59:f1:dd:e0:36:17:
e6:28:c4:c9:b1:05:ba:1b:2d:87:1c:b5:61:b6:8c:65:9c:1c:
f1:36:bb:dc:12:a0:fe:b1:46:ca:36:74:95:38:b5:ee:58:6d:
62:0d:70:a9:23:cd:30:67:2a:d7:3d:c9:cd:aa:f5:df:51:bd:
00:de:bf:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:02 2024 by rpki-client on console-fra.rpki-client.org