Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/NKXF8MoTFMcn3zcEYw90ODITZB4.roa
File: NKXF8MoTFMcn3zcEYw90ODITZB4.roa (raw, json)
Hash identifier: 04g0YTTgeJ36MHPj2Eq9uUVZHw4itqEt305Qz+Y+nJo=
Subject key identifier: 34:A5:C5:F0:CA:13:14:C7:27:DF:37:04:63:0F:74:38:32:13:64:1E
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018B8AA6E93B735C47E8649C9756808DC59A
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/NKXF8MoTFMcn3zcEYw90ODITZB4.roa
Signing time: Wed 01 Nov 2023 11:31:16 +0000
ROA not before: Wed 01 Nov 2023 11:31:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205192
IP address blocks: 77.92.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8a:a6:e9:3b:73:5c:47:e8:64:9c:97:56:80:8d:c5:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Nov 1 11:31:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=34a5c5f0ca1314c727df3704630f74383213641e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:33:ae:75:fc:e1:36:9e:cc:40:7f:3f:df:be:
e8:47:72:a7:09:25:0d:b2:96:d2:bb:94:29:fa:30:
ac:13:8a:0d:71:93:02:d3:f8:5a:14:46:ec:29:31:
96:ba:1d:c0:a3:10:de:f2:3d:67:cc:99:fd:fe:4f:
ff:41:0d:c1:df:c3:ea:6f:d8:a6:74:cf:b3:c5:e5:
b5:69:51:c1:a5:f6:49:9a:76:05:a1:b7:d1:2f:6b:
92:c0:85:7c:58:23:94:a0:ee:2c:b0:0e:83:4d:fa:
e2:f6:92:2c:4a:59:e5:23:c6:47:da:16:98:41:b0:
a2:ca:64:33:03:1e:17:df:e5:9d:a9:59:52:cf:4d:
41:9f:92:e9:b7:48:29:ad:e7:17:cc:38:b7:eb:29:
c5:7a:ce:02:e0:94:d7:22:8d:5d:66:4d:8d:13:6c:
ba:5e:09:9c:9d:1e:45:da:9f:a9:a7:6a:6e:44:dd:
df:81:16:26:fb:6c:8f:d0:13:0b:ee:c4:c1:3b:13:
a8:fa:0a:8c:01:1e:00:2e:c5:75:49:dd:1c:02:cb:
94:a7:16:90:18:62:70:6b:ba:8f:02:0a:98:bd:59:
21:ca:bd:34:52:8b:f7:5a:e9:5b:6d:62:9d:2c:75:
30:4b:f6:73:1c:c6:33:4f:33:65:bd:f8:f8:0d:14:
44:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:A5:C5:F0:CA:13:14:C7:27:DF:37:04:63:0F:74:38:32:13:64:1E
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/NKXF8MoTFMcn3zcEYw90ODITZB4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.92.152.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:3e:75:de:ae:cf:9a:17:be:23:a1:7a:e7:6d:86:0e:c8:d6:
dc:84:fa:ce:15:89:b4:f4:22:0e:9f:db:01:4e:4f:63:0d:b8:
d5:e5:fd:2f:25:d2:38:38:b2:a9:1b:78:6f:7c:60:66:57:7e:
93:33:26:cd:90:42:ff:79:05:8b:8d:e4:e6:7a:a8:d7:3c:bf:
7a:3e:e3:f4:59:12:7a:e2:18:fb:ee:fa:03:e9:d2:30:9a:68:
93:f9:cb:00:b8:97:41:40:33:57:22:d6:2f:59:36:41:1c:9b:
e6:75:d4:5c:6d:9b:83:da:e0:6a:b9:4c:a9:30:33:5e:b5:3c:
46:3d:94:07:2c:49:51:b1:6b:05:fa:02:d6:f8:49:cd:d3:42:
3f:a3:55:ba:2e:f3:01:05:75:2a:22:52:71:f3:b4:e0:e2:f4:
ed:98:ec:a7:b7:8a:13:b7:8d:bb:f1:55:47:99:d1:12:77:30:
9e:4a:8c:5f:f0:ae:db:5d:11:aa:94:34:6c:57:66:48:62:48:
fd:81:c0:44:c6:e1:8f:17:40:5c:b9:2d:ec:33:57:95:c9:1e:
e4:78:4c:54:be:51:48:68:4c:a9:a0:94:d8:78:fb:85:cc:fa:
2a:7e:41:ee:4b:b1:0c:9d:fa:de:91:49:44:ca:5a:eb:28:ef:
aa:2d:7b:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:58 2024 by rpki-client on console-ams.rpki-client.org