Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/NJk7c5u4rvuh6kdyrse99jW2vt0.roa
File: NJk7c5u4rvuh6kdyrse99jW2vt0.roa (raw, json)
Hash identifier: ZJrghy8XbpWo3E8Kxi2WNlq1lCAXkyNOjw0pA+4JDao=
Subject key identifier: 34:99:3B:73:9B:B8:AE:FB:A1:EA:47:72:AE:C7:BD:F6:35:B6:BE:DD
Certificate issuer: /CN=62a15cc88659f578cc159c52b3a7e9ec5819fb20
Certificate serial: 0186FFCC0A7FE8A7BCF840A0BC6E5A31F765
Authority key identifier: 62:A1:5C:C8:86:59:F5:78:CC:15:9C:52:B3:A7:E9:EC:58:19:FB:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/NJk7c5u4rvuh6kdyrse99jW2vt0.roa
Signing time: Mon 20 Mar 2023 16:13:27 +0000
ROA not before: Mon 20 Mar 2023 16:13:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400377
IP address blocks: 93.89.219.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 13 Jul 2023 06:19:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ff:cc:0a:7f:e8:a7:bc:f8:40:a0:bc:6e:5a:31:f7:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62a15cc88659f578cc159c52b3a7e9ec5819fb20
Validity
Not Before: Mar 20 16:13:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=34993b739bb8aefba1ea4772aec7bdf635b6bedd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:4e:a1:57:29:15:a7:97:4e:61:b9:61:80:74:
e2:79:75:cf:c6:4d:a4:02:4d:be:6f:58:39:73:0b:
5f:cd:d1:14:39:57:d3:be:11:2c:f5:db:33:58:b9:
c9:4d:b2:18:3a:f1:75:9c:a9:9f:97:0f:75:6d:ec:
f8:82:d1:65:74:bf:04:21:05:ff:8d:03:65:21:e9:
1e:03:2b:f3:29:eb:06:ca:1c:82:68:e5:df:ec:98:
77:61:b0:e0:0e:08:ec:68:d2:7e:31:0f:ef:e3:49:
d1:e2:47:b6:0d:bf:b3:77:b6:f8:2c:df:cf:d5:8b:
96:70:be:f3:b4:4b:45:e4:82:12:b9:e1:71:25:40:
7d:53:a4:d6:8f:bb:df:da:4e:5c:48:cb:66:61:9a:
bc:b9:89:01:00:f1:e3:3f:b1:25:df:cb:43:3b:d3:
8f:5d:73:bd:76:aa:51:2f:c9:92:bf:07:01:63:e2:
0a:0b:55:c8:a6:2d:ec:c6:7e:cf:97:33:30:a4:e0:
30:2f:a7:aa:d3:86:ef:14:6b:bf:b2:62:a8:16:0f:
c3:f8:11:e7:97:da:d0:a6:df:46:08:1a:09:92:a3:
66:c9:62:b9:0c:d7:68:f0:c3:9e:d3:63:ac:a3:f5:
d3:43:ce:ae:87:07:0e:14:01:be:49:ab:8d:36:61:
25:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:99:3B:73:9B:B8:AE:FB:A1:EA:47:72:AE:C7:BD:F6:35:B6:BE:DD
X509v3 Authority Key Identifier:
keyid:62:A1:5C:C8:86:59:F5:78:CC:15:9C:52:B3:A7:E9:EC:58:19:FB:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/NJk7c5u4rvuh6kdyrse99jW2vt0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.89.219.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:8f:6b:7d:13:a4:cd:08:77:5c:99:61:7c:92:ee:9b:2a:0f:
82:67:b8:b4:f5:81:c2:f9:fc:cb:ac:2b:c7:f0:51:5b:24:fa:
15:11:a2:c9:11:97:9d:50:04:9b:ae:3a:e8:98:cd:cb:29:de:
d1:52:3c:90:fb:11:25:8b:f6:a7:2f:34:7d:e4:d0:05:e6:c8:
11:d4:c7:f3:79:ba:87:87:13:54:25:d5:03:81:01:b0:e2:ff:
df:f9:92:ad:1c:99:67:bc:08:b2:20:1a:f7:00:2d:75:23:c5:
bd:ed:9c:f9:50:43:52:5d:23:8e:0f:18:d7:60:e9:b5:5f:fd:
31:ea:4e:92:52:f5:5a:bc:24:1d:c3:5a:43:a3:a3:23:4f:a8:
54:ea:ed:d8:25:32:45:86:fe:a2:7e:66:7e:0b:71:4b:d9:65:
82:4a:0a:6c:3e:6d:89:65:31:c0:0e:ee:c6:a2:2d:01:bd:b5:
65:6a:b3:82:3f:5d:29:79:94:19:d3:1e:21:b2:b8:ed:ad:42:
df:0f:81:7f:bb:30:30:47:0e:9e:42:9b:81:3f:9a:7d:c1:80:
5d:40:7e:dd:b9:f9:88:2d:7a:f4:4f:a4:c8:6d:d2:04:25:54:
61:38:f0:e3:36:59:3a:18:e4:75:c4:cb:77:9e:c9:c0:37:75:
c2:39:67:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:05 2024 by rpki-client on console-fra.rpki-client.org