Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/NwnFvDhDb0B1PBbjjkXNQNCHUwc.roa
File: NwnFvDhDb0B1PBbjjkXNQNCHUwc.roa (raw, json)
Hash identifier: 3wruPQtrT8/HooCZz75NcRrvYoU5OqpTqS9u35bCN3E=
Subject key identifier: 37:09:C5:BC:38:43:6F:40:75:3C:16:E3:8E:45:CD:40:D0:87:53:07
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 01857095A1DB8797872F45EE6776D9A921E7
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/NwnFvDhDb0B1PBbjjkXNQNCHUwc.roa
Signing time: Mon 02 Jan 2023 03:45:32 +0000
ROA not before: Mon 02 Jan 2023 03:45:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207340
IP address blocks: 93.171.2.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:a1:db:87:97:87:2f:45:ee:67:76:d9:a9:21:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3709c5bc38436f40753c16e38e45cd40d0875307
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:72:9a:ce:fc:7d:4c:6d:98:fd:98:83:f8:11:
80:ef:6d:54:93:3f:57:1e:aa:60:75:1e:60:d3:b2:
c0:c9:35:32:7a:a7:61:59:44:5f:70:8b:e1:47:69:
19:5b:96:fe:12:29:47:3e:45:c3:4e:58:e0:bb:90:
cb:80:7d:63:c3:df:29:e4:77:c6:15:22:97:fb:a9:
af:be:df:5b:82:96:46:b5:a2:f2:66:6e:82:eb:c1:
0e:a7:c4:42:3e:a3:59:80:f7:ed:28:c0:90:cf:10:
d1:60:42:6b:3b:de:c2:ed:5b:03:1e:73:3b:98:a9:
07:d7:21:ec:e8:00:3d:3f:22:bb:33:2d:98:f0:3f:
14:64:76:ec:c8:43:91:4a:98:42:f6:84:39:43:89:
d2:6d:74:ce:2d:83:77:f8:41:3a:c6:3d:e9:a0:ba:
27:fe:74:f5:69:b3:8e:c1:65:a4:9e:bc:e1:17:d3:
9d:3e:6a:ad:7f:04:a4:cc:7e:6d:bd:65:f6:80:a4:
7e:30:2a:73:23:27:00:af:01:f8:11:1a:9b:d5:30:
12:47:dc:8b:86:f4:d3:a7:5a:2b:2c:47:5a:5c:3e:
1e:b7:96:3c:22:41:73:3e:ad:17:87:4f:a8:5f:e6:
63:86:97:ad:d6:bb:76:90:3a:64:fb:35:c5:0a:e2:
d7:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:09:C5:BC:38:43:6F:40:75:3C:16:E3:8E:45:CD:40:D0:87:53:07
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/NwnFvDhDb0B1PBbjjkXNQNCHUwc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.2.0/23
Signature Algorithm: sha256WithRSAEncryption
29:24:4f:de:4d:d6:23:ee:10:8d:36:d0:6f:f8:48:76:fc:74:
a1:95:ad:7e:2d:d2:86:af:87:f3:e1:cb:c8:4c:79:db:4a:b3:
25:2a:53:a5:51:dd:44:28:59:0a:6b:69:19:5a:4a:bd:73:a3:
85:1c:cf:d0:2c:38:fc:97:f9:d3:47:29:92:01:88:3f:c7:d1:
1c:15:71:51:bb:a3:1f:8c:ff:93:75:8a:f8:f6:b7:b2:a6:ab:
a9:85:48:22:74:5e:32:c8:ea:c2:62:fd:41:e7:3b:3e:74:1a:
15:1e:ff:cf:cc:9b:d8:bf:dc:bf:5e:9a:e0:92:6f:c7:c6:f6:
58:ca:2e:77:fa:53:a9:ac:ca:01:28:3b:73:1a:71:25:d5:80:
c2:72:56:8c:a2:91:99:f2:6f:3c:18:a8:db:de:7c:9c:ef:a3:
7e:51:da:63:f4:1e:4f:f8:58:3a:ee:ec:45:f9:ee:18:7e:dd:
46:38:db:a7:69:0f:90:4f:60:60:4e:45:3e:fe:07:fc:74:13:
1e:63:3b:1a:15:c5:50:02:e2:53:89:fe:86:9d:7f:74:dd:7d:
bf:0b:9a:97:4f:4e:2f:31:e4:07:66:f4:f3:e1:ef:07:c2:eb:
ea:94:2c:ee:e5:73:96:96:95:61:eb:26:31:ea:76:a4:e9:24:
d7:5d:c7:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:36 2024 by rpki-client on console-fra.rpki-client.org