Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/NZzvzvBPPBCIsNoiK64aRYVJOHg.roa
File: NZzvzvBPPBCIsNoiK64aRYVJOHg.roa (raw, json)
Hash identifier: pGeaSNzkwg1kuJvyBtYlyDqdKAKTY38m5WBzMRFA85o=
Subject key identifier: 35:9C:EF:CE:F0:4F:3C:10:88:B0:DA:22:2B:AE:1A:45:85:49:38:78
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 018571955BCBA469A2887633E11FC60A239A
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/NZzvzvBPPBCIsNoiK64aRYVJOHg.roa
Signing time: Mon 02 Jan 2023 08:24:51 +0000
ROA not before: Mon 02 Jan 2023 08:24:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1125
IP address blocks: 145.125.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:5b:cb:a4:69:a2:88:76:33:e1:1f:c6:0a:23:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Jan 2 08:24:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=359cefcef04f3c1088b0da222bae1a4585493878
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:73:10:68:7e:a8:28:96:ec:b8:a3:be:ce:ab:
b9:fa:4a:99:bf:9f:16:d5:9d:1c:9e:95:ae:dc:e8:
b2:c4:8a:88:ad:b6:d4:5d:22:d4:4d:7d:0a:c7:70:
6c:ca:92:53:39:d6:68:04:27:3e:d2:b0:5b:68:1d:
6d:64:72:ba:fc:40:42:d1:55:78:64:e7:ab:30:77:
3d:f4:96:87:de:d6:e7:28:15:34:29:a1:09:2e:9b:
2d:6d:15:05:0f:f1:ed:2b:68:db:5d:6f:5c:bf:e7:
8d:40:de:ad:45:32:ee:11:a3:4c:90:56:c2:24:78:
0a:e8:98:17:22:a4:2d:af:57:76:99:7f:23:3c:d5:
aa:05:97:20:6c:47:f9:76:fa:99:d2:38:54:bf:60:
85:cf:5d:a7:89:71:67:19:ad:f7:fb:87:6d:c9:eb:
31:8f:94:9d:f9:10:80:5e:a2:ab:17:dc:6f:8f:40:
43:fe:c4:d7:4e:65:f0:5d:57:ff:dc:25:98:9a:51:
94:0a:a1:91:ac:5e:c9:20:94:00:70:4e:a4:5e:87:
74:73:08:dc:69:2b:b4:db:6b:6e:3f:c5:ef:37:c6:
3f:b3:5d:08:49:71:1d:fb:9a:85:9b:dd:e4:c6:de:
de:bd:b5:85:b4:67:25:1e:30:ff:5c:27:9a:85:ec:
7e:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:9C:EF:CE:F0:4F:3C:10:88:B0:DA:22:2B:AE:1A:45:85:49:38:78
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/NZzvzvBPPBCIsNoiK64aRYVJOHg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.125.0.0/16
Signature Algorithm: sha256WithRSAEncryption
89:de:ad:3e:5e:74:06:04:54:6a:f3:14:95:36:6d:a2:6d:21:
90:eb:e9:66:a0:d5:40:0e:38:ec:88:76:57:bd:49:30:b1:b5:
4b:a7:24:ee:37:dc:8e:ba:62:62:b8:cf:21:a5:fa:62:10:7d:
95:d3:6f:d4:b4:f5:a4:30:9d:39:3e:28:df:ae:6a:da:ff:77:
dd:63:34:db:14:88:dd:ab:be:ea:e9:f1:0a:e4:45:4c:09:5c:
fc:82:a7:5b:d6:57:e0:04:1e:a6:c8:c9:1d:3d:60:84:32:9d:
1a:8f:7e:bc:2b:59:20:a7:6f:7f:c7:a5:b9:9a:b4:26:5d:9a:
6c:f4:b1:0b:47:b9:df:9a:91:4f:46:61:6e:60:3e:bf:2e:39:
b1:63:55:9e:e0:4f:41:fb:b3:6b:28:59:52:06:db:b4:50:de:
c5:e9:ca:8a:b9:60:82:57:ab:7a:71:96:10:68:f1:88:41:9f:
64:98:d2:93:4d:e1:d2:80:95:49:4b:ba:18:f3:84:dd:f8:a2:
61:6c:ba:d0:29:b6:6d:d0:c3:50:22:a6:e1:f3:f2:b0:28:b1:
2a:53:9e:01:2b:ef:eb:5e:d2:ab:46:5a:26:31:49:99:c7:63:
07:9b:4e:14:b2:1e:79:b5:02:31:99:0d:23:f7:a3:19:8d:2f:
b3:f7:4e:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:09 2024 by rpki-client on console-fra.rpki-client.org