Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/nXhyziAClH18l1qt2YrXKm1NZjQ.roa
File: nXhyziAClH18l1qt2YrXKm1NZjQ.roa (raw, json)
Hash identifier: 5oNszczuP8fSp0+Q0fNFFPn/Xvwq/aduNAmvdaHA1Ac=
Subject key identifier: 9D:78:72:CE:20:02:94:7D:7C:97:5A:AD:D9:8A:D7:2A:6D:4D:66:34
Certificate issuer: /CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Certificate serial: 01856E01BECE578A0228494B2659668C5D62
Authority key identifier: 29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/nXhyziAClH18l1qt2YrXKm1NZjQ.roa
Signing time: Sun 01 Jan 2023 15:44:46 +0000
ROA not before: Sun 01 Jan 2023 15:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44066
IP address blocks: 37.114.56.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:01:be:ce:57:8a:02:28:49:4b:26:59:66:8c:5d:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Validity
Not Before: Jan 1 15:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9d7872ce2002947d7c975aadd98ad72a6d4d6634
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:77:8b:12:6e:42:64:da:84:76:86:54:f7:be:
c9:2f:23:62:5b:5a:70:ed:b9:a6:a2:d7:39:26:1d:
df:fb:13:f7:d9:78:b0:d2:c1:42:0c:50:19:22:c2:
ec:2f:c1:dc:f8:5c:0d:18:2c:f9:fd:93:21:bf:e6:
1e:db:c9:c5:03:b8:a1:71:c7:ca:a7:66:55:3d:55:
1f:21:91:ec:01:64:19:e5:b1:99:8d:19:87:98:e0:
40:0e:9f:75:8d:a0:16:45:7e:65:94:3f:51:46:12:
9f:28:67:33:ca:7f:99:80:bd:25:22:bb:3e:79:de:
f7:0c:ef:8e:e0:3d:f9:00:8f:ee:75:1a:ba:9a:0c:
db:20:5b:3e:49:5f:30:a2:89:c7:d4:1d:03:24:57:
e6:bd:cd:99:7f:a6:00:3b:c5:93:19:1b:0d:46:3e:
3a:9f:3d:59:2a:a1:81:20:2d:96:33:32:d8:19:84:
e7:9e:bb:a4:bc:47:17:ec:cd:0a:bf:67:14:9f:15:
85:79:fd:7b:32:d8:f8:3e:d8:fe:c5:0f:17:aa:11:
c5:55:b2:47:31:dc:6a:99:5c:13:74:5e:d0:b8:cc:
cc:88:a4:63:6c:df:d1:34:a1:f4:59:ee:ab:b4:e4:
35:33:5e:93:ff:7f:fb:08:83:30:6d:7d:4e:64:d5:
7c:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:78:72:CE:20:02:94:7D:7C:97:5A:AD:D9:8A:D7:2A:6D:4D:66:34
X509v3 Authority Key Identifier:
keyid:29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/nXhyziAClH18l1qt2YrXKm1NZjQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/KWWTt0fnalZJJRG7NhLk1eTL5-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.114.56.0/24
Signature Algorithm: sha256WithRSAEncryption
24:dc:32:7b:40:fe:8c:e2:eb:d7:d6:18:be:32:1f:74:20:ac:
1c:65:8d:3a:5f:16:af:b5:eb:0a:4b:18:f0:10:21:40:6d:ea:
a8:00:47:c3:63:ca:db:61:56:11:c0:86:19:e3:f0:99:a4:cc:
58:26:3a:61:a8:06:2c:ce:30:1b:dc:43:6f:44:01:15:b3:13:
2c:aa:fd:01:60:56:85:1f:48:28:48:fc:b4:50:fb:25:a4:ff:
f5:c0:3b:cf:1b:1a:80:d2:be:43:af:53:18:03:a0:08:2c:43:
aa:3b:a0:57:1b:1a:f8:55:9a:5f:f0:65:d6:ba:c9:67:87:32:
00:8a:9f:65:92:b3:51:f2:a1:80:4f:95:85:b5:12:42:94:42:
94:32:42:88:a8:b5:5d:5c:9c:b3:f1:0e:bc:72:9b:6e:58:93:
30:a0:1f:9e:2f:63:a0:a1:0c:77:b3:60:a8:33:0a:16:cc:e5:
8d:ee:17:a4:e6:56:69:13:6a:e8:c7:29:f0:02:e4:a3:ce:64:
8d:28:b5:ee:30:1f:26:8a:26:cf:62:54:ef:5b:3b:da:57:60:
a6:fb:09:3c:d7:67:6b:06:b2:89:12:b1:fd:ed:9e:fd:3e:8d:
12:84:a5:fc:94:57:df:ee:25:7c:22:1b:70:c3:3e:35:d6:30:
1a:30:47:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:57 2024 by rpki-client on console-fra.rpki-client.org