Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/nOr3r4un-U0JP1ZPaM3MoXGkPjc.roa
File: nOr3r4un-U0JP1ZPaM3MoXGkPjc.roa (raw, json)
Hash identifier: aUHnpWt42SBsrht29MZTpx4YX50nukC75893bfOCsqI=
Subject key identifier: 9C:EA:F7:AF:8B:A7:F9:4D:09:3F:56:4F:68:CD:CC:A1:71:A4:3E:37
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018C9F224A8B85B0861FC83171FECC7B65E1
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/nOr3r4un-U0JP1ZPaM3MoXGkPjc.roa
Signing time: Mon 25 Dec 2023 04:01:13 +0000
ROA not before: Mon 25 Dec 2023 04:01:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201949
IP address blocks: 89.40.70.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:9f:22:4a:8b:85:b0:86:1f:c8:31:71:fe:cc:7b:65:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Dec 25 04:01:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9ceaf7af8ba7f94d093f564f68cdcca171a43e37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f4:14:52:ae:ec:36:d6:74:ab:f9:e1:df:21:
bf:53:8e:8c:21:1c:8b:bb:f2:f9:75:f1:d1:51:9e:
83:57:c1:28:e8:f5:78:9a:3d:3f:0b:4b:a3:af:50:
94:1c:9f:9f:69:74:59:1a:d8:58:f3:30:65:2d:97:
47:ff:5f:67:93:2e:e4:6e:21:4a:e9:84:51:27:50:
42:21:73:1e:78:3a:0b:a8:8e:ab:41:61:be:42:45:
57:e0:08:20:d9:27:18:63:ab:f2:50:b8:da:11:85:
a9:6d:7f:a3:96:3b:9e:c5:ee:f0:58:e7:de:d6:e1:
4d:d6:fd:5b:e1:e0:9f:f7:74:45:1d:33:4f:fb:3d:
7a:2d:cc:00:a6:0a:a6:0c:cb:5f:2e:40:a1:a0:df:
9c:e6:a1:9e:9b:19:43:98:17:ff:c0:74:f3:8d:68:
77:9f:f5:75:3a:0d:5b:4f:95:b9:2e:c3:8d:37:b0:
d8:2f:09:d9:fe:7a:d4:28:ce:82:13:28:81:3f:5a:
a2:c4:82:19:c7:e4:b9:ab:ba:c3:94:1e:76:6a:88:
e0:f3:ef:83:80:ec:26:ce:da:83:0d:7c:98:17:08:
dd:d2:94:15:5a:d0:de:2f:4b:d1:5e:69:ba:9c:6b:
f8:d3:ec:2b:81:d1:94:d9:df:c5:1e:b9:4c:f1:a1:
89:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:EA:F7:AF:8B:A7:F9:4D:09:3F:56:4F:68:CD:CC:A1:71:A4:3E:37
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/nOr3r4un-U0JP1ZPaM3MoXGkPjc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.40.70.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:6d:a1:d3:33:b6:ba:39:76:62:78:09:f9:ec:ce:2b:c7:23:
08:2c:3c:78:f8:13:20:75:7d:b7:4b:01:c1:ee:22:d1:91:60:
f6:66:e3:1b:aa:0d:09:59:65:d2:63:6a:ec:e9:bc:93:53:59:
c2:dc:82:d0:1b:66:7d:e6:0e:52:8d:ba:29:ef:27:5f:b1:08:
f2:47:09:e9:3f:6a:3a:af:a3:fe:e4:74:12:eb:28:67:28:c1:
58:c0:68:4a:59:2f:f2:d8:74:cb:e4:4f:24:83:8a:45:81:3e:
5e:59:ee:09:64:35:1e:02:56:80:24:22:5f:26:39:4c:bb:78:
8e:88:f4:34:99:da:33:44:40:f0:ef:d5:8a:cb:19:c1:af:c7:
b2:fe:b5:02:f2:e0:f9:46:d9:7c:1f:9f:73:58:09:a2:b1:8b:
03:7b:ca:82:96:d5:00:ce:37:b9:4a:ed:d2:1e:d1:f3:99:56:
5c:ea:8d:13:e6:64:9e:78:e2:3e:4b:69:0b:99:62:8d:dc:e3:
fe:17:11:2f:fc:0e:8a:bc:25:0e:a1:26:d7:6f:8f:9b:f2:ad:
a3:30:1d:d1:18:b9:a7:fa:fb:6e:30:13:be:a8:fd:3e:b8:21:
ef:95:13:34:9f:63:72:c4:ce:17:d8:66:0f:ac:5b:f5:1e:90:
7c:d2:4d:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:10 2024 by rpki-client on console-fra.rpki-client.org