Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/285f32-03ea-416e-9cb0-7e66648fc264/1/NjZBXE8mMT0Oy1hLPLqxqiEq8ZU.roa
File: NjZBXE8mMT0Oy1hLPLqxqiEq8ZU.roa (raw, json)
Hash identifier: aZYe2Gbyh2OSQ6CAV5NLNz9ePYW+9DNP6AS+d4tOXBE=
Subject key identifier: 36:36:41:5C:4F:26:31:3D:0E:CB:58:4B:3C:BA:B1:AA:21:2A:F1:95
Certificate issuer: /CN=f4e9d53310243187083fdc9609735465b1089043
Certificate serial: 01856DD42FDD24F0811CC3B48E4734DC6436
Authority key identifier: F4:E9:D5:33:10:24:31:87:08:3F:DC:96:09:73:54:65:B1:08:90:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9OnVMxAkMYcIP9yWCXNUZbEIkEM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/285f32-03ea-416e-9cb0-7e66648fc264/1/NjZBXE8mMT0Oy1hLPLqxqiEq8ZU.roa
Signing time: Sun 01 Jan 2023 14:55:00 +0000
ROA not before: Sun 01 Jan 2023 14:55:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30769
IP address blocks: 193.19.88.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:d4:2f:dd:24:f0:81:1c:c3:b4:8e:47:34:dc:64:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4e9d53310243187083fdc9609735465b1089043
Validity
Not Before: Jan 1 14:55:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3636415c4f26313d0ecb584b3cbab1aa212af195
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f0:9a:eb:3e:70:6b:44:15:7e:42:ac:d0:60:
b0:58:a5:7c:e8:f3:25:c4:f0:72:92:7d:d9:87:57:
fe:67:71:f9:b9:cf:d8:72:8f:ae:e1:09:a6:bb:09:
f8:47:89:f3:1d:aa:76:75:ec:9d:a4:2f:55:7e:c1:
ca:b1:d9:cb:a1:c9:fc:16:97:d4:e7:e9:4f:a5:0a:
74:71:db:d8:d9:8c:18:b8:65:23:48:76:2f:66:70:
42:37:2d:c8:d1:ee:8c:ab:5d:b3:13:05:bb:d4:05:
29:48:33:92:4e:73:2d:87:c9:e4:a3:4a:c7:9b:36:
05:93:da:f2:e5:5c:86:39:ef:03:5c:d1:37:5a:10:
36:d5:f1:1d:66:2e:ea:69:95:8a:0c:0b:c6:f0:d1:
16:74:8d:14:50:db:09:ae:ec:ce:50:d6:7b:74:d3:
42:ff:ff:bd:11:f0:5c:01:23:86:77:7f:57:89:06:
7c:f8:f8:dc:38:3f:5d:64:16:13:d3:0e:4e:b3:d2:
1d:70:2e:28:28:78:35:e2:1d:20:4a:27:a0:8f:e0:
ec:73:a5:b1:38:02:99:03:88:15:86:ad:2b:ea:6c:
a1:62:1f:10:3f:d5:14:49:85:16:96:cf:40:22:25:
0e:65:93:67:d4:2d:ea:b4:76:6f:74:8e:ff:94:e8:
60:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:36:41:5C:4F:26:31:3D:0E:CB:58:4B:3C:BA:B1:AA:21:2A:F1:95
X509v3 Authority Key Identifier:
keyid:F4:E9:D5:33:10:24:31:87:08:3F:DC:96:09:73:54:65:B1:08:90:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9OnVMxAkMYcIP9yWCXNUZbEIkEM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/285f32-03ea-416e-9cb0-7e66648fc264/1/NjZBXE8mMT0Oy1hLPLqxqiEq8ZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/285f32-03ea-416e-9cb0-7e66648fc264/1/9OnVMxAkMYcIP9yWCXNUZbEIkEM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.19.88.0/23
Signature Algorithm: sha256WithRSAEncryption
36:bf:23:a4:22:1c:95:b7:50:69:36:45:a3:dd:39:f8:70:85:
73:ad:b9:54:83:9e:0a:ba:a9:4f:dc:57:57:6b:3d:5b:b1:45:
3e:77:1f:53:9f:0f:e8:52:cf:eb:95:24:47:9f:b1:fd:84:d7:
cc:22:06:26:aa:33:16:ca:57:49:a1:ce:47:89:67:58:b2:82:
a0:2e:90:23:f9:80:eb:85:ad:4d:39:54:95:e2:3e:3d:bf:f3:
55:0e:83:06:2c:ea:fa:30:9c:48:af:30:89:e1:40:21:1c:bb:
34:14:72:d6:46:3a:94:97:68:db:f0:6f:1e:27:64:42:0b:ee:
0f:25:63:e0:2d:e3:d3:65:3c:e0:85:af:8e:b2:25:20:d3:75:
b6:15:4c:3b:09:07:67:3e:8e:5b:1e:b7:03:e4:e2:b5:06:90:
bd:16:35:31:19:4c:a5:91:7d:5b:9d:4c:12:91:14:38:ab:dd:
4c:22:e8:a5:bb:98:13:b8:ff:0a:4d:04:65:cf:cb:46:db:bf:
ea:52:01:66:02:97:d6:d8:85:0e:c7:22:62:8e:37:51:53:60:
d2:3b:32:1a:93:61:8e:0f:b8:2f:1b:20:3d:32:ee:94:bf:fe:
4a:a4:22:2d:46:ee:8e:49:02:b8:a0:1f:d7:a1:2e:47:ff:43:
ef:87:3e:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:59 2024 by rpki-client on console-ams.rpki-client.org