Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/ngr9EIk8Ze3FnOmUrr0wnpeucys.roa
File: ngr9EIk8Ze3FnOmUrr0wnpeucys.roa (raw, json)
Hash identifier: 2RCQZB2tO/2ZRQuz/pr0KI9EgPMSzAF4JGM0p6hC/L4=
Subject key identifier: 9E:0A:FD:10:89:3C:65:ED:C5:9C:E9:94:AE:BD:30:9E:97:AE:73:2B
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 01856F1DD10F4A2CA8088577BDD9A515FB4A
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/ngr9EIk8Ze3FnOmUrr0wnpeucys.roa
Signing time: Sun 01 Jan 2023 20:55:03 +0000
ROA not before: Sun 01 Jan 2023 20:55:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43357
IP address blocks: 194.36.25.0/24 maxlen: 24
185.248.85.0/24 maxlen: 24
92.60.40.0/24 maxlen: 24
185.254.75.0/24 maxlen: 24
185.194.52.0/22 maxlen: 24
2a09:7:2007::/48 maxlen: 48
2a07:fe00:1::/48 maxlen: 48
2a0c:59c0:18::/48 maxlen: 48
2a03:d9c0:3000::/48 maxlen: 48
2a0b:89c1:3::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 22 Jan 2023 13:05:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:d1:0f:4a:2c:a8:08:85:77:bd:d9:a5:15:fb:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Jan 1 20:55:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9e0afd10893c65edc59ce994aebd309e97ae732b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e4:6a:9c:01:e0:bd:40:e1:67:75:25:f8:e3:
9b:5f:5a:9b:8b:d7:9a:94:5c:cc:52:2f:b7:df:2a:
3d:b4:d8:5a:85:80:70:2c:cb:c6:67:6c:3b:4e:c0:
a5:34:78:69:a3:ac:b7:d2:c2:83:57:26:36:d5:63:
a1:59:06:5a:1d:27:7c:30:1c:1e:42:50:60:41:26:
49:a4:6f:37:cf:e3:35:b1:f0:1f:8a:a5:f9:bf:f5:
f9:80:ca:db:21:91:bd:c4:57:52:eb:44:d6:bf:55:
aa:8f:53:55:76:f8:23:73:b1:f5:b9:0a:9d:2e:08:
02:ee:83:f3:25:81:8f:1c:6c:ea:53:60:21:07:a9:
8c:a7:c8:8a:a6:bc:84:a4:33:54:71:1e:74:93:38:
bb:0b:97:c2:2c:3e:66:8f:4b:c9:55:16:58:70:07:
aa:46:8b:8f:5c:cf:41:7b:13:94:14:5f:7b:31:89:
24:21:f2:ab:f4:e8:f3:5b:1b:0c:81:c5:3a:6c:0a:
50:1c:91:d5:9f:54:75:81:0d:5b:64:e5:e4:98:b2:
b3:99:f6:da:93:a8:b9:ca:72:e0:1b:3b:45:28:33:
41:be:6a:7a:3f:37:fc:44:3e:55:ad:56:16:ad:cf:
d2:e1:24:c2:6f:0f:26:9c:59:37:37:c5:76:d3:14:
d6:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:0A:FD:10:89:3C:65:ED:C5:9C:E9:94:AE:BD:30:9E:97:AE:73:2B
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/ngr9EIk8Ze3FnOmUrr0wnpeucys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.60.40.0/24
185.194.52.0/22
185.248.85.0/24
185.254.75.0/24
194.36.25.0/24
IPv6:
2a03:d9c0:3000::/48
2a07:fe00:1::/48
2a09:7:2007::/48
2a0b:89c1:3::/48
2a0c:59c0:18::/48
Signature Algorithm: sha256WithRSAEncryption
63:f3:bd:1e:d7:5a:ed:d9:5c:93:ae:e9:ff:9f:39:eb:58:f0:
e0:e4:a1:78:07:b8:d1:b0:00:bc:f7:2e:69:ef:18:ec:b0:ed:
39:b4:a2:19:cd:18:43:cd:5b:4f:13:ed:a7:59:3b:ed:ba:0e:
de:8b:a8:9a:79:28:24:6e:75:fe:1f:8e:04:f4:2c:de:cf:ee:
c5:9e:f9:d7:d2:53:f2:0c:9c:5e:52:f9:69:3a:70:a0:8e:75:
5c:23:11:d5:8e:21:a9:43:ea:4f:8d:ae:96:ce:26:a6:f6:a1:
fe:8b:3d:80:f6:1c:4d:84:3b:21:ba:c5:dd:3c:48:96:5e:2e:
16:3e:75:9d:15:4e:8b:58:64:98:9e:ec:4d:fd:2e:9b:06:71:
f9:99:44:5c:64:ca:54:23:5e:9a:c4:4f:ae:86:35:7f:4b:d3:
a6:7e:87:c7:f4:50:ca:ab:8e:f4:93:bd:d5:86:61:09:70:1e:
1e:a6:5b:4d:fe:81:77:6a:2c:a8:35:e4:aa:ed:dc:b8:46:47:
2a:f1:7e:b6:0f:8f:a0:44:de:27:64:68:df:b7:30:0d:8f:2a:
72:38:5f:cd:d2:40:c5:16:d5:37:bc:67:9f:b6:60:14:b7:28:
7a:41:4e:06:82:c3:f5:30:9d:da:6e:24:3c:3c:b3:fb:b9:9e:
d0:60:ac:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:48 2024 by rpki-client on console-fra.rpki-client.org