Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/6a6805-5ce0-4128-a04c-f62f35af4371/1/Nb4v6mlaGuek9DlMkmZ4Tvxa2qc.roa
File: Nb4v6mlaGuek9DlMkmZ4Tvxa2qc.roa (raw, json)
Hash identifier: ZkZhrAgJVlUMkwLwkGs0YSxBe0T2TVfhQcy2xM24BlY=
Subject key identifier: 35:BE:2F:EA:69:5A:1A:E7:A4:F4:39:4C:92:66:78:4E:FC:5A:DA:A7
Certificate issuer: /CN=5f96676cf398d3994c4dd4a296594614dff586c7
Certificate serial: 018CD5158BCE6C32AFA817127F610EAD0F88
Authority key identifier: 5F:96:67:6C:F3:98:D3:99:4C:4D:D4:A2:96:59:46:14:DF:F5:86:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X5ZnbPOY05lMTdSilllGFN_1hsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/6a6805-5ce0-4128-a04c-f62f35af4371/1/Nb4v6mlaGuek9DlMkmZ4Tvxa2qc.roa
Signing time: Thu 04 Jan 2024 15:26:48 +0000
ROA not before: Thu 04 Jan 2024 15:26:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215822
IP address blocks: 84.247.57.0/24 maxlen: 24
89.34.175.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Jan 2024 13:47:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:d5:15:8b:ce:6c:32:af:a8:17:12:7f:61:0e:ad:0f:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f96676cf398d3994c4dd4a296594614dff586c7
Validity
Not Before: Jan 4 15:26:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=35be2fea695a1ae7a4f4394c9266784efc5adaa7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:d4:c8:c9:40:ff:84:ee:8c:48:8c:74:73:e9:
f6:69:41:74:6a:69:88:35:90:17:32:7e:0a:b5:11:
73:35:c4:1a:2a:c4:9e:6a:6f:e6:95:75:87:cb:57:
8c:78:e6:2b:43:aa:9a:19:a8:ac:e0:86:e1:c1:a5:
01:ee:70:58:78:08:a3:ee:b0:3b:dd:ea:8d:1f:8f:
3d:c2:e8:75:34:92:ac:79:fc:7b:4b:93:c9:55:59:
c0:21:73:c8:4e:3c:3c:4d:a8:7c:ff:ad:6c:e6:a4:
b3:3f:10:c3:6f:0a:83:a9:dc:4e:57:60:65:05:00:
93:d5:d6:c1:cb:b4:9c:71:93:85:1a:ba:a2:3b:36:
50:bb:8d:38:84:b4:15:bd:d3:0a:fc:54:8c:c2:c5:
b1:3f:2f:9e:8d:18:9d:a7:9b:75:0a:10:f4:02:0c:
2d:c2:52:fb:a0:61:8f:6f:e4:89:0c:50:a1:78:57:
98:10:ea:4f:29:c5:47:73:02:e5:1d:9e:a5:ca:fe:
00:0d:a3:ae:38:d9:1d:b7:a6:8a:b1:aa:ea:dc:af:
e5:95:fc:88:3d:f0:e9:bc:ca:d7:7f:f0:98:dd:b6:
fd:3f:57:4f:63:03:40:81:17:8f:2f:74:26:cc:1c:
d0:df:42:df:9a:c7:8f:20:67:60:66:23:cc:6c:cd:
1f:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:BE:2F:EA:69:5A:1A:E7:A4:F4:39:4C:92:66:78:4E:FC:5A:DA:A7
X509v3 Authority Key Identifier:
keyid:5F:96:67:6C:F3:98:D3:99:4C:4D:D4:A2:96:59:46:14:DF:F5:86:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X5ZnbPOY05lMTdSilllGFN_1hsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/6a6805-5ce0-4128-a04c-f62f35af4371/1/Nb4v6mlaGuek9DlMkmZ4Tvxa2qc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/6a6805-5ce0-4128-a04c-f62f35af4371/1/X5ZnbPOY05lMTdSilllGFN_1hsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.247.57.0/24
89.34.175.0/24
Signature Algorithm: sha256WithRSAEncryption
26:aa:1e:94:70:36:87:7f:a6:b6:a2:9d:3f:0b:92:01:c5:f4:
db:cb:f8:70:f9:f1:7c:60:11:2b:b9:69:88:3a:69:f7:dc:02:
58:f5:e7:8e:d6:d2:c9:75:b5:48:91:de:fd:0d:37:a5:49:83:
a8:83:69:b7:45:76:a8:e4:50:68:dd:91:6c:ac:4f:a1:b9:2c:
c5:a4:49:40:bd:fa:a0:47:27:34:31:d9:c6:89:7f:f6:9b:8a:
d1:4e:d2:18:e8:ba:26:a7:de:22:06:80:64:cb:ea:8a:8e:f8:
bd:d8:44:e8:4d:4f:d9:47:a6:21:0f:5e:87:55:5a:97:d1:57:
f7:b4:f6:cb:3a:33:5c:e2:6e:e8:c6:99:5f:10:81:f6:db:41:
07:04:51:7a:30:94:e8:17:12:31:c5:a3:40:51:6b:1c:02:ac:
27:48:35:4c:b4:63:73:53:91:61:57:46:a0:b1:10:40:fa:49:
ae:86:5a:3f:51:e6:c2:ee:a4:9a:45:fa:c4:27:02:14:da:01:
cb:27:03:8e:ed:d6:ba:6f:05:10:46:41:c6:3e:66:06:52:62:
34:21:1a:15:1d:c4:3e:e2:5c:c6:d4:62:e1:b8:ab:a2:02:9e:
5c:93:f9:99:2a:d6:e5:a1:4c:bd:4d:8f:b3:9b:71:7e:55:d4:
72:86:1f:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:28 2024 by rpki-client on console-ams.rpki-client.org