Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/6c0530-1074-4b35-be0c-cd7d61913288/1/NslglkVzSl1xQ4X9okg6fq0yxpY.roa
File: NslglkVzSl1xQ4X9okg6fq0yxpY.roa (raw, json)
Hash identifier: FRU8ZxqK0KP8I4h67F26xD2Jx3zIIv2Q7ysdFiJpzo8=
Subject key identifier: 36:C9:60:96:45:73:4A:5D:71:43:85:FD:A2:48:3A:7E:AD:32:C6:96
Certificate issuer: /CN=72c26abc9e06c1afef9b5fd2da40412e7aee6b47
Certificate serial: 01856C1CA1E4711AD71C146FC94581D63D85
Authority key identifier: 72:C2:6A:BC:9E:06:C1:AF:EF:9B:5F:D2:DA:40:41:2E:7A:EE:6B:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/csJqvJ4Gwa_vm1_S2kBBLnrua0c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/6c0530-1074-4b35-be0c-cd7d61913288/1/NslglkVzSl1xQ4X9okg6fq0yxpY.roa
Signing time: Sun 01 Jan 2023 06:54:53 +0000
ROA not before: Sun 01 Jan 2023 06:54:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43902
IP address blocks: 185.56.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Jan 2023 10:10:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:1c:a1:e4:71:1a:d7:1c:14:6f:c9:45:81:d6:3d:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72c26abc9e06c1afef9b5fd2da40412e7aee6b47
Validity
Not Before: Jan 1 06:54:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=36c9609645734a5d714385fda2483a7ead32c696
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:0e:9e:2a:9e:97:44:8e:6e:2c:00:df:07:f5:
44:fd:9c:96:a9:a4:88:8a:d2:1a:d3:41:43:fe:ba:
59:45:90:db:d9:53:f6:7c:9b:cb:a2:91:c3:8e:c1:
5e:02:24:47:2f:65:82:ce:76:61:1e:7c:a2:7e:b9:
03:2b:db:f1:c4:e4:0d:4e:1b:3a:6b:88:69:fc:71:
c6:46:e9:0b:de:ed:f8:2d:59:c2:73:cb:d1:80:8c:
1b:72:ea:16:0f:22:11:70:88:e3:46:d6:d2:9b:c1:
76:dd:0a:95:3f:43:09:6a:ad:ed:d9:1e:4f:57:b7:
ad:5f:aa:77:66:1b:1b:67:18:02:f6:f7:ec:88:ea:
9e:08:97:32:31:70:43:c1:c3:26:76:05:ab:ab:d5:
62:1d:0e:ec:e3:7c:32:5d:e7:24:ed:27:0c:ba:85:
33:cb:f7:7b:6b:73:56:89:37:de:ec:bd:aa:b1:2b:
59:15:39:55:04:88:67:87:6b:f9:b7:6b:3c:29:ad:
c9:b0:90:d3:f1:88:c5:b9:43:82:1d:82:33:bf:82:
68:81:00:d1:5c:fe:ff:be:23:d2:9a:4a:3b:29:6b:
87:6a:e6:a2:a3:6a:5c:f5:e3:bf:31:f8:40:34:db:
bb:ff:f3:1a:31:36:a7:97:32:db:6a:12:82:5d:83:
dd:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:C9:60:96:45:73:4A:5D:71:43:85:FD:A2:48:3A:7E:AD:32:C6:96
X509v3 Authority Key Identifier:
keyid:72:C2:6A:BC:9E:06:C1:AF:EF:9B:5F:D2:DA:40:41:2E:7A:EE:6B:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/csJqvJ4Gwa_vm1_S2kBBLnrua0c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/6c0530-1074-4b35-be0c-cd7d61913288/1/NslglkVzSl1xQ4X9okg6fq0yxpY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/6c0530-1074-4b35-be0c-cd7d61913288/1/csJqvJ4Gwa_vm1_S2kBBLnrua0c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.56.107.0/24
Signature Algorithm: sha256WithRSAEncryption
70:76:b0:e4:77:1d:f6:e6:3e:cb:0a:7c:98:f5:30:60:95:d3:
b3:a5:ab:72:c3:69:76:a9:98:c7:b6:48:fa:21:06:2e:6d:48:
ba:3f:8e:57:99:ee:9c:08:41:b7:e2:b1:b0:97:97:39:ae:da:
96:31:17:33:0a:81:b5:61:8a:35:06:5a:39:6b:05:03:d9:ad:
69:88:e5:b8:a4:a0:d1:d2:b1:18:c4:5b:e1:71:94:fd:23:b5:
c0:cb:ef:6e:c1:73:30:b5:a5:95:b4:0a:84:1c:21:9d:74:c8:
9c:a8:56:29:82:a2:81:42:af:7a:f5:a6:a0:9f:63:8d:de:f3:
c3:0b:fa:5c:2b:d0:c4:03:62:4d:16:0b:7a:76:55:ff:f2:5d:
ff:40:7c:44:f8:c1:de:67:28:3e:43:41:75:a1:46:10:d6:73:
66:7c:fb:6c:d7:b6:69:2d:38:5e:7c:42:42:ec:bc:db:f4:eb:
97:99:25:cd:15:c7:1f:9a:c6:cc:27:70:df:a4:09:f2:5b:5e:
05:a1:be:09:87:bc:9b:80:06:eb:64:e3:02:84:4a:b9:47:34:
29:8a:e6:65:b4:75:d6:f0:74:bb:49:7d:da:8c:0f:6d:42:4b:
51:42:6f:1a:76:b8:5c:85:ed:d7:70:0b:84:09:41:8b:87:8a:
17:da:14:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:46 2024 by rpki-client on console-fra.rpki-client.org