Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/NGL6COTE-tNWe_FcFMOUnaDqeKY.roa
File: NGL6COTE-tNWe_FcFMOUnaDqeKY.roa (raw, json)
Hash identifier: Um46+mxcqZK+p35vPTc7cqxSZocICi82YNpwd0b3Q5Y=
Subject key identifier: 34:62:FA:08:E4:C4:FA:D3:56:7B:F1:5C:14:C3:94:9D:A0:EA:78:A6
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 0189B4EE3630561688147B9E65658A7D67F7
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/NGL6COTE-tNWe_FcFMOUnaDqeKY.roa
Signing time: Wed 02 Aug 2023 06:27:37 +0000
ROA not before: Wed 02 Aug 2023 06:27:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47726
IP address blocks: 185.65.201.0/24 maxlen: 24
185.65.203.0/24 maxlen: 24
185.65.202.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b4:ee:36:30:56:16:88:14:7b:9e:65:65:8a:7d:67:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Aug 2 06:27:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3462fa08e4c4fad3567bf15c14c3949da0ea78a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:29:0e:85:7d:94:17:88:c0:13:76:37:43:1e:
94:fb:bf:2c:32:69:76:4a:d5:80:95:5b:43:da:d3:
d0:1c:f4:69:1c:b0:16:66:0c:14:a5:3e:cd:6e:0c:
c2:18:32:c1:03:1c:53:67:35:e7:15:61:db:cb:18:
72:03:ea:d9:98:a3:19:42:90:7b:42:02:53:eb:ea:
6a:0f:32:35:3a:92:40:20:09:2a:ac:26:10:88:53:
a7:27:16:29:0e:33:68:7d:4f:85:71:08:db:75:f6:
16:cf:d3:24:01:a2:6e:68:10:26:6b:11:c9:37:b6:
29:da:e6:88:a5:31:4a:bb:54:0c:1e:c3:d7:78:71:
f2:96:a6:4e:d8:68:da:91:40:63:b6:bb:52:e3:cc:
57:3c:4f:6a:2e:5b:b3:ca:2f:e0:0c:eb:9a:e6:57:
e8:a8:e4:85:fc:06:3b:48:04:df:7b:f8:5e:2b:93:
ef:51:a5:63:a6:a9:9f:93:dc:2e:04:7c:14:b8:87:
56:87:83:09:6b:2b:b1:ad:91:bb:29:e2:70:72:2b:
b0:b5:ba:ea:74:19:4d:c9:aa:31:76:ea:7a:af:aa:
5f:b4:92:1a:ed:6d:41:3e:df:71:ed:6f:6f:fa:e2:
e0:74:d8:15:fe:f8:15:64:f6:8c:d8:42:e6:a2:4e:
7b:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:62:FA:08:E4:C4:FA:D3:56:7B:F1:5C:14:C3:94:9D:A0:EA:78:A6
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/NGL6COTE-tNWe_FcFMOUnaDqeKY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.201.0-185.65.203.255
Signature Algorithm: sha256WithRSAEncryption
29:97:6c:c6:18:52:46:b1:1f:37:f4:c5:fd:f4:5d:e1:74:89:
35:9c:cf:88:83:7f:02:5d:17:97:bf:f9:07:53:bb:bf:fa:57:
6f:06:50:44:04:03:5e:90:c0:9d:fd:88:fb:cd:2b:0a:76:53:
70:cd:5e:1e:4e:c5:4d:40:83:28:62:03:26:6e:8b:db:82:63:
d3:c5:54:ab:33:80:92:ff:e9:83:bc:e1:b9:77:11:20:fe:b5:
7c:67:12:0d:3b:80:2f:48:0c:9e:2a:b7:9d:6f:3b:be:41:d1:
b6:6e:e2:22:5f:c5:de:05:28:5f:3b:d5:2b:1b:cf:43:f2:42:
6f:97:31:5c:7b:6d:42:1a:2a:12:10:37:cf:cf:71:e7:a6:9b:
56:43:2b:64:79:b4:8c:81:6f:61:00:53:98:70:0d:4c:b0:ea:
04:96:e2:cf:30:f4:8e:ed:68:94:21:b4:11:8d:e5:c1:3f:1b:
3c:d5:47:dd:fa:18:4a:e4:86:f7:75:fc:55:1f:16:61:cb:df:
5f:f6:8f:7f:83:24:3e:68:a4:7b:cc:89:12:53:04:86:96:1e:
2c:a8:5e:bb:d0:50:46:47:c7:2a:0e:f9:e3:7b:fe:2c:82:97:
c6:6e:e9:5c:23:63:d1:5e:0d:b0:a8:58:ad:f8:b6:84:d9:10:
7e:a2:db:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Dec 4 14:03:43 2023 by rpki-client on console-fra.rpki-client.org