Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/f85b7c-4ad6-427d-93ed-a6f1e495f1be/1/Ngp29ErG7higbSgIIDFy_fBfNus.roa
File: Ngp29ErG7higbSgIIDFy_fBfNus.roa (raw, json)
Hash identifier: URYYXXblICsEihvItJ3jkvI8vNPhfMu9HKugDgrC9QI=
Subject key identifier: 36:0A:76:F4:4A:C6:EE:18:A0:6D:28:08:20:31:72:FD:F0:5F:36:EB
Certificate issuer: /CN=e140a047c8b30adc6d9ee326a669dfd011d9b5d3
Certificate serial: 018572C39024E8C3EC63897EF898310EA1B4
Authority key identifier: E1:40:A0:47:C8:B3:0A:DC:6D:9E:E3:26:A6:69:DF:D0:11:D9:B5:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4UCgR8izCtxtnuMmpmnf0BHZtdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/f85b7c-4ad6-427d-93ed-a6f1e495f1be/1/Ngp29ErG7higbSgIIDFy_fBfNus.roa
Signing time: Mon 02 Jan 2023 13:54:57 +0000
ROA not before: Mon 02 Jan 2023 13:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212335
IP address blocks: 91.132.227.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:c3:90:24:e8:c3:ec:63:89:7e:f8:98:31:0e:a1:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e140a047c8b30adc6d9ee326a669dfd011d9b5d3
Validity
Not Before: Jan 2 13:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=360a76f44ac6ee18a06d2808203172fdf05f36eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:52:62:62:53:65:88:e4:53:be:0a:06:ec:e4:
4d:f8:84:e8:89:d8:10:89:5c:db:4b:91:b4:71:d2:
3e:8e:33:b1:1b:cd:c4:72:9c:d2:99:4b:f6:d7:61:
04:1a:59:85:8a:2b:0c:ca:ae:4c:2e:de:e8:56:1b:
ee:46:2b:19:3a:1f:1f:df:dc:86:dd:ca:e9:f8:f3:
37:5e:8e:e2:36:0b:9d:9b:e1:f1:0d:3a:5a:f0:3e:
35:ed:8d:fd:df:58:28:08:96:7b:28:69:7d:b4:42:
12:ea:ce:b9:ab:76:15:12:8b:0a:93:0c:47:13:c2:
c8:74:fb:cb:4f:c5:1e:52:de:76:30:2c:0b:8f:84:
c7:92:e4:fe:20:88:56:a2:f5:ad:05:01:80:9f:7a:
e2:53:5c:78:55:9f:4d:28:be:a5:4a:09:e5:d4:45:
7a:d9:8f:09:dc:c2:84:02:49:0c:99:1b:35:a8:49:
50:4a:94:aa:a4:4c:36:95:23:b6:8a:b6:03:5b:ca:
72:68:6c:0a:b9:3b:46:83:c9:3c:27:8f:ee:60:53:
25:3b:fe:c3:c4:94:04:d5:23:46:8f:63:83:5d:23:
49:50:02:7d:c2:40:4f:2f:33:1f:1c:fe:c7:2b:0e:
ea:6d:04:80:2c:5b:3a:ec:2b:aa:43:48:e9:42:70:
6e:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:0A:76:F4:4A:C6:EE:18:A0:6D:28:08:20:31:72:FD:F0:5F:36:EB
X509v3 Authority Key Identifier:
keyid:E1:40:A0:47:C8:B3:0A:DC:6D:9E:E3:26:A6:69:DF:D0:11:D9:B5:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4UCgR8izCtxtnuMmpmnf0BHZtdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/f85b7c-4ad6-427d-93ed-a6f1e495f1be/1/Ngp29ErG7higbSgIIDFy_fBfNus.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/f85b7c-4ad6-427d-93ed-a6f1e495f1be/1/4UCgR8izCtxtnuMmpmnf0BHZtdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.132.227.0/24
Signature Algorithm: sha256WithRSAEncryption
26:ca:cf:da:0e:14:ee:1f:d7:41:fd:9b:c1:e0:c2:bf:64:79:
86:4d:09:76:fc:4f:18:e7:30:53:6c:3f:19:18:9b:14:0c:a4:
3d:cf:3a:62:72:b1:71:25:e3:e5:42:91:c0:40:99:e2:dd:14:
60:ac:8a:5a:c0:dc:8f:86:af:6d:96:01:74:37:1e:fd:79:b8:
7e:60:f7:c0:ca:c0:7c:19:fe:83:ff:8c:02:74:f4:fd:3f:86:
b5:e8:31:59:b8:30:16:32:71:9c:ce:ca:f3:cd:f2:8e:74:5f:
07:b1:44:fa:fa:c0:1a:7f:6e:e2:37:79:1b:e8:16:4e:a5:48:
5c:80:09:8e:d3:b0:92:52:d8:84:a8:da:83:6e:f3:99:be:fd:
46:0b:cf:1d:05:11:36:0c:de:e0:72:9e:38:72:62:c2:1c:70:
12:95:55:df:69:af:31:27:69:5f:88:37:e6:f4:d2:a4:85:f5:
26:f7:cf:a3:ac:eb:60:0b:ef:b7:18:c1:2d:75:c5:96:03:6f:
09:d3:a4:c1:3f:8a:1f:24:a6:f0:14:ad:91:fa:a8:e7:38:36:
af:27:e2:30:22:44:23:d7:17:c4:28:bb:fc:14:cd:7a:0a:5d:
f7:0a:e7:7e:4b:84:68:81:b9:5e:e0:81:84:d5:2d:fa:a8:13:
9a:53:93:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:14:08 2024 by rpki-client on console-ams.rpki-client.org