Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/NlFXnKqFh9pjm-bBn3khU4Q2w4o.roa
File: NlFXnKqFh9pjm-bBn3khU4Q2w4o.roa (raw, json)
Hash identifier: 15e7oYBCQ1M316k0X/cu1ABkMTzhjg40FETg1mY2lwc=
Subject key identifier: 36:51:57:9C:AA:85:87:DA:63:9B:E6:C1:9F:79:21:53:84:36:C3:8A
Certificate issuer: /CN=cd0c032892f695af4c13fb0aca8043d17b1b97bf
Certificate serial: 01872D6075F33ABF275272810371EB4F7551
Authority key identifier: CD:0C:03:28:92:F6:95:AF:4C:13:FB:0A:CA:80:43:D1:7B:1B:97:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zQwDKJL2la9ME_sKyoBD0Xsbl78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/NlFXnKqFh9pjm-bBn3khU4Q2w4o.roa
Signing time: Wed 29 Mar 2023 12:38:29 +0000
ROA not before: Wed 29 Mar 2023 12:38:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200010
IP address blocks: 185.137.98.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 29 Mar 2023 13:47:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:2d:60:75:f3:3a:bf:27:52:72:81:03:71:eb:4f:75:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd0c032892f695af4c13fb0aca8043d17b1b97bf
Validity
Not Before: Mar 29 12:38:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3651579caa8587da639be6c19f7921538436c38a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ef:82:8b:a2:91:f6:d6:2b:12:72:41:b0:27:
ec:74:e6:9e:2e:56:54:11:51:d9:6e:7a:6c:3b:13:
1d:76:65:65:3e:b3:97:3a:e4:61:14:7c:04:a8:42:
d2:f6:03:45:fd:fb:21:dc:7c:8c:48:13:35:b7:84:
7c:2f:f8:78:68:22:e0:d1:73:63:31:a6:0f:d3:4a:
9c:ca:60:ae:3b:3a:9e:38:77:c3:80:b2:c1:5b:4d:
f7:de:dc:c3:56:fa:25:e1:b5:ce:3c:cc:ec:df:5f:
5c:d9:40:c3:b3:77:98:29:36:42:9b:49:10:cc:36:
24:70:0f:f2:cf:7c:c1:04:56:1d:d3:b4:d8:08:47:
62:6c:16:a6:cd:db:4a:63:be:11:12:c1:6e:eb:01:
44:60:c8:11:08:56:a8:3c:77:f1:14:21:b8:76:c8:
fd:11:3c:f0:c8:b2:17:3b:49:ee:91:a5:67:5a:5a:
d2:1f:d9:88:dd:66:72:3a:5f:a3:9f:35:6a:73:ae:
1b:a4:bf:10:94:81:34:9b:8c:84:83:6d:37:db:3f:
e6:2b:a0:15:d7:ea:b2:a4:46:23:78:0e:2b:56:40:
ad:ef:ad:dd:b7:02:5a:c3:2c:e8:94:c9:89:4c:92:
63:1d:91:4c:a4:84:3e:85:cf:7b:d9:b6:06:16:0b:
43:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:51:57:9C:AA:85:87:DA:63:9B:E6:C1:9F:79:21:53:84:36:C3:8A
X509v3 Authority Key Identifier:
keyid:CD:0C:03:28:92:F6:95:AF:4C:13:FB:0A:CA:80:43:D1:7B:1B:97:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zQwDKJL2la9ME_sKyoBD0Xsbl78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/NlFXnKqFh9pjm-bBn3khU4Q2w4o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/zQwDKJL2la9ME_sKyoBD0Xsbl78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.137.98.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:ad:7f:e1:64:6a:03:33:54:c3:36:12:5f:91:e3:85:ac:e7:
84:cc:86:b8:e2:7d:5e:63:8e:53:c3:a7:dc:01:47:f3:ff:cb:
35:96:b0:a4:c5:ea:31:00:91:13:26:4b:fe:49:2b:84:b8:e7:
66:09:c7:48:d9:a2:78:4f:b1:35:0b:c7:b8:50:1c:9c:ad:f4:
68:ca:6a:ff:0c:1e:96:27:09:53:d8:f3:b6:fe:6d:fe:fd:73:
3c:43:72:45:fa:80:71:78:dd:f9:8e:c9:1e:98:ae:2a:e7:d9:
ad:1e:a2:58:0a:e1:42:aa:60:d5:0f:2a:93:d8:94:bb:05:75:
cc:07:30:51:48:18:80:3c:87:35:f4:01:11:40:2b:a1:b0:f5:
dd:4a:57:f5:9f:82:e8:4b:d3:fd:95:a8:dd:32:6b:78:6d:7e:
c3:30:9d:3b:9c:30:58:c2:14:80:a3:64:45:77:44:d1:96:a2:
31:f1:01:d4:bf:ae:75:bd:33:a0:11:ad:7e:8c:eb:05:0f:7c:
d4:b2:17:2f:49:3c:c9:f9:16:87:48:0b:78:da:f6:95:58:1f:
11:8d:c9:66:39:6f:8d:a9:21:e3:d2:a0:d2:0c:7d:cd:60:ca:
70:a3:06:4f:67:e5:c7:76:6e:cb:36:53:bf:98:4b:f9:44:e2:
83:6d:56:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:39 2024 by rpki-client on console-ams.rpki-client.org