Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/NRADeF1Lmpa6onB981QjHZ2oyTg.roa
File: NRADeF1Lmpa6onB981QjHZ2oyTg.roa (raw, json)
Hash identifier: 248zGuSB6ZcaJIJ8+frTN+PDvE27RCmEeamfupkwy/0=
Subject key identifier: 35:10:03:78:5D:4B:9A:96:BA:A2:70:7D:F3:54:23:1D:9D:A8:C9:38
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 01856F94C56F6B2CBE4A19F9621014850ABD
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/NRADeF1Lmpa6onB981QjHZ2oyTg.roa
Signing time: Sun 01 Jan 2023 23:04:58 +0000
ROA not before: Sun 01 Jan 2023 23:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51431
IP address blocks: 213.195.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 06 Feb 2023 06:52:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:94:c5:6f:6b:2c:be:4a:19:f9:62:10:14:85:0a:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: Jan 1 23:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=351003785d4b9a96baa2707df354231d9da8c938
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:b6:1a:d4:44:d5:23:dd:a0:d0:1a:b7:80:ea:
70:ad:2a:0a:9a:c7:fa:36:e7:3c:06:09:75:ca:c0:
8f:21:0a:8b:05:30:7b:32:41:2d:6f:3d:0c:f9:c1:
19:04:f9:34:2d:99:c0:dc:10:6f:25:2c:a9:b7:3d:
de:20:70:f5:d4:e3:93:66:9a:3d:f4:f5:50:af:72:
4b:72:dd:19:27:37:35:0a:30:2a:82:8e:06:c5:42:
93:32:46:8a:f2:d2:ff:33:21:a7:6e:73:4d:1d:45:
b7:2a:9a:71:41:5c:d5:57:97:52:bb:b2:fa:a6:43:
6a:71:ca:87:e4:75:37:79:87:33:62:91:7f:e5:06:
5d:cc:b0:bc:08:03:7c:25:e2:82:10:d6:a9:6a:bd:
97:05:a3:38:60:5f:9f:db:68:f5:cd:55:30:c2:50:
84:f9:da:7d:05:55:a5:f2:16:ff:fa:59:2c:19:a3:
45:d9:40:e6:d3:81:5f:03:33:c1:b0:a4:cd:0a:17:
04:0c:49:9a:62:19:0b:e4:5f:81:6a:88:de:c4:2d:
8d:46:b6:2a:8e:a3:56:05:90:c6:57:51:fb:39:74:
99:88:74:69:07:74:38:a5:63:30:19:8f:44:99:f1:
28:f4:48:99:58:8b:b3:86:0e:90:91:a5:55:44:2a:
74:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:10:03:78:5D:4B:9A:96:BA:A2:70:7D:F3:54:23:1D:9D:A8:C9:38
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/NRADeF1Lmpa6onB981QjHZ2oyTg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.195.22.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:99:80:ee:62:29:81:05:81:0f:d0:eb:5a:a3:09:e1:f2:b5:
d4:60:09:9b:57:04:00:84:1a:35:48:1e:35:05:e8:42:13:19:
a0:d2:aa:6a:d6:fb:68:63:dd:a4:03:6c:a6:1f:bf:82:f7:50:
4e:ad:c9:58:34:41:ad:72:94:68:77:96:0b:7a:b3:ab:70:73:
cb:e1:0e:10:ec:a3:6f:32:42:b9:df:6d:9b:55:ad:26:4e:ec:
d8:a5:c6:79:67:91:f3:0e:23:0d:91:be:23:38:99:f1:23:32:
af:c7:c5:98:a0:43:c3:0f:a0:79:8f:0b:29:65:ce:c8:f8:30:
05:d3:d4:5a:bc:b2:ec:0c:37:1a:0a:a4:45:57:1d:20:7a:97:
4a:3e:3b:ad:b4:b1:db:77:ab:2c:a6:19:82:27:b5:d7:7b:40:
20:c9:61:9d:7a:50:4a:c2:94:0c:2f:ae:92:32:77:59:82:57:
46:54:7b:c4:fe:8a:1f:59:16:0e:ed:35:59:8b:f3:0e:cc:73:
bd:58:bc:5f:93:96:60:8e:c1:2f:95:08:e4:41:f5:76:16:59:
4e:7e:d6:be:86:71:27:bb:b4:9f:72:05:2c:e6:3c:7f:7e:39:
75:00:69:ee:8d:b6:81:e3:c6:b5:9c:19:9c:1e:a3:0d:ac:31:
36:1f:b4:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:02 2024 by rpki-client on console-fra.rpki-client.org