Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/d2cd1c-04b5-44d0-81d5-7be3bda05927/1/ntmieYmpgvXgufMUIISWPJbJyzE.roa
File: ntmieYmpgvXgufMUIISWPJbJyzE.roa (raw, json)
Hash identifier: lxjZCkm8rHYotCO6Zpar+sIB7V39kRxquj10L7M2O/4=
Subject key identifier: 9E:D9:A2:79:89:A9:82:F5:E0:B9:F3:14:20:84:96:3C:96:C9:CB:31
Certificate issuer: /CN=0759f6ac173f75ed9e585ec7d872a5865cef2835
Certificate serial: 0185701EE573FD3138578B339B4D7B98F676
Authority key identifier: 07:59:F6:AC:17:3F:75:ED:9E:58:5E:C7:D8:72:A5:86:5C:EF:28:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B1n2rBc_de2eWF7H2HKlhlzvKDU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/d2cd1c-04b5-44d0-81d5-7be3bda05927/1/ntmieYmpgvXgufMUIISWPJbJyzE.roa
Signing time: Mon 02 Jan 2023 01:35:51 +0000
ROA not before: Mon 02 Jan 2023 01:35:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205185
IP address blocks: 185.226.108.0/22 maxlen: 24
45.129.172.0/22 maxlen: 24
185.136.236.0/22 maxlen: 24
2a0d:8600::/29 maxlen: 48
2a0f:dc40::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 06 Mar 2023 14:24:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:1e:e5:73:fd:31:38:57:8b:33:9b:4d:7b:98:f6:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0759f6ac173f75ed9e585ec7d872a5865cef2835
Validity
Not Before: Jan 2 01:35:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9ed9a27989a982f5e0b9f3142084963c96c9cb31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:27:6c:a1:f4:74:b3:10:3a:f2:55:02:5e:73:
67:c2:11:cb:fc:74:b3:54:59:41:97:75:73:04:19:
55:6f:a2:f7:63:e5:be:b3:82:c3:fe:1e:58:8b:fe:
62:d5:aa:40:21:e7:d0:bd:b9:bc:62:ea:0c:73:ac:
96:31:19:96:f8:5a:dc:da:7f:50:09:51:64:97:b9:
cd:e5:d9:c7:f4:7a:b9:75:a3:1f:d4:57:c8:4f:b1:
14:78:ea:20:0a:68:ea:eb:76:dc:7b:87:8b:ee:98:
b1:c7:e2:e8:c2:2d:b4:33:df:a7:c2:d6:57:64:a5:
d6:66:a2:72:7d:86:44:c8:7e:d5:9e:30:91:b4:99:
8e:1c:32:14:5e:ee:e6:ba:59:a8:59:ef:82:55:1d:
97:71:ee:ac:e4:64:2b:11:96:60:0b:ab:ed:0a:1c:
c3:1d:9f:e9:18:72:c9:4a:33:19:74:0b:12:e5:eb:
ef:60:72:04:64:4a:ee:3e:fe:72:0b:a5:cd:9a:74:
6b:d6:dd:65:64:89:74:4b:3e:7e:43:19:32:31:ae:
4c:8f:07:62:fc:35:ca:7f:9e:43:f6:34:d9:07:a1:
dc:7d:9d:89:e5:8d:de:89:12:b7:d0:4b:11:4f:0f:
22:9c:99:65:b5:d3:75:ea:44:fc:74:17:0e:b0:06:
35:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:D9:A2:79:89:A9:82:F5:E0:B9:F3:14:20:84:96:3C:96:C9:CB:31
X509v3 Authority Key Identifier:
keyid:07:59:F6:AC:17:3F:75:ED:9E:58:5E:C7:D8:72:A5:86:5C:EF:28:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B1n2rBc_de2eWF7H2HKlhlzvKDU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/d2cd1c-04b5-44d0-81d5-7be3bda05927/1/ntmieYmpgvXgufMUIISWPJbJyzE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/d2cd1c-04b5-44d0-81d5-7be3bda05927/1/B1n2rBc_de2eWF7H2HKlhlzvKDU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.172.0/22
185.136.236.0/22
185.226.108.0/22
IPv6:
2a0d:8600::/29
2a0f:dc40::/29
Signature Algorithm: sha256WithRSAEncryption
28:c9:66:5e:01:96:44:b6:ea:0f:f5:ab:ce:00:d9:ba:61:3a:
db:f3:eb:09:c9:40:bb:3e:55:b8:e4:f8:9a:db:18:01:c4:f4:
c0:fd:19:3a:96:8e:62:26:3b:ee:83:7c:86:2a:21:ae:c7:b6:
90:74:5b:e4:2f:f6:77:db:0a:34:77:a4:14:aa:0f:af:39:a6:
ee:5f:f4:3a:be:58:19:ad:f7:9a:1d:53:d5:57:8b:35:3b:da:
f8:b9:62:16:75:25:1f:15:ce:69:15:7c:f7:7d:e2:5a:63:71:
c5:9f:93:05:d5:f1:11:37:e7:5c:d7:51:b6:04:7f:4d:db:70:
46:43:10:8c:e9:3d:89:9c:bb:47:45:4c:52:f9:fe:46:7c:3c:
74:a9:35:c4:f3:6b:58:bc:14:8b:99:2b:7b:27:0d:eb:61:e8:
7a:11:cb:14:02:14:90:bc:0b:39:a2:d3:32:8e:82:6d:a6:00:
fd:04:bc:75:98:57:b4:74:9b:ce:43:df:38:24:f0:b0:43:b0:
01:24:48:69:81:d7:5b:19:29:c3:82:4a:66:2c:c1:9c:79:53:
10:ef:fe:37:48:26:7a:7d:ac:43:6a:5e:d4:65:8e:bc:1a:14:
72:50:f0:cd:fc:06:a4:bb:df:26:d0:25:88:ce:ae:65:31:2c:
2e:e9:44:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:57 2024 by rpki-client on console-fra.rpki-client.org