Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/NuInpWJM36UsaRsni_NB7C5iHYM.roa
File: NuInpWJM36UsaRsni_NB7C5iHYM.roa (raw, json)
Hash identifier: uRxO4chACUUh3DS4hfDme5d3BEQ3LsIjywsDxd3icKc=
Subject key identifier: 36:E2:27:A5:62:4C:DF:A5:2C:69:1B:27:8B:F3:41:EC:2E:62:1D:83
Certificate issuer: /CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Certificate serial: 019133AE46014B430BD177D3F7A1AE714015
Authority key identifier: 56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/NuInpWJM36UsaRsni_NB7C5iHYM.roa
Signing time: Thu 08 Aug 2024 20:29:04 +0000
ROA not before: Thu 08 Aug 2024 20:29:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215427
IP address blocks: 2a0e:a780::/29 maxlen: 29
2a10:6c40::/29 maxlen: 29
2a10:9600::/29 maxlen: 29
2a11:ad80::/29 maxlen: 29
2a13:b840::/29 maxlen: 29
2a13:c0c0::/29 maxlen: 29
2a13:c140::/29 maxlen: 29
2a13:d240::/29 maxlen: 29
2a13:d2c0::/29 maxlen: 29
2a13:ddc0::/29 maxlen: 29
2a13:de40::/29 maxlen: 29
2a14:35c0::/29 maxlen: 29
2a14:5740::/29 maxlen: 29
2a14:5840::/29 maxlen: 29
2a14:58c0::/29 maxlen: 29
2a14:6ac0::/29 maxlen: 29
2a14:6b40::/29 maxlen: 29
2a14:72c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Sat 24 Aug 2024 06:19:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:33:ae:46:01:4b:43:0b:d1:77:d3:f7:a1:ae:71:40:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Validity
Not Before: Aug 8 20:29:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=36e227a5624cdfa52c691b278bf341ec2e621d83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:5e:2f:0d:34:4d:74:05:b4:b2:82:3b:7f:1c:
19:86:26:e5:d6:11:06:c6:ea:13:12:6d:9e:7d:9c:
5d:7b:6f:b4:53:8e:0f:8d:d8:29:4f:76:a8:5f:a1:
2f:91:1b:21:33:c1:cb:28:1d:40:06:d3:90:56:2e:
3a:48:79:de:fa:3f:9e:1b:f0:0f:33:3b:96:be:73:
85:ad:d7:90:cc:93:96:e8:03:bb:45:fb:5d:11:fb:
a6:8c:6b:86:12:73:67:dc:09:4a:cb:7a:37:6f:7f:
e9:c6:20:86:12:1c:7e:b5:79:00:8b:72:da:42:b8:
37:2e:8d:de:7f:ef:cf:1a:ba:56:69:e1:36:6b:69:
d7:70:68:d5:f5:9f:c2:f6:a5:3c:94:f0:a9:50:b9:
ef:3f:a3:10:38:aa:80:fa:e5:fc:65:b5:4b:ca:f9:
7b:c2:3e:28:bf:d8:e7:2e:d1:fb:d1:74:33:3c:81:
30:ca:cb:00:6a:2b:a0:5d:f1:3d:5c:74:f3:7c:a1:
89:d1:d8:73:af:d9:81:1e:be:f0:8a:c3:ae:30:18:
31:85:5a:07:3f:d7:62:1f:6d:1e:bb:26:d0:6f:0c:
aa:d2:4f:26:65:b2:fb:bb:b5:ba:f3:ce:8c:eb:e0:
4a:88:ac:14:3d:d7:59:79:b6:74:a6:69:a1:eb:20:
a9:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:E2:27:A5:62:4C:DF:A5:2C:69:1B:27:8B:F3:41:EC:2E:62:1D:83
X509v3 Authority Key Identifier:
keyid:56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/NuInpWJM36UsaRsni_NB7C5iHYM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:a780::/29
2a10:6c40::/29
2a10:9600::/29
2a11:ad80::/29
2a13:b840::/29
2a13:c0c0::/29
2a13:c140::/29
2a13:d240::/29
2a13:d2c0::/29
2a13:ddc0::/29
2a13:de40::/29
2a14:35c0::/29
2a14:5740::/29
2a14:5840::/29
2a14:58c0::/29
2a14:6ac0::/29
2a14:6b40::/29
2a14:72c0::/29
Signature Algorithm: sha256WithRSAEncryption
85:e7:f4:f7:39:3c:4d:e8:24:fe:10:68:3a:30:d5:0d:16:f6:
13:96:95:be:e9:d7:02:0d:7a:af:86:64:31:80:f9:98:38:2d:
4f:d5:e4:e2:3c:41:b0:e8:a2:6e:82:0a:82:79:55:f4:92:fa:
bb:ee:c2:f3:26:90:31:88:7d:fa:75:a7:ea:60:c7:9f:f2:bc:
9b:e9:ce:73:b7:a2:f4:e5:51:99:34:b6:67:a0:f8:b7:82:5c:
60:8d:db:da:1f:81:09:a1:8e:56:16:8a:32:76:df:d6:26:1f:
8d:9f:e7:98:52:cd:47:f6:86:02:c1:b9:c7:ae:ed:01:25:80:
7a:2e:b5:92:e4:10:60:44:6c:ec:9e:50:cb:68:9f:f7:c3:72:
90:78:44:07:06:ef:64:07:0d:89:85:07:e2:5a:26:14:69:42:
e6:b1:59:15:ff:52:2e:7d:50:a5:0c:3d:3f:16:f5:a3:9a:87:
3f:73:28:6f:b0:45:c1:22:e7:d3:b0:f3:53:f6:00:10:ca:d8:
30:09:38:2b:8b:a4:00:99:05:a3:31:ff:df:77:6e:33:e9:f9:
4e:b3:83:32:3e:2e:98:e8:43:20:60:8d:45:2e:c5:d7:7d:a8:
a7:bf:8d:cd:ef:45:8d:eb:02:08:32:17:cd:0d:1f:35:ee:0d:
67:67:b7:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 24 08:01:11 2024 by rpki-client on console-fra.rpki-client.org