Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/b06fe0-3690-437d-8924-071daa05dabf/1/nt6Lu-s21bY_KZC-ZyOcv8M5_yY.roa
File: nt6Lu-s21bY_KZC-ZyOcv8M5_yY.roa (raw, json)
Hash identifier: 7phu6JOMJHlrtJSzbfGhlORKxLiVQymL9T8yx7pxEk4=
Subject key identifier: 9E:DE:8B:BB:EB:36:D5:B6:3F:29:90:BE:67:23:9C:BF:C3:39:FF:26
Certificate issuer: /CN=2ffb641d3ca2ec1157f477321789cec0cc5f29a4
Certificate serial: 018B66C4AACEEB32533E61869448A7E521BC
Authority key identifier: 2F:FB:64:1D:3C:A2:EC:11:57:F4:77:32:17:89:CE:C0:CC:5F:29:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L_tkHTyi7BFX9HcyF4nOwMxfKaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/b06fe0-3690-437d-8924-071daa05dabf/1/nt6Lu-s21bY_KZC-ZyOcv8M5_yY.roa
Signing time: Wed 25 Oct 2023 12:17:26 +0000
ROA not before: Wed 25 Oct 2023 12:17:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56655
IP address blocks: 195.35.113.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:66:c4:aa:ce:eb:32:53:3e:61:86:94:48:a7:e5:21:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ffb641d3ca2ec1157f477321789cec0cc5f29a4
Validity
Not Before: Oct 25 12:17:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9ede8bbbeb36d5b63f2990be67239cbfc339ff26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:2e:a8:a0:17:90:24:c0:cd:da:2b:6c:bc:b1:
75:f3:eb:e4:97:75:63:97:75:40:85:1c:05:a7:d0:
70:05:23:81:6d:d9:86:c5:c8:47:de:80:e3:bc:58:
b9:ea:6a:f0:77:f5:70:fa:ac:73:87:8b:56:ea:bf:
88:b9:35:19:09:5b:5f:56:0d:1e:ca:c9:a5:7b:d5:
72:5d:08:ce:2d:09:d5:ad:39:51:d0:ad:83:14:6b:
6f:51:4c:78:65:aa:bb:20:8d:07:fd:da:62:b5:c4:
05:06:d5:19:76:54:4b:ea:a8:13:84:70:dc:b9:8e:
6f:ec:c4:92:20:30:d0:79:3d:2d:e3:3c:a6:3f:47:
82:af:5c:27:9e:30:c4:98:74:32:fd:51:58:06:fe:
e5:6c:ac:33:7a:41:a1:6c:ea:12:1e:4f:9a:81:a3:
bd:04:83:01:a3:7e:3a:89:d3:10:fa:65:2c:95:f5:
a0:cc:ed:f9:bf:1c:71:97:88:0d:d7:c9:19:f6:44:
cc:5d:3d:f2:70:65:1b:b0:31:ee:9b:de:38:b6:80:
28:8c:c8:0e:17:ee:0b:da:ae:7e:8a:7c:88:f4:50:
44:cb:ba:c7:d7:ba:b0:8d:36:d5:63:8a:94:0c:9e:
24:39:3e:71:a1:7f:55:ea:e4:fe:9f:d3:93:78:c8:
87:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:DE:8B:BB:EB:36:D5:B6:3F:29:90:BE:67:23:9C:BF:C3:39:FF:26
X509v3 Authority Key Identifier:
keyid:2F:FB:64:1D:3C:A2:EC:11:57:F4:77:32:17:89:CE:C0:CC:5F:29:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L_tkHTyi7BFX9HcyF4nOwMxfKaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/b06fe0-3690-437d-8924-071daa05dabf/1/nt6Lu-s21bY_KZC-ZyOcv8M5_yY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/b06fe0-3690-437d-8924-071daa05dabf/1/L_tkHTyi7BFX9HcyF4nOwMxfKaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.35.113.0/24
Signature Algorithm: sha256WithRSAEncryption
73:08:d0:77:70:e3:3d:4c:b1:e3:89:ab:8d:08:96:2b:5a:fc:
a8:16:48:60:cd:59:2a:c3:ae:e8:9d:f2:71:78:80:29:cf:32:
c6:eb:ec:a6:8d:7a:9a:69:3e:7e:38:1c:9a:48:12:6c:b6:e3:
ed:3e:0a:95:50:4f:73:03:3c:26:ce:ca:ac:02:71:e6:ea:18:
00:43:13:be:02:0f:0d:10:1a:c3:b3:ab:54:8d:5b:11:e7:76:
21:55:17:dd:8c:43:53:ca:15:fc:86:c0:48:4f:52:d3:84:4e:
77:1f:34:38:1f:b6:70:96:80:a9:e5:d3:d4:7e:06:88:6c:dd:
3b:8b:da:7a:14:8f:e8:1d:f3:29:54:ec:14:ae:18:ae:b7:b7:
22:7d:a7:6c:b5:2b:3f:94:3a:51:79:f5:2a:42:5f:0f:70:d5:
23:e2:b5:28:76:ca:3e:9a:f8:66:fc:ad:87:bf:10:1f:d5:61:
3e:38:7f:66:dd:2c:59:b9:63:66:fc:bc:dd:cf:26:a9:0d:f8:
06:a1:77:c4:01:e1:9d:84:df:09:ec:4e:87:e5:b0:30:13:af:
af:64:e3:ed:b0:9a:b4:10:dd:6b:2b:b9:94:17:6e:a9:82:a8:
19:0e:35:29:6b:fa:58:43:64:34:34:15:99:ff:35:62:ea:04:
03:80:e1:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:06 2024 by rpki-client on console-ams.rpki-client.org