Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/d73ac9-3d65-4e2d-8bbf-e034f65e7f60/1/nNtzh5Q6Vqrrn8uu-kO57X27Zfo.roa
File: nNtzh5Q6Vqrrn8uu-kO57X27Zfo.roa (raw, json)
Hash identifier: pseVacEdfeiTzXgsaVtJo2SwRYW0fMgLCjLfEA8gckE=
Subject key identifier: 9C:DB:73:87:94:3A:56:AA:EB:9F:CB:AE:FA:43:B9:ED:7D:BB:65:FA
Certificate issuer: /CN=644cdbae84b26a8484b10c00ebfdfbcb4990c157
Certificate serial: 01856CA5DCEA14E0DD803A60ADA3603A99CE
Authority key identifier: 64:4C:DB:AE:84:B2:6A:84:84:B1:0C:00:EB:FD:FB:CB:49:90:C1:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZEzbroSyaoSEsQwA6_37y0mQwVc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/d73ac9-3d65-4e2d-8bbf-e034f65e7f60/1/nNtzh5Q6Vqrrn8uu-kO57X27Zfo.roa
Signing time: Sun 01 Jan 2023 09:24:47 +0000
ROA not before: Sun 01 Jan 2023 09:24:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 185.244.16.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:a5:dc:ea:14:e0:dd:80:3a:60:ad:a3:60:3a:99:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=644cdbae84b26a8484b10c00ebfdfbcb4990c157
Validity
Not Before: Jan 1 09:24:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9cdb7387943a56aaeb9fcbaefa43b9ed7dbb65fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:2b:e6:00:0d:88:c9:8f:f4:0b:96:5d:51:9e:
60:18:ec:64:a3:19:6e:e3:45:90:49:14:cd:11:dd:
54:fe:bc:66:9a:48:34:7c:a9:3e:9d:03:ef:f2:34:
fd:b8:94:12:39:23:df:ce:35:e1:ad:6e:e3:74:45:
db:a0:6c:6b:91:1e:c0:33:a1:a0:dd:55:2f:1b:b4:
c4:2a:e7:51:01:a3:fc:61:3b:e3:56:53:40:b2:12:
36:0c:57:ad:63:eb:5a:f7:91:44:25:9c:af:1a:58:
39:cf:cb:52:e3:d0:2d:52:36:b7:bf:51:f3:17:83:
91:02:c0:2c:ed:e6:d8:3c:99:16:fa:85:77:97:4f:
8b:8f:47:46:b1:85:04:53:1c:0d:f3:32:0f:fc:a7:
1c:eb:88:48:04:35:d6:41:cf:e5:c9:01:e8:e9:75:
cd:e4:ac:b6:2f:4a:59:54:22:be:7d:00:89:50:ae:
92:a7:52:54:5f:a4:c1:8a:e1:7f:24:18:12:31:85:
74:fa:b0:c3:f1:57:40:37:bb:26:5e:84:15:34:27:
6e:18:57:c4:a8:3a:c2:9d:dd:17:eb:39:d4:53:94:
7b:78:71:2a:01:56:9f:24:6d:8a:f2:80:36:40:0b:
1b:9c:87:1a:96:1d:b7:18:f1:bf:a4:3b:9b:51:b1:
9b:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:DB:73:87:94:3A:56:AA:EB:9F:CB:AE:FA:43:B9:ED:7D:BB:65:FA
X509v3 Authority Key Identifier:
keyid:64:4C:DB:AE:84:B2:6A:84:84:B1:0C:00:EB:FD:FB:CB:49:90:C1:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZEzbroSyaoSEsQwA6_37y0mQwVc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/d73ac9-3d65-4e2d-8bbf-e034f65e7f60/1/nNtzh5Q6Vqrrn8uu-kO57X27Zfo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/d73ac9-3d65-4e2d-8bbf-e034f65e7f60/1/ZEzbroSyaoSEsQwA6_37y0mQwVc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.16.0/22
Signature Algorithm: sha256WithRSAEncryption
b7:fe:f7:c9:73:7d:5d:1c:a6:8c:f6:58:21:2a:3d:04:ae:4f:
45:90:57:9a:77:16:44:86:4b:6b:d1:a7:1e:ab:97:55:7e:0e:
f9:7c:0e:46:e6:5b:7c:6c:ea:e8:a6:96:28:3e:56:32:71:49:
ad:41:bb:7c:d1:b1:e9:d8:2d:f1:74:1e:17:d0:c6:da:e5:e7:
a6:65:fb:f8:d1:da:9e:05:4a:ce:ea:8e:fa:14:72:45:a2:d0:
79:a2:48:11:ed:11:a6:be:b9:53:b5:da:26:d8:c9:e8:84:dd:
1b:c4:71:9f:45:d1:a8:f6:ea:bd:7c:39:c5:62:e6:85:e2:d5:
7c:2b:c7:39:4e:56:a9:62:c4:e3:17:4b:5c:d5:ec:0e:9f:7c:
17:53:bc:8d:20:99:ce:fc:ac:f7:c3:79:bb:ae:fc:37:da:60:
7f:d5:e2:8e:c2:5b:dc:a5:14:2b:9e:06:d1:c5:d0:fd:65:cd:
b9:c3:9f:b0:33:d5:d5:eb:29:36:00:07:e8:26:81:a4:28:f6:
32:77:c3:2a:9c:46:44:9b:e1:5b:00:50:99:1f:8e:c8:fb:64:
83:c2:ba:ce:1e:de:f3:37:d4:6a:76:14:e7:e0:51:f9:3e:79:
7a:bd:14:71:79:70:ab:69:0d:44:03:63:04:95:b5:c7:9d:72:
af:f1:79:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:30 2024 by rpki-client on console-fra.rpki-client.org