Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/3e2c38-f96f-40df-aeac-f0150c81acf5/1/N8SNyOv5JOO8oxGfhswqeysmEuA.roa
File: N8SNyOv5JOO8oxGfhswqeysmEuA.roa (raw, json)
Hash identifier: hL3HQ9snIBD6x/vdmC02lJIAYZdGGTAv+gyITa5Y46Y=
Subject key identifier: 37:C4:8D:C8:EB:F9:24:E3:BC:A3:11:9F:86:CC:2A:7B:2B:26:12:E0
Certificate issuer: /CN=4927124d9803a7de54883164a376ea72e3c63eaf
Certificate serial: 01856FDDD1AD7E0066A7C3AFBD562EBAB02F
Authority key identifier: 49:27:12:4D:98:03:A7:DE:54:88:31:64:A3:76:EA:72:E3:C6:3E:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SScSTZgDp95UiDFko3bqcuPGPq8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/3e2c38-f96f-40df-aeac-f0150c81acf5/1/N8SNyOv5JOO8oxGfhswqeysmEuA.roa
Signing time: Mon 02 Jan 2023 00:24:46 +0000
ROA not before: Mon 02 Jan 2023 00:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48053
IP address blocks: 194.0.4.0/24 maxlen: 24
2001:678:7::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:dd:d1:ad:7e:00:66:a7:c3:af:bd:56:2e:ba:b0:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4927124d9803a7de54883164a376ea72e3c63eaf
Validity
Not Before: Jan 2 00:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=37c48dc8ebf924e3bca3119f86cc2a7b2b2612e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:22:f5:f0:ea:a0:fb:3e:cc:12:0f:39:75:89:
1c:d1:5a:cd:27:41:75:34:b8:b5:73:78:67:a8:e8:
17:3c:1f:b3:06:c7:60:f7:e5:5e:f1:1a:33:fb:5f:
35:34:b9:3e:d8:be:b1:30:c4:47:df:48:7d:1a:49:
1d:65:54:18:be:79:c9:9a:2f:7d:e0:7e:98:ad:fc:
79:29:53:54:70:75:58:58:43:ea:bf:09:bf:bc:af:
1c:51:fb:a5:f8:3d:58:0e:e0:bc:f1:05:93:2f:4d:
08:25:bb:5d:cc:f7:28:ee:0e:af:0b:f6:85:09:ce:
c8:c4:0d:54:b3:3e:f3:92:d4:50:8c:d8:6b:63:08:
87:4b:08:e6:42:56:14:cd:66:dd:96:90:14:1b:bc:
b3:e6:53:07:78:7b:4b:45:b5:1c:e9:fe:ba:b4:f2:
49:ef:70:a2:79:64:02:90:42:8e:12:fb:7c:96:a1:
15:be:ad:fe:75:f2:92:57:22:0b:e4:1d:cc:bd:b3:
c0:c0:85:14:5b:39:30:a5:9f:51:9c:ee:3f:70:b1:
75:ea:73:b1:7a:86:37:8f:69:b4:57:77:b5:2e:a8:
63:c2:3d:e6:e3:a8:09:5c:42:cd:b4:3e:29:92:28:
87:eb:e7:11:08:cf:1e:f6:31:71:cf:1e:5d:d0:b5:
2f:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:C4:8D:C8:EB:F9:24:E3:BC:A3:11:9F:86:CC:2A:7B:2B:26:12:E0
X509v3 Authority Key Identifier:
keyid:49:27:12:4D:98:03:A7:DE:54:88:31:64:A3:76:EA:72:E3:C6:3E:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SScSTZgDp95UiDFko3bqcuPGPq8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/3e2c38-f96f-40df-aeac-f0150c81acf5/1/N8SNyOv5JOO8oxGfhswqeysmEuA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/3e2c38-f96f-40df-aeac-f0150c81acf5/1/SScSTZgDp95UiDFko3bqcuPGPq8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.0.4.0/24
IPv6:
2001:678:7::/48
Signature Algorithm: sha256WithRSAEncryption
4f:18:0d:ec:cd:83:58:6d:d8:3c:29:a1:0e:59:4b:b8:e2:7a:
fe:ce:9c:86:4b:73:e4:53:25:61:13:fe:4d:2e:18:34:81:1f:
53:6b:ce:77:40:ab:fd:dc:f7:99:f8:60:8d:d2:74:e9:1c:ba:
4f:98:5e:e0:78:d5:11:b0:82:9a:5e:36:20:26:53:14:f0:51:
76:25:9a:9d:8d:2a:32:a8:a6:38:14:85:3e:c9:94:ea:55:aa:
5c:ef:c8:de:0a:19:03:2e:ef:3f:18:9a:16:d1:59:7f:df:94:
3b:d7:c6:3b:36:16:90:c3:51:01:65:41:83:d2:f8:09:af:6b:
10:47:84:d7:5b:74:a7:d7:63:0e:a0:8c:95:51:db:07:67:8b:
3a:92:b4:01:43:d1:4a:38:37:99:6e:b7:d5:a6:cd:7b:e2:1b:
26:8f:03:c7:60:4a:69:bd:23:fe:68:4d:b4:78:74:aa:30:5b:
6a:f7:56:f6:00:49:fe:4e:8c:0f:88:28:92:dd:8a:b3:fd:86:
f2:fd:c9:57:55:f0:a7:8b:6f:28:e3:94:01:e9:ce:9c:8a:20:
4d:84:05:81:30:df:d3:e3:6b:3c:53:02:6a:bd:58:9d:12:ea:
de:18:b2:b8:59:fa:19:ff:53:c6:f7:b1:ba:1e:b8:19:ee:a0:
1d:76:6d:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:23 2024 by rpki-client on console-ams.rpki-client.org