Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/2669ee-4ba7-4110-8370-dd803c5b85db/1/NXy9AP8A6tv_J892JTJkoeAOdF8.roa
File: NXy9AP8A6tv_J892JTJkoeAOdF8.roa (raw, json)
Hash identifier: yu3ofHGjKQKkJao/M8g6V6cKx34VCRNEzW/2PD5rnrY=
Subject key identifier: 35:7C:BD:00:FF:00:EA:DB:FF:27:CF:76:25:32:64:A1:E0:0E:74:5F
Certificate issuer: /CN=5336a106cecdeba92e0b80e5e9a5c789ba74c62b
Certificate serial: 018D45D1958C41BDF9564864116A103C855C
Authority key identifier: 53:36:A1:06:CE:CD:EB:A9:2E:0B:80:E5:E9:A5:C7:89:BA:74:C6:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UzahBs7N66kuC4Dl6aXHibp0xis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/2669ee-4ba7-4110-8370-dd803c5b85db/1/NXy9AP8A6tv_J892JTJkoeAOdF8.roa
Signing time: Fri 26 Jan 2024 12:49:39 +0000
ROA not before: Fri 26 Jan 2024 12:49:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29244
IP address blocks: 85.118.192.0/21 maxlen: 21
85.118.192.0/24 maxlen: 24
85.118.194.0/24 maxlen: 24
85.118.196.0/24 maxlen: 24
85.118.197.0/24 maxlen: 24
91.92.8.0/24 maxlen: 24
91.92.9.0/24 maxlen: 24
91.92.10.0/24 maxlen: 24
91.92.11.0/24 maxlen: 24
91.92.12.0/24 maxlen: 24
91.92.13.0/24 maxlen: 24
91.92.14.0/24 maxlen: 24
91.92.15.0/24 maxlen: 24
149.62.192.0/18 maxlen: 18
149.62.204.0/24 maxlen: 24
149.62.205.0/24 maxlen: 24
149.62.206.0/24 maxlen: 24
149.62.207.0/24 maxlen: 24
149.62.208.0/24 maxlen: 24
149.62.209.0/24 maxlen: 24
193.193.171.0/24 maxlen: 24
193.193.182.0/24 maxlen: 24
193.194.147.0/24 maxlen: 24
193.194.155.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Mar 2024 09:27:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:45:d1:95:8c:41:bd:f9:56:48:64:11:6a:10:3c:85:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5336a106cecdeba92e0b80e5e9a5c789ba74c62b
Validity
Not Before: Jan 26 12:49:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=357cbd00ff00eadbff27cf76253264a1e00e745f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e1:de:8d:05:ae:24:0b:46:23:ad:0c:85:08:
d8:26:52:53:25:bf:be:54:e2:ce:24:f5:09:18:3f:
8b:d3:8d:9a:98:43:b3:dc:e1:70:07:14:81:c7:69:
3b:1f:71:18:0c:77:0b:d8:e3:70:8c:22:ec:62:e0:
4a:14:e1:5d:9f:26:f2:ac:25:1f:fb:fd:25:8d:8c:
c3:6b:5d:9e:ef:e0:91:59:73:a6:db:29:96:1a:70:
a7:1a:60:47:0f:e9:23:84:fa:a6:5f:b0:a8:e5:5d:
57:42:ca:44:87:97:a5:f7:2e:3f:b2:fa:11:b9:18:
04:18:d0:02:31:84:76:85:d2:88:ea:23:6f:ce:c8:
da:8f:f7:56:78:ee:0b:fd:15:8c:fe:3f:9e:ab:e2:
cf:ea:96:65:4d:2e:ad:d4:31:8f:46:ae:03:b6:e9:
e3:16:70:85:ab:1f:ef:67:ab:26:51:2b:a7:36:c8:
fa:21:e6:da:99:dc:5d:5c:ae:66:50:1c:43:d3:32:
6f:0d:5d:7d:76:23:27:ae:12:ee:4c:a7:c2:af:37:
39:c1:9e:9e:91:4f:0f:2e:2c:4d:9a:1d:30:1d:a0:
1b:35:7c:1e:07:3b:1d:ff:cd:b4:07:c1:96:73:6a:
94:08:19:93:ce:a2:aa:35:f4:7e:34:1c:41:a6:b3:
aa:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:7C:BD:00:FF:00:EA:DB:FF:27:CF:76:25:32:64:A1:E0:0E:74:5F
X509v3 Authority Key Identifier:
keyid:53:36:A1:06:CE:CD:EB:A9:2E:0B:80:E5:E9:A5:C7:89:BA:74:C6:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UzahBs7N66kuC4Dl6aXHibp0xis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/2669ee-4ba7-4110-8370-dd803c5b85db/1/NXy9AP8A6tv_J892JTJkoeAOdF8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/2669ee-4ba7-4110-8370-dd803c5b85db/1/UzahBs7N66kuC4Dl6aXHibp0xis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.118.192.0/21
91.92.8.0/21
149.62.192.0/18
193.193.171.0/24
193.193.182.0/24
193.194.147.0/24
193.194.155.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:3b:5a:88:cf:74:49:bd:34:92:3e:b8:e3:e7:08:50:1c:9b:
87:ef:a5:52:57:ff:15:35:98:97:9d:7b:68:7b:6b:9d:1f:7c:
e8:11:83:80:6b:c4:71:03:5a:68:a6:a2:2a:84:5f:a9:8b:45:
a1:fb:e8:43:fc:fd:f0:20:00:8a:f6:70:fc:4b:1a:1d:2d:6c:
9b:29:a3:31:05:66:c5:9e:be:92:cb:52:22:2b:ee:37:a1:c5:
65:08:30:31:72:ec:1b:50:0e:be:ab:bf:97:32:4f:9b:2d:21:
3f:61:c2:03:02:b5:ff:e9:17:d4:eb:53:dc:43:57:61:8d:bb:
eb:63:ac:8f:9a:47:22:a9:64:b0:5c:7f:f1:60:f8:8d:7d:1f:
0c:56:a9:80:77:14:e2:d9:c1:eb:43:f1:4a:64:93:cc:39:c2:
ea:64:7b:e9:54:9c:e1:5c:60:0c:cd:f5:a5:c9:fc:5f:32:20:
e3:65:45:1b:c4:c2:03:cd:a8:22:b0:53:0f:11:94:8a:0a:21:
72:ca:da:62:b3:a4:e8:24:4e:22:a1:b3:44:b8:ab:b9:d8:c5:
70:62:8e:03:f0:e0:2c:bf:f7:23:1e:0a:da:82:ee:e2:8a:97:
14:20:9e:c9:da:ae:63:10:09:f1:18:61:c8:2a:26:36:a9:f2:
ca:ee:33:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:38 2024 by rpki-client on console-ams.rpki-client.org