Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/dac732-4aca-4bf8-a6db-e07952db967b/1/N3I3N_84HV4nB3WyCzZ2CV84GBA.roa
File: N3I3N_84HV4nB3WyCzZ2CV84GBA.roa (raw, json)
Hash identifier: gQNgXuS+h55JM8ISeTkZ7SfuLRo7VK/HKtyfme8LgDE=
Subject key identifier: 37:72:37:37:FF:38:1D:5E:27:07:75:B2:0B:36:76:09:5F:38:18:10
Certificate issuer: /CN=d095364395ccfd8543977358fa9b71f9271544f6
Certificate serial: 01857230E9E3CA69DA4874E7135E0470C240
Authority key identifier: D0:95:36:43:95:CC:FD:85:43:97:73:58:FA:9B:71:F9:27:15:44:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0JU2Q5XM_YVDl3NY-ptx-ScVRPY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/dac732-4aca-4bf8-a6db-e07952db967b/1/N3I3N_84HV4nB3WyCzZ2CV84GBA.roa
Signing time: Mon 02 Jan 2023 11:14:46 +0000
ROA not before: Mon 02 Jan 2023 11:14:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57659
IP address blocks: 176.104.168.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:30:e9:e3:ca:69:da:48:74:e7:13:5e:04:70:c2:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d095364395ccfd8543977358fa9b71f9271544f6
Validity
Not Before: Jan 2 11:14:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=37723737ff381d5e270775b20b3676095f381810
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:14:fe:7e:f6:2c:b1:97:d8:da:6e:92:15:82:
0f:f2:a6:2b:fc:61:c6:07:65:e4:a2:0d:c3:ef:59:
37:6e:ca:41:66:24:2a:c9:ce:98:a4:48:4f:0f:6d:
f1:94:da:a3:0e:a6:41:3a:8f:28:46:72:bb:f8:03:
04:d2:15:d4:1e:41:31:12:9f:04:66:8a:a4:9c:09:
34:c5:84:85:4a:9c:b2:65:b8:84:c1:67:b1:90:89:
93:7d:48:4c:cd:51:56:6b:bf:ef:79:dc:fe:41:d9:
4d:7d:0b:25:86:ce:44:9a:eb:39:d1:10:a5:f7:c1:
66:fc:21:6e:6e:5c:d1:fe:73:bc:dd:75:e9:d2:cf:
28:5e:31:46:c0:3d:50:89:ca:cb:75:c5:e3:49:b1:
49:8d:05:25:2f:8c:6e:45:ed:2c:8f:66:35:5b:10:
f1:1a:79:d8:fd:32:b0:ba:c1:8a:45:20:d7:54:7b:
8d:0d:e1:14:2c:57:0d:3d:99:08:ec:51:14:eb:3f:
b7:dd:c4:8d:c1:a9:bb:00:7e:e1:d9:a3:d9:66:be:
15:a9:74:09:0c:ed:56:8c:bc:e7:42:0a:d0:59:4c:
5c:b0:64:15:ac:04:f6:e4:43:d9:f2:8e:5c:a4:9d:
93:dd:56:aa:b8:21:c3:9b:ff:ff:fc:41:17:eb:93:
6f:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:72:37:37:FF:38:1D:5E:27:07:75:B2:0B:36:76:09:5F:38:18:10
X509v3 Authority Key Identifier:
keyid:D0:95:36:43:95:CC:FD:85:43:97:73:58:FA:9B:71:F9:27:15:44:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0JU2Q5XM_YVDl3NY-ptx-ScVRPY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/dac732-4aca-4bf8-a6db-e07952db967b/1/N3I3N_84HV4nB3WyCzZ2CV84GBA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/dac732-4aca-4bf8-a6db-e07952db967b/1/0JU2Q5XM_YVDl3NY-ptx-ScVRPY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.104.168.0/21
Signature Algorithm: sha256WithRSAEncryption
43:b2:0d:8e:40:79:1e:3d:ea:9b:05:09:49:48:76:5f:53:cd:
f2:b5:03:38:75:80:a9:ca:05:6e:90:19:47:48:6d:41:b1:56:
08:f6:58:24:4a:1d:4d:28:92:c9:a4:5e:2a:64:0a:aa:39:eb:
c1:21:a8:0c:10:79:8b:d9:56:1b:0c:40:9f:17:47:1b:fe:32:
2d:0c:16:f2:16:bf:3f:77:c5:7b:93:3f:a8:ff:de:f3:47:2f:
5c:3f:f0:82:9e:41:3d:61:db:62:a1:1d:9e:6d:20:17:74:0c:
2e:e4:2a:fb:a6:9d:63:c8:db:6f:cc:a2:dd:4c:86:d4:6f:2c:
ce:ff:9d:ec:d1:17:2f:4f:38:43:91:53:96:ff:ef:37:48:e9:
e8:c4:4e:fc:bf:4c:96:b9:fc:2f:eb:7a:b3:d2:e4:0b:29:7c:
4d:38:1c:ce:c8:06:38:de:f1:a1:a5:61:ca:81:28:aa:17:27:
e4:2e:de:53:6c:98:a0:d3:8a:00:a7:2c:4b:59:5c:da:7c:e3:
dc:41:b5:f9:03:83:96:c2:97:20:32:69:c0:be:9e:cc:e1:88:
76:d6:13:6e:1b:de:b5:57:5d:e3:fb:71:33:2e:4c:39:3d:22:
c0:72:de:fd:b3:84:90:da:99:c1:ca:e7:de:03:fa:27:9b:c4:
6a:ec:56:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:56:41 2024 by rpki-client on console-fra.rpki-client.org