Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/8ca3bc-a875-4507-91cc-bcefa45658cc/1/NmfLEWevWK4tbLLeP2kkmbx5Pl8.roa
File: NmfLEWevWK4tbLLeP2kkmbx5Pl8.roa (raw, json)
Hash identifier: bn6DlKIZAAGJUKWdyJAYR+fXmBMj1UA2X5WzViWtkk8=
Subject key identifier: 36:67:CB:11:67:AF:58:AE:2D:6C:B2:DE:3F:69:24:99:BC:79:3E:5F
Certificate issuer: /CN=1f53c06ca7976d737b23bc72768a228c397faf2f
Certificate serial: 01856CCAFA3E2522D6F463583ACC9D28EBE3
Authority key identifier: 1F:53:C0:6C:A7:97:6D:73:7B:23:BC:72:76:8A:22:8C:39:7F:AF:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H1PAbKeXbXN7I7xydooijDl_ry8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/8ca3bc-a875-4507-91cc-bcefa45658cc/1/NmfLEWevWK4tbLLeP2kkmbx5Pl8.roa
Signing time: Sun 01 Jan 2023 10:05:19 +0000
ROA not before: Sun 01 Jan 2023 10:05:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42864
IP address blocks: 45.132.100.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:fa:3e:25:22:d6:f4:63:58:3a:cc:9d:28:eb:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f53c06ca7976d737b23bc72768a228c397faf2f
Validity
Not Before: Jan 1 10:05:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3667cb1167af58ae2d6cb2de3f692499bc793e5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:48:77:38:a9:ca:46:0e:ff:cc:89:36:fb:24:
45:e5:32:47:2a:f6:42:93:5c:76:c7:09:e2:0c:6f:
ad:68:2a:a2:c5:14:c6:43:91:04:20:08:49:98:47:
43:89:1e:97:c1:1e:86:7d:08:53:f1:2f:f9:cf:30:
97:3c:24:22:58:68:87:8c:55:f2:c1:d6:49:27:ab:
1b:f1:0f:89:aa:12:86:23:e8:be:22:da:43:ba:eb:
bd:b2:db:41:04:b3:58:e1:b5:59:24:10:8a:54:a0:
05:b4:69:b6:8d:84:29:ec:57:93:ed:04:08:51:6f:
f5:c4:41:7b:35:97:08:fa:a8:81:16:5b:c8:44:ac:
21:ad:d7:20:66:20:07:2e:ea:d3:d0:e9:fe:79:6e:
56:2f:12:e4:c5:3f:b2:4c:4e:22:df:72:30:d4:5a:
3f:0c:9c:3b:c2:bd:db:bb:20:2c:93:cd:0b:24:ef:
3c:03:0b:dc:ec:6c:cb:90:99:a9:0e:f4:1a:20:f8:
4f:dc:94:8e:81:3b:d6:41:a2:cd:20:8c:ce:2f:24:
7b:03:4e:f4:23:b1:6b:fb:ac:43:05:1b:1a:e9:3c:
0a:7d:02:e2:de:37:46:07:6f:2f:02:6b:7f:f6:6c:
8f:d1:4c:de:31:90:fc:5c:21:53:d2:a0:1e:b1:ef:
eb:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:67:CB:11:67:AF:58:AE:2D:6C:B2:DE:3F:69:24:99:BC:79:3E:5F
X509v3 Authority Key Identifier:
keyid:1F:53:C0:6C:A7:97:6D:73:7B:23:BC:72:76:8A:22:8C:39:7F:AF:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H1PAbKeXbXN7I7xydooijDl_ry8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8ca3bc-a875-4507-91cc-bcefa45658cc/1/NmfLEWevWK4tbLLeP2kkmbx5Pl8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8ca3bc-a875-4507-91cc-bcefa45658cc/1/H1PAbKeXbXN7I7xydooijDl_ry8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.100.0/22
Signature Algorithm: sha256WithRSAEncryption
29:85:32:6c:a8:82:f2:30:a6:30:07:85:aa:65:6c:e8:65:8b:
08:56:b5:b7:94:84:d1:72:5d:74:ac:9a:ba:ec:3f:1b:9d:a0:
b4:ee:0c:72:d1:75:d2:0e:cb:d0:7d:7b:e4:a0:6f:ea:62:fc:
d5:94:b3:51:7b:5f:93:7a:7e:ab:a5:07:1a:37:f1:5b:62:95:
a0:ee:ab:6d:1a:33:53:2a:5a:3d:54:e7:7d:f5:79:fd:ac:74:
97:69:20:a6:94:d4:55:92:38:0c:ee:55:54:6c:23:d0:96:aa:
05:a8:80:c0:6a:26:a2:8c:d7:42:13:c8:8d:82:7e:0b:a8:d3:
fe:ae:2d:12:f6:e1:e1:bb:e2:69:c0:93:20:10:0e:a6:1f:7f:
d9:c7:ec:70:6a:9b:b1:be:48:42:9c:2d:02:c3:a3:9a:27:08:
60:df:24:54:71:f1:6e:28:5e:db:71:ce:19:73:0c:1a:6c:f1:
a6:51:db:2c:f9:5b:64:8d:8e:7e:1d:73:64:4b:82:18:31:7f:
6a:3a:ca:c3:f5:57:16:be:37:14:e4:0f:4d:32:26:d9:a9:ee:
2e:60:42:46:b7:df:f9:42:63:4f:c3:32:7c:15:b4:ea:62:36:
dc:c8:8f:08:7d:ae:de:70:18:fc:55:f2:ba:be:b4:45:a4:da:
1e:7c:9b:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:00 2024 by rpki-client on console-fra.rpki-client.org