Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/NlWE2Y_AMUL7zf0MWz1Dt7bJyGc.roa
File: NlWE2Y_AMUL7zf0MWz1Dt7bJyGc.roa (raw, json)
Hash identifier: /YY3izOdyTJZuQGL6QjkZWGLCnKrRJog5aHKos2hxDI=
Subject key identifier: 36:55:84:D9:8F:C0:31:42:FB:CD:FD:0C:5B:3D:43:B7:B6:C9:C8:67
Certificate issuer: /CN=826605b4d27f13968e8794e6ef091223748817d8
Certificate serial: 0189DE216811A192566A3A49CBB790C5B7E0
Authority key identifier: 82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/NlWE2Y_AMUL7zf0MWz1Dt7bJyGc.roa
Signing time: Thu 10 Aug 2023 06:27:58 +0000
ROA not before: Thu 10 Aug 2023 06:27:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 136523
IP address blocks: 168.199.20.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:de:21:68:11:a1:92:56:6a:3a:49:cb:b7:90:c5:b7:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826605b4d27f13968e8794e6ef091223748817d8
Validity
Not Before: Aug 10 06:27:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=365584d98fc03142fbcdfd0c5b3d43b7b6c9c867
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f3:9d:5e:3c:f0:57:e0:08:08:34:f3:ce:8a:
b6:d7:9e:20:74:20:20:bc:91:26:3e:86:c1:c4:5c:
5e:3b:79:73:13:f9:a3:b2:32:2d:69:0c:57:bc:9d:
0c:98:36:4e:6b:e5:5e:0f:1f:ac:7a:76:ad:e3:17:
ec:d1:5b:6b:27:16:f3:a5:bb:12:b4:0f:70:17:90:
0a:60:0e:73:64:33:70:14:49:38:c3:21:29:aa:1a:
99:03:a4:83:79:cf:b5:be:45:df:78:78:c4:42:1e:
51:91:72:f8:fd:04:6a:2a:f8:0a:bb:5f:9a:ce:f7:
f1:0c:2d:fb:ff:82:ed:73:02:44:21:95:72:b9:db:
a9:38:2b:f1:2a:8c:c5:53:b4:21:e9:c5:93:24:24:
b9:f2:90:4a:30:bb:ee:f6:cc:9a:96:aa:0c:ad:2d:
ce:a6:75:b3:89:2c:10:58:b4:e6:ac:ab:51:12:52:
1c:58:e1:a0:3a:e2:f1:d0:94:81:3d:54:78:29:bb:
14:98:14:32:68:c7:40:02:c6:75:1f:48:d4:5b:24:
24:0f:91:44:1d:36:0a:5f:9a:ad:76:be:ac:c4:de:
4b:29:6b:d5:af:6b:3a:f5:14:9b:0a:56:73:56:23:
bf:18:ec:96:a1:44:52:a0:9d:4e:0f:14:cd:db:8a:
86:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:55:84:D9:8F:C0:31:42:FB:CD:FD:0C:5B:3D:43:B7:B6:C9:C8:67
X509v3 Authority Key Identifier:
keyid:82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/NlWE2Y_AMUL7zf0MWz1Dt7bJyGc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.199.20.0/23
Signature Algorithm: sha256WithRSAEncryption
ad:6b:b9:a7:4c:9a:1f:51:99:cc:06:f8:d6:ee:08:11:1d:81:
8f:df:d6:0a:91:94:1c:f6:fb:49:08:79:5e:f6:77:31:5a:a1:
4e:4d:91:16:64:5e:08:63:23:a4:e7:74:e9:1b:20:63:3e:79:
dc:e0:c2:f4:5b:12:98:70:1e:e3:8e:d2:1c:53:63:36:85:31:
3e:54:23:57:40:24:c4:21:8f:69:a4:7d:68:fc:dc:30:ec:9a:
12:e1:01:d6:6b:a8:f6:cc:53:18:40:c5:8b:6f:98:4b:3b:e7:
23:f8:43:c8:60:70:b6:72:53:76:56:45:75:e0:db:d6:e9:8e:
a5:ea:97:68:da:7f:49:0a:b1:7f:49:3f:1a:5b:30:3d:90:85:
73:ec:49:ee:94:cc:d0:45:21:1d:94:c9:ab:b3:b6:8b:90:d9:
40:63:28:92:6a:70:6b:d5:47:c7:b9:5f:3f:d9:30:58:20:6d:
57:cc:ad:d3:29:d9:18:db:bf:e9:ba:17:d5:2e:ed:ae:97:2c:
a3:88:a2:be:e2:ef:f1:5f:06:c8:ea:76:e0:f9:46:df:ac:88:
c9:bf:ae:b8:14:91:11:f7:70:61:a1:eb:a2:a2:0d:4b:db:50:
e6:e2:9a:d1:08:3f:9e:00:3a:62:8e:ee:01:35:cd:75:c9:7b:
5e:56:e3:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:50 2024 by rpki-client on console-fra.rpki-client.org