Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/952230-c262-41cc-b956-cfc46a76ec78/1/NAvPf6mytqHu7k4aS8hbDhIie44.roa
File: NAvPf6mytqHu7k4aS8hbDhIie44.roa (raw, json)
Hash identifier: hra+wxD3WH9Yash6Ahn2ynOkaE+OKeP9JEEMybgrSL0=
Subject key identifier: 34:0B:CF:7F:A9:B2:B6:A1:EE:EE:4E:1A:4B:C8:5B:0E:12:22:7B:8E
Certificate issuer: /CN=374e2729b17369890a1512f643cd08e4ba2ff414
Certificate serial: 0187134BC95EA019F5110EED03BCC286CDAF
Authority key identifier: 37:4E:27:29:B1:73:69:89:0A:15:12:F6:43:CD:08:E4:BA:2F:F4:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N04nKbFzaYkKFRL2Q80I5Lov9BQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/952230-c262-41cc-b956-cfc46a76ec78/1/NAvPf6mytqHu7k4aS8hbDhIie44.roa
Signing time: Fri 24 Mar 2023 11:05:46 +0000
ROA not before: Fri 24 Mar 2023 11:05:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 17098
IP address blocks: 185.101.23.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:13:4b:c9:5e:a0:19:f5:11:0e:ed:03:bc:c2:86:cd:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=374e2729b17369890a1512f643cd08e4ba2ff414
Validity
Not Before: Mar 24 11:05:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=340bcf7fa9b2b6a1eeee4e1a4bc85b0e12227b8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f1:a8:42:06:bc:06:62:3e:9b:0c:5f:d4:df:
04:3e:bd:6a:6f:81:88:01:ff:dc:bc:09:b2:9b:b1:
0f:36:70:15:65:94:76:90:d3:38:37:3b:66:8d:cf:
a0:a1:ab:6e:55:56:6b:e2:e5:73:f5:bb:e8:0e:4d:
56:70:f6:2b:5e:27:f1:95:cf:9f:17:e2:30:7f:dd:
95:29:14:c9:dc:57:5e:39:e9:7e:a8:65:5d:bd:97:
83:68:d9:9d:08:6d:ea:03:77:1e:07:c1:2b:c3:d3:
04:30:c8:f2:4e:f8:fa:01:19:0e:04:02:c1:c8:3c:
84:6a:36:a9:16:02:72:99:29:86:96:78:62:3d:24:
1d:68:a7:23:a2:fb:ce:61:28:ae:cf:a0:a9:98:ab:
71:80:98:db:52:d7:cd:f8:cb:9d:6d:34:31:7d:ae:
19:37:93:15:09:ba:a5:93:88:5a:1f:ae:c1:6d:96:
8c:31:6c:a5:78:9b:e4:22:12:2c:29:51:75:82:81:
ae:d3:49:40:b0:7c:cd:ee:18:fd:34:5b:d5:e9:71:
9d:03:41:1a:a8:86:fb:33:3f:ea:63:55:c2:25:64:
e8:71:d6:63:27:bf:c5:22:91:a1:e8:30:fc:31:17:
33:84:4f:a8:37:53:2f:8f:18:2a:d5:e1:0b:94:6b:
f6:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:0B:CF:7F:A9:B2:B6:A1:EE:EE:4E:1A:4B:C8:5B:0E:12:22:7B:8E
X509v3 Authority Key Identifier:
keyid:37:4E:27:29:B1:73:69:89:0A:15:12:F6:43:CD:08:E4:BA:2F:F4:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N04nKbFzaYkKFRL2Q80I5Lov9BQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/952230-c262-41cc-b956-cfc46a76ec78/1/NAvPf6mytqHu7k4aS8hbDhIie44.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/952230-c262-41cc-b956-cfc46a76ec78/1/N04nKbFzaYkKFRL2Q80I5Lov9BQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.101.23.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:06:4b:07:17:90:18:1a:88:a1:da:54:52:5a:18:4e:a5:e3:
51:e1:e2:6d:3e:17:c6:8b:e9:43:51:a0:54:f4:af:23:34:46:
d8:1a:29:f7:23:56:6c:bc:10:1d:49:13:b4:b4:9e:6d:f2:20:
56:6b:93:b8:0b:3a:a6:be:08:be:68:6b:37:09:83:b9:54:61:
4d:aa:4f:59:53:a0:27:fa:d0:13:30:81:50:b2:33:59:95:68:
d4:37:62:5f:cc:e5:b9:e1:5b:37:9d:9f:37:bb:af:bd:9d:eb:
b0:a3:f0:48:3f:3c:ba:ce:31:13:e4:7f:ca:17:b7:55:63:ad:
a2:55:1b:e8:e0:74:fa:47:cf:59:a0:95:04:f1:0d:52:f4:78:
02:3d:21:46:67:19:41:0b:a0:82:e5:2f:05:bc:84:4e:66:f8:
4b:f4:85:80:14:18:97:91:43:81:6f:d5:a6:b4:21:bb:d4:7e:
8e:19:8a:71:fd:20:38:ee:98:c1:24:39:cc:3b:4e:cc:c2:6e:
8c:c9:69:5b:1a:be:09:51:93:96:5f:a6:c4:7f:19:fe:21:56:
35:25:16:a0:a5:4a:7f:22:64:30:bb:9f:99:0c:bf:69:a8:73:
0d:4c:f1:38:43:69:3b:4b:b5:87:12:e4:e5:39:ce:bc:02:ed:
89:d6:45:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:41 2024 by rpki-client on console-fra.rpki-client.org