Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/738179-cf67-4199-b532-2fb2958ab8bb/1/nKHH65GPYkQaLoWxYQnMe6DVvOs.roa
File: nKHH65GPYkQaLoWxYQnMe6DVvOs.roa (raw, json)
Hash identifier: LEUa3y9DBbNopBTYgV5jxA7PB/GDMbhjw0HtHsldA9I=
Subject key identifier: 9C:A1:C7:EB:91:8F:62:44:1A:2E:85:B1:61:09:CC:7B:A0:D5:BC:EB
Certificate issuer: /CN=07a32999c47eb31d5fbf16ecc3872eaefd43bad7
Certificate serial: 018B9049C6D2BCE601CF1DE105B809278890
Authority key identifier: 07:A3:29:99:C4:7E:B3:1D:5F:BF:16:EC:C3:87:2E:AE:FD:43:BA:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6MpmcR-sx1fvxbsw4curv1Dutc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/738179-cf67-4199-b532-2fb2958ab8bb/1/nKHH65GPYkQaLoWxYQnMe6DVvOs.roa
Signing time: Thu 02 Nov 2023 13:47:16 +0000
ROA not before: Thu 02 Nov 2023 13:47:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 89.222.37.0/24 maxlen: 24
89.222.36.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:90:49:c6:d2:bc:e6:01:cf:1d:e1:05:b8:09:27:88:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a32999c47eb31d5fbf16ecc3872eaefd43bad7
Validity
Not Before: Nov 2 13:47:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9ca1c7eb918f62441a2e85b16109cc7ba0d5bceb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ab:23:5f:8a:d2:83:97:45:4d:1c:3d:70:ff:
5b:ba:d0:7b:27:c1:8a:05:00:5e:d7:96:5d:13:d7:
35:8a:5f:44:f5:cf:c7:b1:25:7a:a1:52:6c:67:1f:
cb:7b:d5:81:dd:c9:14:f0:be:11:b0:da:6a:5b:83:
9a:d1:5d:4f:85:1b:39:45:fc:6b:22:d6:35:53:5b:
7c:f0:40:20:ae:90:cf:66:58:bc:2e:45:96:cf:12:
de:7c:56:ca:56:06:53:4d:1f:23:fc:8e:e0:9e:22:
51:78:80:f1:1d:b4:7b:d5:87:fd:43:73:02:db:bd:
04:c7:71:7a:13:63:5d:a7:1a:53:49:10:28:86:00:
9c:4b:78:f3:32:02:02:3c:b4:b6:d9:f5:11:51:90:
55:20:d1:54:86:de:af:f6:d6:53:b2:c6:96:01:46:
c7:90:d2:a6:ed:5b:1e:bf:7d:76:2e:11:95:02:c6:
94:bf:3d:51:2d:96:c0:d1:44:ee:90:84:a2:06:cf:
90:70:45:59:f4:2b:77:51:98:a2:db:9a:ca:b1:dd:
64:1d:bb:40:fe:2c:6b:15:01:f5:29:33:a8:18:20:
e5:a3:fc:68:db:73:51:19:68:3b:a9:6f:17:3c:a0:
bf:91:87:c7:93:a8:dd:2c:f6:9d:a1:77:e8:71:90:
3c:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:A1:C7:EB:91:8F:62:44:1A:2E:85:B1:61:09:CC:7B:A0:D5:BC:EB
X509v3 Authority Key Identifier:
keyid:07:A3:29:99:C4:7E:B3:1D:5F:BF:16:EC:C3:87:2E:AE:FD:43:BA:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6MpmcR-sx1fvxbsw4curv1Dutc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/738179-cf67-4199-b532-2fb2958ab8bb/1/nKHH65GPYkQaLoWxYQnMe6DVvOs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/738179-cf67-4199-b532-2fb2958ab8bb/1/B6MpmcR-sx1fvxbsw4curv1Dutc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.222.36.0/23
Signature Algorithm: sha256WithRSAEncryption
18:7a:2e:08:08:85:7b:f9:d5:82:77:da:19:71:0c:bc:59:8b:
c5:53:1f:33:b1:53:b0:d4:e3:ca:3b:98:ed:9c:fd:ff:33:0d:
4e:af:2f:21:b1:c7:1b:b1:93:b8:58:de:11:de:11:c0:e4:98:
b6:60:08:58:2d:a7:49:e0:3b:31:44:52:3f:c1:ab:b6:fc:84:
54:36:a9:4f:04:f3:30:a6:c3:eb:a7:79:8e:0f:91:96:b4:f4:
f6:de:91:e0:33:d3:2a:d0:a2:cf:e1:ac:b9:30:f1:6d:47:6a:
2f:86:ee:f3:78:a9:11:be:34:6e:e8:34:8d:34:8a:c9:db:1b:
8b:c9:cf:e0:99:13:fe:93:a6:65:13:00:b7:6a:7b:de:00:1b:
ea:4e:09:4a:22:c2:7d:e4:1c:a6:51:e1:cd:15:0b:7b:33:33:
41:4f:87:11:82:f1:df:23:f1:46:43:fa:49:9a:c3:5f:1a:45:
6c:1f:49:e7:76:13:af:ae:2a:fa:c4:50:72:60:35:24:98:9e:
ab:59:9f:e5:19:61:e7:59:c3:1f:14:16:93:ed:b6:ae:44:20:
1f:d5:80:af:0e:7b:44:29:01:c0:20:f8:f9:a7:42:80:c9:35:
45:26:70:42:5d:cf:9f:23:5e:0b:32:a0:54:7f:5f:39:8c:30:
f1:86:bf:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:07 2024 by rpki-client on console-fra.rpki-client.org