Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/9decaf-47eb-4349-9e86-01b8bb6ad90a/1/nGtAzYCS4S83l516VW19-xZRZCc.roa
File: nGtAzYCS4S83l516VW19-xZRZCc.roa (raw, json)
Hash identifier: KBseB/arhdN61eKA3gUvlCyKe4LSvLpsWpBCK4om9qE=
Subject key identifier: 9C:6B:40:CD:80:92:E1:2F:37:97:9D:7A:55:6D:7D:FB:16:51:64:27
Certificate issuer: /CN=9502d8b8269c6b07f814acf0c7ed729b3f4b5984
Certificate serial: 0190CC76D7D299515636D14B295E0C901BA6
Authority key identifier: 95:02:D8:B8:26:9C:6B:07:F8:14:AC:F0:C7:ED:72:9B:3F:4B:59:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lQLYuCacawf4FKzwx-1ymz9LWYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/9decaf-47eb-4349-9e86-01b8bb6ad90a/1/nGtAzYCS4S83l516VW19-xZRZCc.roa
Signing time: Fri 19 Jul 2024 19:27:38 +0000
ROA not before: Fri 19 Jul 2024 19:27:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62651
IP address blocks: 185.147.212.0/24 maxlen: 24
185.147.213.0/24 maxlen: 24
185.147.214.0/24 maxlen: 24
2a03:efc0:500::/40 maxlen: 40
2a03:efc0:700::/40 maxlen: 40
2a03:efc0:900::/40 maxlen: 40
2a03:efc0:1500::/40 maxlen: 40
2a03:efc0:1700::/40 maxlen: 40
2a03:efc0:2300::/40 maxlen: 40
2a03:efc0:2500::/40 maxlen: 40
2a03:efc0:2700::/40 maxlen: 40
2a03:efc0:2900::/40 maxlen: 40
2a03:efc0:3100::/40 maxlen: 40
2a03:efc0:3300::/40 maxlen: 40
2a03:efc0:3500::/40 maxlen: 40
2a03:efc0:3700::/40 maxlen: 40
2a03:efc0:4100::/40 maxlen: 40
Validation: Failed, certificate revoked on Fri 19 Jul 2024 23:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:cc:76:d7:d2:99:51:56:36:d1:4b:29:5e:0c:90:1b:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9502d8b8269c6b07f814acf0c7ed729b3f4b5984
Validity
Not Before: Jul 19 19:27:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9c6b40cd8092e12f37979d7a556d7dfb16516427
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:e5:27:5c:81:be:a0:78:a0:c2:ea:56:8a:6e:
2d:0e:c7:aa:44:45:db:71:26:b2:b8:c3:9c:f8:66:
27:3b:17:c6:47:36:b4:39:00:ba:ff:66:1f:43:e6:
3f:56:f5:ba:f3:e4:06:21:e9:1f:a0:70:cb:62:fe:
82:6c:26:a4:81:7e:81:65:b6:f3:a7:25:09:e3:08:
50:e9:18:59:5c:f0:90:da:b4:26:d9:d6:c7:a7:4e:
46:cc:85:93:27:08:6e:c1:76:07:41:32:a8:41:c5:
5f:40:08:da:37:b9:d0:7b:38:f8:4b:6e:35:03:c4:
57:18:3b:26:f3:86:89:68:54:e3:a7:be:31:c1:96:
1a:ed:c2:c8:62:0c:f9:7e:41:6c:41:cf:78:54:33:
58:94:23:a0:72:02:4a:5f:22:65:3c:b2:0d:6b:8a:
6c:d2:88:ca:fa:eb:13:e2:7c:ce:97:bd:ca:2e:7d:
f8:09:66:8d:4b:ae:57:5a:69:d6:6f:d1:2c:f5:d7:
d5:aa:ae:cc:20:4e:bb:71:d0:7d:eb:24:d3:72:dd:
05:22:07:c5:be:0e:69:45:d0:27:90:c5:09:76:12:
2f:45:04:bd:93:51:57:45:e1:16:15:e9:f5:c0:34:
7a:44:80:d5:f7:1d:42:e2:d8:a9:35:38:53:c9:38:
cd:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:6B:40:CD:80:92:E1:2F:37:97:9D:7A:55:6D:7D:FB:16:51:64:27
X509v3 Authority Key Identifier:
keyid:95:02:D8:B8:26:9C:6B:07:F8:14:AC:F0:C7:ED:72:9B:3F:4B:59:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lQLYuCacawf4FKzwx-1ymz9LWYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/9decaf-47eb-4349-9e86-01b8bb6ad90a/1/nGtAzYCS4S83l516VW19-xZRZCc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/9decaf-47eb-4349-9e86-01b8bb6ad90a/1/lQLYuCacawf4FKzwx-1ymz9LWYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.147.212.0-185.147.214.255
IPv6:
2a03:efc0:500::/40
2a03:efc0:700::/40
2a03:efc0:900::/40
2a03:efc0:1500::/40
2a03:efc0:1700::/40
2a03:efc0:2300::/40
2a03:efc0:2500::/40
2a03:efc0:2700::/40
2a03:efc0:2900::/40
2a03:efc0:3100::/40
2a03:efc0:3300::/40
2a03:efc0:3500::/40
2a03:efc0:3700::/40
2a03:efc0:4100::/40
Signature Algorithm: sha256WithRSAEncryption
b0:45:31:c3:52:0a:3d:a5:3d:3a:c7:7b:fa:2e:8c:56:1a:06:
00:ae:a1:26:7f:b0:37:a4:67:db:a3:5b:3e:ae:3c:a7:d1:59:
08:6e:7e:46:49:8b:2b:ec:96:a3:78:b0:68:10:07:70:29:fd:
68:7c:53:55:aa:5f:d9:84:f1:15:fa:0a:4e:82:6b:77:29:fa:
88:60:d9:16:ce:9d:bb:01:a2:f6:3d:9d:cb:76:46:96:d9:dd:
3d:9a:68:b0:3f:f5:13:3b:21:39:ba:63:fe:f8:e3:3d:37:4b:
3b:35:e7:9d:03:91:52:93:5f:12:49:50:84:61:37:6b:d6:0e:
0e:38:c0:44:35:17:79:4e:a8:32:a4:d9:37:10:a8:1d:ec:05:
75:22:0d:6c:33:89:25:bd:32:78:0c:9f:1a:f8:3d:3a:4a:13:
ca:c4:7e:3d:af:94:31:60:02:66:a1:0c:f7:00:fe:82:cf:af:
33:e6:05:90:00:af:e4:f5:af:fc:4d:aa:19:63:0f:d0:81:4b:
68:c4:d0:b9:af:84:2c:78:2c:ed:6b:c3:f1:a5:25:75:b5:86:
09:7b:3b:db:c5:d2:6c:21:b6:43:63:d4:0b:40:0f:c5:67:13:
a1:53:e5:45:bb:f9:31:9b:f0:97:7e:8f:c8:f7:47:b4:83:54:
03:ce:ba:3a
-----BEGIN CERTIFICATE-----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Generated at Sat Jul 20 00:02:56 2024 by rpki-client on console-ams.rpki-client.org