Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/170ecd-e577-4058-9358-473f15ec0d52/1/NUfo5nkkR_chAXozueRdJPOZw_8.roa
File: NUfo5nkkR_chAXozueRdJPOZw_8.roa (raw, json)
Hash identifier: M1lPr/iP5V29P4zsuTHldOAwvdmn2JRhQcdGk53aFtk=
Subject key identifier: 35:47:E8:E6:79:24:47:F7:21:01:7A:33:B9:E4:5D:24:F3:99:C3:FF
Certificate issuer: /CN=b990c85cfa0ced5283634997e7a4aa8ce7836db6
Certificate serial: 0185707053FCA336B56BF058C3CDA3A43914
Authority key identifier: B9:90:C8:5C:FA:0C:ED:52:83:63:49:97:E7:A4:AA:8C:E7:83:6D:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZDIXPoM7VKDY0mX56SqjOeDbbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/170ecd-e577-4058-9358-473f15ec0d52/1/NUfo5nkkR_chAXozueRdJPOZw_8.roa
Signing time: Mon 02 Jan 2023 03:04:47 +0000
ROA not before: Mon 02 Jan 2023 03:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44302
IP address blocks: 92.61.112.0/20 maxlen: 20
92.61.118.0/24 maxlen: 24
217.27.208.0/20 maxlen: 20
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:53:fc:a3:36:b5:6b:f0:58:c3:cd:a3:a4:39:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b990c85cfa0ced5283634997e7a4aa8ce7836db6
Validity
Not Before: Jan 2 03:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3547e8e6792447f721017a33b9e45d24f399c3ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ae:fd:89:4d:19:16:97:0d:0c:64:b0:e6:53:
b8:d7:63:85:21:91:14:e8:c7:29:7d:fa:3a:7d:3c:
32:e6:c5:12:4b:3c:74:5a:7b:5b:e8:ba:cc:59:84:
1b:43:ef:0f:77:26:cf:63:ba:bf:30:4a:76:16:62:
c3:a6:5e:c6:2d:0e:52:80:82:bd:5e:db:47:4c:a1:
1b:4e:9c:4f:37:24:ec:f0:1d:2e:a0:02:0b:cd:7c:
59:79:9f:c4:a6:21:1e:2c:a6:44:cd:bc:f0:8b:17:
db:ff:07:3d:fe:08:1a:94:a6:b0:7c:2e:6f:a1:03:
88:ec:3b:35:22:04:47:57:af:20:1d:fc:21:e3:1a:
14:b1:3c:92:ac:6d:87:3d:cf:6e:2c:51:cf:1a:01:
ed:92:36:fc:9b:a9:86:3f:cf:5a:76:01:8e:e8:4f:
fe:79:1a:f3:2e:92:b6:0e:54:07:70:70:81:4d:94:
73:47:4d:b6:75:0e:6d:e5:bb:f7:cd:0d:ac:99:08:
69:01:82:05:8f:76:b4:a6:bd:b0:51:a8:1e:88:75:
7c:b7:b8:b2:de:ce:18:72:89:44:a2:9b:ea:53:05:
84:be:cf:d4:7c:23:2f:cf:05:55:a4:29:71:ad:4d:
bc:7a:6c:a5:7b:7f:dc:18:39:5c:43:37:6f:07:88:
c6:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:47:E8:E6:79:24:47:F7:21:01:7A:33:B9:E4:5D:24:F3:99:C3:FF
X509v3 Authority Key Identifier:
keyid:B9:90:C8:5C:FA:0C:ED:52:83:63:49:97:E7:A4:AA:8C:E7:83:6D:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZDIXPoM7VKDY0mX56SqjOeDbbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/170ecd-e577-4058-9358-473f15ec0d52/1/NUfo5nkkR_chAXozueRdJPOZw_8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/170ecd-e577-4058-9358-473f15ec0d52/1/uZDIXPoM7VKDY0mX56SqjOeDbbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.61.112.0/20
217.27.208.0/20
Signature Algorithm: sha256WithRSAEncryption
44:72:6c:96:ff:88:7f:5a:70:66:42:37:43:b0:1d:34:c6:9d:
ae:02:0c:93:69:b9:17:6a:d3:ba:53:29:11:e1:01:d2:1c:fa:
4c:d9:9a:e9:6d:f4:22:91:97:72:fc:3d:37:f0:63:8f:ac:f2:
0f:94:3d:98:7c:6c:bb:3e:c4:99:cb:3c:e4:ef:21:e6:3b:3b:
17:07:ae:24:62:12:8b:31:55:ed:e7:1e:83:af:97:38:6f:71:
e1:fd:69:37:5b:36:8c:06:36:2f:b2:34:9c:45:6c:5f:d0:ba:
29:92:b6:3a:89:7c:3f:87:68:5e:5e:62:42:d5:bc:e1:64:58:
d7:f7:f5:fc:a3:4d:24:fe:ba:bd:ca:03:01:7d:3f:a4:8b:bc:
64:34:f0:9e:66:fd:02:80:5b:e4:c5:b2:ac:c0:5d:bb:3b:8f:
cc:31:6c:1e:e6:ab:2a:89:3d:94:d3:8b:00:ef:a8:5a:12:60:
f7:28:9a:c7:33:92:a2:87:e7:d6:d8:9c:a0:dc:c2:f5:cf:b7:
51:30:28:9c:7d:ce:b2:ff:22:d0:56:00:ec:f8:d3:92:01:f3:
fa:ff:1b:a7:d7:d7:6b:e4:f6:6b:1b:1a:c0:b9:c9:0e:4d:78:
34:bb:52:21:db:d6:a2:4b:93:70:a6:b5:b4:6a:1e:f2:33:1d:
f5:1f:71:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:53 2024 by rpki-client on console-ams.rpki-client.org