Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/NJbWufCxIQo2tWF_uOgqhbvZtxI.roa
File: NJbWufCxIQo2tWF_uOgqhbvZtxI.roa (raw, json)
Hash identifier: 0RlFY8DzBXn6VmbVE5YmtiK/3PFncblptt4w2DAy034=
Subject key identifier: 34:96:D6:B9:F0:B1:21:0A:36:B5:61:7F:B8:E8:2A:85:BB:D9:B7:12
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 01856F9DBEC8EDB835E7CC2247BB7F24A0D3
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/NJbWufCxIQo2tWF_uOgqhbvZtxI.roa
Signing time: Sun 01 Jan 2023 23:14:47 +0000
ROA not before: Sun 01 Jan 2023 23:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35509
IP address blocks: 195.155.105.0/24 maxlen: 24
195.155.104.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:be:c8:ed:b8:35:e7:cc:22:47:bb:7f:24:a0:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Jan 1 23:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3496d6b9f0b1210a36b5617fb8e82a85bbd9b712
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:e5:54:3f:7c:b4:29:52:2b:5e:0e:b7:0c:67:
73:da:8c:03:30:f9:ca:35:83:6d:30:83:e1:62:65:
bb:f8:02:12:44:03:22:9e:88:b1:fe:ea:8e:d1:f6:
dd:2c:2a:67:69:a7:6e:17:42:91:af:4a:70:4c:18:
11:c6:58:6d:11:1e:a4:e3:20:71:61:cc:28:1f:23:
57:6f:d9:55:65:4c:f7:62:ae:dd:c1:25:20:3b:4e:
77:b4:76:cf:f4:ca:e7:2b:45:4e:09:d3:d2:a2:9a:
62:b4:5c:48:0d:af:a5:11:4a:b7:f8:dd:d8:8e:06:
49:73:09:7c:ee:11:63:6e:d8:78:60:31:48:f9:6d:
dc:2c:8c:1b:8e:0d:ce:88:4b:08:03:d0:9a:3a:31:
5c:cb:c3:2d:97:2c:d7:03:25:91:38:25:35:75:19:
df:e9:fc:11:28:30:34:cb:5d:e4:ba:d6:5e:ff:e5:
77:3f:61:0e:1d:6d:df:e2:f5:67:ca:c2:da:4b:f8:
5d:22:f6:91:36:d1:46:d4:0c:50:f6:2f:6d:c4:26:
b1:cb:11:95:24:5b:60:72:e4:a9:52:c7:e9:80:c9:
81:c8:09:62:8e:25:a8:a2:8a:03:94:0d:9d:d3:23:
f1:36:4a:fa:fa:73:e0:b8:86:b3:0c:0c:90:b5:0c:
46:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:96:D6:B9:F0:B1:21:0A:36:B5:61:7F:B8:E8:2A:85:BB:D9:B7:12
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/NJbWufCxIQo2tWF_uOgqhbvZtxI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.155.104.0/23
Signature Algorithm: sha256WithRSAEncryption
7f:2c:a0:a8:4a:ba:73:62:5a:58:19:c5:af:92:1e:f2:64:ee:
7a:a8:04:9d:b7:c2:0a:80:b0:33:5d:2e:ab:60:a6:e7:5e:60:
ca:41:8b:97:77:74:9b:48:de:4f:ce:57:b5:76:b9:d6:90:fc:
33:55:cc:3c:01:40:55:e7:25:ce:eb:1a:3d:91:70:91:9d:a8:
ab:c1:87:f5:54:1c:4c:8e:4c:a5:c7:a2:16:0d:d4:06:b8:3b:
30:4c:cf:95:a9:2e:1b:5d:57:08:b1:70:a9:81:bd:06:42:99:
0e:bc:94:02:58:99:2a:65:7c:c0:28:c0:60:f4:b9:f1:14:13:
98:8d:8a:e3:93:ec:a7:79:b4:2e:52:eb:1a:96:a5:e5:64:cf:
d8:a7:37:b6:54:8a:6b:42:3c:4e:79:ee:89:59:8a:8b:63:f6:
84:b2:a6:53:7e:31:0d:42:16:e0:a2:9f:1e:68:76:05:22:65:
06:f3:ed:82:1b:bb:cb:28:dd:f8:18:03:13:d1:f9:c6:45:47:
22:d3:15:ae:44:86:fa:10:2c:98:ac:cf:d8:12:bf:81:be:a8:
d4:0a:ef:b8:53:ff:de:bf:6c:74:ab:40:fd:5b:4f:53:d4:3f:
df:06:5d:52:bb:00:c5:f6:85:d4:ec:3a:c0:ff:e1:ec:84:56:
f5:0c:45:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:16 2024 by rpki-client on console-fra.rpki-client.org