Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/NcECgRdHMPBl89pDw4E7-M9Uid0.roa
File: NcECgRdHMPBl89pDw4E7-M9Uid0.roa (raw, json)
Hash identifier: tzFCULXr6XViPGRMAeK1HwsA8GjhKh5ZgI1Lm9hipKI=
Subject key identifier: 35:C1:02:81:17:47:30:F0:65:F3:DA:43:C3:81:3B:F8:CF:54:89:DD
Certificate issuer: /CN=70f9b16adf2fd31988859922b4457481dd7eef40
Certificate serial: 0187A43C343F018356CEBCDFF809141BC40F
Authority key identifier: 70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/NcECgRdHMPBl89pDw4E7-M9Uid0.roa
Signing time: Fri 21 Apr 2023 14:33:41 +0000
ROA not before: Fri 21 Apr 2023 14:33:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35758
IP address blocks: 213.137.83.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 May 2023 10:39:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:a4:3c:34:3f:01:83:56:ce:bc:df:f8:09:14:1b:c4:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f9b16adf2fd31988859922b4457481dd7eef40
Validity
Not Before: Apr 21 14:33:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=35c10281174730f065f3da43c3813bf8cf5489dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:b2:fe:84:7a:54:71:16:d5:39:8d:6e:6d:6d:
8f:1a:91:1b:f0:fe:75:6d:a7:85:59:90:87:13:4a:
47:9f:f6:cd:72:ce:89:e5:ce:ee:a6:1c:e2:98:c1:
c3:3d:75:0f:7e:f2:15:e9:20:f6:b3:2e:64:8b:fb:
66:c7:37:af:2e:7c:e6:90:2e:64:87:29:fa:54:5f:
82:1d:28:1e:8a:3a:3f:17:bf:61:24:33:dd:a9:80:
e1:59:b0:30:aa:e3:8b:da:0e:cf:a5:84:f6:5a:7d:
fe:7c:4e:ac:17:42:b1:a7:a8:1e:14:71:a4:92:28:
86:86:97:6f:ac:79:3c:63:fd:71:79:f5:58:98:c0:
32:06:bd:a1:3b:68:99:54:22:8e:32:46:8a:89:c6:
85:39:ef:69:98:29:2c:d8:e2:a2:61:a8:5b:75:9c:
ad:89:aa:c7:3d:44:54:33:0d:9b:53:9c:97:27:34:
57:b1:82:66:8b:fc:67:bb:75:07:a5:b6:5c:b2:ce:
8b:0a:a8:b2:5a:f5:fd:b7:94:1d:e7:7c:97:29:3e:
31:ae:42:cf:e7:5a:aa:b4:a2:7f:de:ac:d0:9a:d0:
6b:01:69:18:0a:34:93:ea:15:52:95:2c:79:6e:48:
4a:af:f3:6e:41:c8:f3:4a:20:e2:65:47:66:22:cd:
0d:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:C1:02:81:17:47:30:F0:65:F3:DA:43:C3:81:3B:F8:CF:54:89:DD
X509v3 Authority Key Identifier:
keyid:70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/NcECgRdHMPBl89pDw4E7-M9Uid0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/cPmxat8v0xmIhZkitEV0gd1-70A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.137.83.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:af:19:35:6c:ca:6b:00:8e:ea:26:15:fe:99:9e:64:57:75:
35:8c:e0:dd:02:1b:33:17:92:80:68:f0:d9:32:6b:33:34:0e:
ba:a1:bf:aa:f6:20:fa:5c:f3:6f:09:63:68:a8:5e:4e:54:bd:
c5:19:76:12:d7:c4:5b:ad:15:88:8f:50:a2:8a:a1:03:b7:e3:
2c:8e:8b:68:80:dd:ca:e7:e9:a2:be:0a:4a:06:51:fe:19:4e:
88:25:d7:04:af:a3:c3:a2:a4:0a:b6:1a:76:82:6d:31:91:a7:
7c:cd:ae:3c:7a:2c:52:88:2f:6e:c6:41:6b:ee:c9:c0:3a:ef:
6b:93:af:76:08:94:4d:79:bf:e0:d0:26:40:54:32:da:69:fc:
0f:c7:3d:75:12:ab:b4:10:8a:eb:c6:eb:ec:fa:9a:aa:39:4e:
f0:3f:5a:3b:9b:9d:94:77:c0:e3:09:40:4a:37:f9:71:af:da:
30:11:6a:23:1b:52:9a:f1:df:49:85:d6:29:63:40:e0:8d:ca:
7a:f1:5a:90:1a:c9:94:d6:ae:2a:75:3e:8a:8c:ce:ae:47:74:
27:8d:a8:38:5b:c1:89:f1:e4:f6:e8:c4:28:98:5a:84:e3:01:
fe:bf:c2:7d:81:6a:70:f3:85:9a:86:f2:dc:80:ea:c7:29:69:
19:43:26:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:06 2024 by rpki-client on console-fra.rpki-client.org