Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/NqFEdOtQT1gopPuNahwpFrN2ep8.roa
File: NqFEdOtQT1gopPuNahwpFrN2ep8.roa (raw, json)
Hash identifier: 6PSf4PjSooomLUK2fnmjvq2VviHAFwzJqVL2Qi2RZ7M=
Subject key identifier: 36:A1:44:74:EB:50:4F:58:28:A4:FB:8D:6A:1C:29:16:B3:76:7A:9F
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018F75B1028444E2898CD8B06BB8AD6B3F95
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/NqFEdOtQT1gopPuNahwpFrN2ep8.roa
Signing time: Tue 14 May 2024 06:01:25 +0000
ROA not before: Tue 14 May 2024 06:01:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56322
IP address blocks: 86.107.101.0/24 maxlen: 24
93.113.57.0/24 maxlen: 24
94.177.147.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 14 May 2024 09:05:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:75:b1:02:84:44:e2:89:8c:d8:b0:6b:b8:ad:6b:3f:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: May 14 06:01:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=36a14474eb504f5828a4fb8d6a1c2916b3767a9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:1e:10:13:f6:26:30:7c:98:11:05:8f:ad:db:
5a:77:24:83:01:40:62:58:7f:ca:8f:a1:be:4d:0d:
9e:c6:e0:91:bb:e1:c0:9e:28:3d:f3:1d:61:62:32:
87:a5:2f:0c:23:dc:cb:63:1b:55:3d:88:11:a7:43:
3b:33:8b:d3:f9:22:85:0a:01:25:10:22:8a:bd:e1:
fa:ce:36:c3:67:b2:6e:02:ed:4d:4f:46:fa:20:fb:
3f:d2:be:5d:27:92:92:1f:a0:48:62:74:32:12:37:
33:b9:73:8d:93:d4:8f:e3:30:45:2d:fc:a3:ed:60:
88:e7:ae:bb:42:a0:5f:14:c6:fd:bf:01:3f:40:a7:
4b:80:1b:66:53:e2:0b:19:a0:32:a1:ee:21:be:e0:
a4:53:2c:bd:90:d5:d3:83:3a:cb:9d:81:e7:d9:ec:
ae:1a:05:88:5f:d2:1f:0c:c8:0d:77:be:35:a3:69:
8c:be:01:75:85:62:d7:f2:d2:34:b1:fe:bc:f4:10:
fc:40:f8:44:3d:7a:bb:c9:05:48:79:bd:fa:1e:84:
2c:7d:03:58:cf:c3:57:e9:a3:84:19:4e:c8:38:f3:
4b:94:a3:9b:64:78:84:98:0a:69:38:e5:6e:be:9a:
ad:42:af:65:89:73:63:b0:54:85:91:8f:60:37:d5:
93:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:A1:44:74:EB:50:4F:58:28:A4:FB:8D:6A:1C:29:16:B3:76:7A:9F
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/NqFEdOtQT1gopPuNahwpFrN2ep8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.107.101.0/24
93.113.57.0/24
94.177.147.0/24
Signature Algorithm: sha256WithRSAEncryption
56:95:96:3a:5c:d6:6d:8d:3a:89:2b:74:ee:37:63:d0:96:76:
fb:a6:4d:40:99:fe:ea:e2:bd:07:14:67:ac:73:ab:19:31:30:
64:f1:34:49:9f:f8:12:6a:c4:67:46:03:8d:78:64:84:91:13:
4a:e7:7a:69:44:e2:82:bc:3f:64:bf:b4:15:9a:33:d3:97:2d:
9c:e5:16:ff:18:20:10:a4:7c:09:18:18:46:29:cc:ea:86:d4:
4a:f9:f9:0c:73:c4:d5:28:8c:91:70:d4:d4:85:fd:e1:cd:db:
9e:6c:1e:01:1e:36:72:93:7f:15:b9:42:0d:f0:a3:0e:6a:77:
00:0e:2b:68:17:f4:a4:f3:cb:76:da:83:8d:1f:0d:09:d7:d7:
27:40:80:6a:f3:6a:89:fc:d2:a1:89:3b:86:e0:03:84:54:95:
b0:31:e0:c5:75:d7:c5:d6:30:40:4f:f4:74:be:79:12:e7:01:
27:17:25:17:b1:84:ac:69:19:4e:37:f6:eb:18:b9:5a:c8:53:
a4:d7:00:7a:4b:e8:f1:70:c6:08:2e:5e:98:71:b3:88:67:ca:
92:5e:a6:11:02:70:0f:4f:b6:da:86:c8:e9:56:b9:d2:0d:9e:
cc:0f:08:d8:95:f6:67:f7:14:a4:95:72:5c:cd:d2:b7:dc:e9:
42:72:b0:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:06 2024 by rpki-client on console-fra.rpki-client.org