Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/1349ca-8c3c-4131-9f55-d59030661949/1/Nvlj0fyNOCiNkuo565oDD3BJgkk.roa
File: Nvlj0fyNOCiNkuo565oDD3BJgkk.roa (raw, json)
Hash identifier: MmFdoq0vp+j2e2nu99MDPgKlrouDXfQ+4/FX6suobLM=
Subject key identifier: 36:F9:63:D1:FC:8D:38:28:8D:92:EA:39:EB:9A:03:0F:70:49:82:49
Certificate issuer: /CN=816684a2958e0190f270a80a98789319e1cee4d8
Certificate serial: 018BB440F4CB18484236A7A45070B5822CF1
Authority key identifier: 81:66:84:A2:95:8E:01:90:F2:70:A8:0A:98:78:93:19:E1:CE:E4:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gWaEopWOAZDycKgKmHiTGeHO5Ng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/1349ca-8c3c-4131-9f55-d59030661949/1/Nvlj0fyNOCiNkuo565oDD3BJgkk.roa
Signing time: Thu 09 Nov 2023 13:23:57 +0000
ROA not before: Thu 09 Nov 2023 13:23:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 46.17.72.0/21 maxlen: 21
46.17.73.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 23 Nov 2023 08:35:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b4:40:f4:cb:18:48:42:36:a7:a4:50:70:b5:82:2c:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=816684a2958e0190f270a80a98789319e1cee4d8
Validity
Not Before: Nov 9 13:23:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=36f963d1fc8d38288d92ea39eb9a030f70498249
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c7:13:11:57:74:7e:4e:f0:d8:b0:30:6a:25:
41:49:a0:1a:d4:e6:87:30:86:cc:a5:fe:a9:da:88:
31:04:85:e0:c3:e0:f2:64:97:1a:65:ba:66:f4:05:
c9:63:74:84:69:25:1e:8f:2a:91:fb:93:0a:e0:34:
f4:da:12:f2:4e:aa:2d:c1:af:10:f3:cf:0c:8f:7b:
83:05:a9:5b:49:8a:0f:fc:0e:29:b0:95:13:51:6c:
76:64:f0:d0:10:c0:75:53:26:7c:e4:ba:76:14:57:
c7:c4:ec:1c:98:11:3d:0d:07:75:29:d6:3e:ad:7e:
35:10:83:a4:7f:b8:31:ca:f4:e4:1f:5e:dc:fa:6c:
0c:04:94:99:66:22:14:49:a6:51:b7:ec:24:44:26:
33:43:35:98:c6:c7:f8:e1:4c:58:8f:d2:99:0d:98:
08:41:b1:b1:43:ef:2e:f6:26:0e:d3:9b:7c:1e:c2:
af:27:22:41:df:a8:d4:05:2c:70:2f:dc:74:24:d5:
df:60:da:96:8f:f2:22:a6:81:78:9d:04:7a:d2:dd:
b5:78:e9:a6:28:1c:07:73:d8:0b:53:7b:88:1e:7f:
1a:64:c3:ff:5a:ad:3e:cb:38:df:4b:b6:8d:55:33:
05:db:1e:26:df:c0:8c:3b:4c:86:53:f5:4a:8c:88:
a5:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:F9:63:D1:FC:8D:38:28:8D:92:EA:39:EB:9A:03:0F:70:49:82:49
X509v3 Authority Key Identifier:
keyid:81:66:84:A2:95:8E:01:90:F2:70:A8:0A:98:78:93:19:E1:CE:E4:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gWaEopWOAZDycKgKmHiTGeHO5Ng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/1349ca-8c3c-4131-9f55-d59030661949/1/Nvlj0fyNOCiNkuo565oDD3BJgkk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/1349ca-8c3c-4131-9f55-d59030661949/1/gWaEopWOAZDycKgKmHiTGeHO5Ng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.17.72.0/21
Signature Algorithm: sha256WithRSAEncryption
6e:1f:7f:42:79:4a:71:c0:a8:fa:38:4f:7f:36:fd:2b:b3:96:
ab:c2:5d:82:04:da:ed:df:d4:91:61:bb:10:0e:2f:6d:38:c2:
45:c0:89:85:6e:66:40:d1:c6:4c:81:53:11:45:f8:1e:d3:f3:
50:95:e3:e3:1e:e7:c5:87:b3:5b:b6:46:e1:84:ba:ef:c4:54:
29:51:41:b0:60:f1:a2:0b:8c:fd:50:80:d4:d4:11:fd:74:f1:
e9:bb:bb:13:84:22:b5:29:df:60:1e:d3:26:c7:59:87:15:50:
9b:2a:4a:5c:57:4d:dc:6a:a3:c3:e6:97:ad:c4:5d:d8:f7:b2:
ed:ee:76:51:33:c0:a6:7f:88:a8:f1:6d:f7:df:26:9a:a2:ae:
08:3e:75:7f:4c:91:4d:fc:0e:e6:79:87:bb:9a:71:75:2f:54:
f6:5d:ee:27:9d:6b:6a:eb:c5:3e:6d:df:36:2c:b2:06:04:cc:
4a:b8:ed:e3:ed:80:87:85:04:dd:ef:99:66:69:e0:6d:72:dc:
b6:0b:44:fa:e8:42:98:21:ac:14:45:06:b6:af:14:e7:49:76:
38:99:1d:69:20:b9:a8:17:a5:22:e2:0c:de:2b:8c:13:d4:2b:
26:73:c1:3a:64:5a:d4:ba:2e:c2:5f:29:15:ae:20:c9:06:34:
ea:6f:e1:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:53 2024 by rpki-client on console-fra.rpki-client.org