Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/063658-8262-4965-9661-0542427b02b9/1/NCbtFckofsnaQK5H68r9R_GXuNc.roa
File: NCbtFckofsnaQK5H68r9R_GXuNc.roa (raw, json)
Hash identifier: oVpk+zbXFLWTknaT06/8etkvzMPkumU6Jbbm0ujXCZs=
Subject key identifier: 34:26:ED:15:C9:28:7E:C9:DA:40:AE:47:EB:CA:FD:47:F1:97:B8:D7
Certificate issuer: /CN=94b1cbff4bd970fa27fdefd4bf68b02d68d2b9dd
Certificate serial: 018CC348CDBD544DA5BFB22281B61FE54066
Authority key identifier: 94:B1:CB:FF:4B:D9:70:FA:27:FD:EF:D4:BF:68:B0:2D:68:D2:B9:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lLHL_0vZcPon_e_Uv2iwLWjSud0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/063658-8262-4965-9661-0542427b02b9/1/NCbtFckofsnaQK5H68r9R_GXuNc.roa
Signing time: Mon 01 Jan 2024 04:29:37 +0000
ROA not before: Mon 01 Jan 2024 04:29:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43394
IP address blocks: 91.194.242.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 15 Jan 2024 12:54:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:cd:bd:54:4d:a5:bf:b2:22:81:b6:1f:e5:40:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94b1cbff4bd970fa27fdefd4bf68b02d68d2b9dd
Validity
Not Before: Jan 1 04:29:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3426ed15c9287ec9da40ae47ebcafd47f197b8d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:ba:c5:4e:64:db:a3:11:cf:9e:3d:45:04:59:
d4:ed:2f:a5:97:4a:59:6b:03:47:17:b1:7a:41:bc:
fc:c5:ee:7d:ca:20:79:0f:86:7e:ce:4c:aa:ca:9e:
bf:03:b3:78:18:de:da:37:1e:f0:98:7e:37:38:67:
bd:78:42:15:e9:9d:cc:84:4f:f6:3b:3e:3d:c2:04:
68:be:fd:70:af:a9:7f:20:06:d6:b2:b3:be:46:82:
82:9c:b7:cb:d5:c0:f5:ce:33:5b:66:5c:2d:36:e2:
7d:bb:72:49:50:e8:2e:df:38:06:74:28:f2:df:eb:
e3:ba:4d:ea:00:f1:15:c0:3e:db:b0:6a:77:92:09:
1c:bf:f3:08:4a:15:a9:e2:7a:a0:48:03:04:6a:99:
ef:8e:c5:18:6b:be:11:24:cf:91:a3:fe:34:56:c3:
b0:c6:83:89:da:bf:44:9e:3b:d7:a3:66:44:de:14:
c6:e4:49:c2:a0:70:7f:35:36:5e:41:83:42:6d:a5:
7e:51:33:c0:79:6e:b7:c4:22:e8:db:56:31:b3:3e:
f2:d4:38:6f:fc:84:1e:f3:78:d1:fb:2f:1e:1c:6e:
60:64:57:4e:f6:f0:2f:45:78:f9:7c:ae:d3:59:6f:
78:8c:9a:03:13:e5:0a:6a:46:6a:db:1c:94:42:e2:
9e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:26:ED:15:C9:28:7E:C9:DA:40:AE:47:EB:CA:FD:47:F1:97:B8:D7
X509v3 Authority Key Identifier:
keyid:94:B1:CB:FF:4B:D9:70:FA:27:FD:EF:D4:BF:68:B0:2D:68:D2:B9:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lLHL_0vZcPon_e_Uv2iwLWjSud0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/063658-8262-4965-9661-0542427b02b9/1/NCbtFckofsnaQK5H68r9R_GXuNc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/063658-8262-4965-9661-0542427b02b9/1/lLHL_0vZcPon_e_Uv2iwLWjSud0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.242.0/23
Signature Algorithm: sha256WithRSAEncryption
46:86:c3:d5:56:80:43:bd:8f:ff:f5:0a:12:3d:d4:cc:a2:9e:
0f:e7:e3:b4:7d:2d:f7:13:7f:a9:42:35:21:15:e5:85:12:4a:
92:ba:ac:f4:dc:a1:b6:d5:b4:07:d8:65:b4:b1:3c:8b:c5:f4:
b5:d9:a0:19:6d:04:68:5e:de:05:05:42:ee:20:e5:ba:0d:8c:
2c:ba:1d:e9:26:92:a2:ef:f7:cf:86:da:a5:c1:bd:2a:c9:b8:
ba:27:ea:cf:f5:dd:d9:f7:d7:c0:0f:da:07:ee:7f:b0:a8:15:
c8:37:2c:f2:ce:9b:ed:33:88:d5:3e:6d:25:47:28:15:32:b6:
9d:3f:56:7e:fc:74:56:16:1e:34:ce:c1:c7:74:96:97:1c:a3:
6a:0d:47:23:60:d5:99:04:bd:91:a4:96:e5:5c:51:85:83:5c:
5d:c0:16:27:94:28:23:46:b8:77:c4:e1:e9:7f:27:77:51:58:
bb:cd:02:86:a6:84:99:fd:6e:fb:88:85:72:74:4d:9a:e8:7f:
ad:11:85:09:e3:29:57:d8:fd:1e:2b:2c:56:a9:39:75:9a:e7:
e5:45:bf:94:32:ac:d8:0e:4b:6c:db:64:a3:aa:bb:77:58:a5:
8c:47:e3:20:02:82:d0:28:9e:e2:b2:71:7b:d8:25:ac:1c:c5:
d6:ad:be:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:17 2024 by rpki-client on console-fra.rpki-client.org