Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/9c035f-8bf9-46ab-a2c9-9fd9bd7b28bb/1/NDoi13VmHwVHnMI84f15DWZHYx8.roa
File: NDoi13VmHwVHnMI84f15DWZHYx8.roa (raw, json)
Hash identifier: zESwQZFzPlr+cTHth7Osr3V0fzZxAogiFRtyiG3WQPg=
Subject key identifier: 34:3A:22:D7:75:66:1F:05:47:9C:C2:3C:E1:FD:79:0D:66:47:63:1F
Certificate issuer: /CN=d0dbe1087818aadf3424acd8b998c68d97f90796
Certificate serial: 018571D7A94D9D08C48117F0137532DF34CA
Authority key identifier: D0:DB:E1:08:78:18:AA:DF:34:24:AC:D8:B9:98:C6:8D:97:F9:07:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0NvhCHgYqt80JKzYuZjGjZf5B5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/9c035f-8bf9-46ab-a2c9-9fd9bd7b28bb/1/NDoi13VmHwVHnMI84f15DWZHYx8.roa
Signing time: Mon 02 Jan 2023 09:37:17 +0000
ROA not before: Mon 02 Jan 2023 09:37:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59633
IP address blocks: 185.149.122.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:a9:4d:9d:08:c4:81:17:f0:13:75:32:df:34:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0dbe1087818aadf3424acd8b998c68d97f90796
Validity
Not Before: Jan 2 09:37:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=343a22d775661f05479cc23ce1fd790d6647631f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:5e:e3:79:cc:32:1c:02:b8:98:90:e0:96:23:
4a:a8:4e:ad:07:f5:0e:52:79:2b:f8:3e:7e:76:63:
1f:71:52:96:b0:ef:5e:a0:00:f2:9b:83:ff:9d:f2:
c1:8a:98:49:eb:73:b3:5a:56:fb:ad:8c:ce:bf:13:
fe:28:a6:ed:0d:be:1e:2a:52:f5:1c:eb:77:57:0f:
a1:18:2e:c1:be:7d:42:40:dc:0c:04:ff:9c:51:67:
44:98:4d:92:af:07:c4:ad:f3:4a:7b:93:13:b0:dd:
5e:13:d7:08:42:e9:3c:75:fa:f1:f2:50:d0:11:2e:
bd:68:6f:61:d1:2c:32:69:fd:36:46:d7:7a:d1:37:
91:e4:b2:5f:68:bf:75:eb:1c:ef:52:56:3b:2a:ac:
21:df:e4:2b:e7:30:05:7e:e6:6a:c8:32:6a:9a:83:
f5:e8:f0:94:0c:94:67:ac:df:c4:e0:9c:fd:0d:6c:
75:54:07:19:02:a0:e8:15:ec:a0:b0:63:c0:6d:50:
6b:e4:eb:c9:68:72:6f:71:77:c2:1d:22:e4:56:08:
b6:eb:3f:ba:ce:dc:3e:4a:f1:c4:1a:ea:58:42:15:
75:c1:e3:a1:7a:93:31:e2:07:f8:36:04:43:dc:06:
d0:81:0b:a1:5a:0a:7f:54:04:69:59:28:ce:d3:4a:
e1:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:3A:22:D7:75:66:1F:05:47:9C:C2:3C:E1:FD:79:0D:66:47:63:1F
X509v3 Authority Key Identifier:
keyid:D0:DB:E1:08:78:18:AA:DF:34:24:AC:D8:B9:98:C6:8D:97:F9:07:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0NvhCHgYqt80JKzYuZjGjZf5B5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/9c035f-8bf9-46ab-a2c9-9fd9bd7b28bb/1/NDoi13VmHwVHnMI84f15DWZHYx8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/9c035f-8bf9-46ab-a2c9-9fd9bd7b28bb/1/0NvhCHgYqt80JKzYuZjGjZf5B5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.149.122.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:7d:33:19:23:9b:8c:f8:d9:c9:fc:75:10:2d:50:07:b6:59:
c5:57:45:db:05:61:95:2e:68:1c:e1:05:19:b4:e5:28:0c:04:
8e:0e:d4:76:b8:c3:e4:54:64:bc:79:ae:f0:67:c0:86:f9:e3:
7b:ea:81:de:7e:31:fa:28:a5:13:b3:1a:a2:2e:73:3a:40:50:
1e:81:b5:04:14:2d:f6:f4:a0:dd:9d:ed:b0:20:41:63:7f:3c:
7b:ad:ca:0f:80:e4:a0:55:6c:ac:b7:cc:1b:a3:11:b2:62:6b:
54:d3:3d:a9:f7:5b:cf:53:a8:9f:28:8f:80:a0:5d:48:c0:ec:
e3:8f:56:65:9f:6a:79:ab:2b:28:bf:e2:e8:b5:69:f1:f2:c6:
e5:18:e2:d3:5b:3c:d3:ab:83:4f:60:5d:c7:59:c1:ab:8e:b2:
31:0d:76:12:bf:e3:71:65:26:e4:be:bd:27:ba:96:27:f7:9f:
a9:9b:62:c0:fd:36:52:2f:cc:25:cc:13:19:49:44:11:e8:cb:
f1:1d:8e:85:20:a1:7b:b3:10:9b:e8:4e:c1:c5:1f:44:03:e9:
80:5b:34:d8:cd:46:85:88:b8:c5:5c:77:bd:79:77:ab:68:8d:
c5:2c:73:b5:5e:71:b5:11:90:1f:94:fd:91:e8:16:a5:d1:3b:
20:57:d7:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:02:37 2024 by rpki-client on console-ams.rpki-client.org