Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/njUG_8SBR_bU6tRNlj_tA2_3sYk.roa
File: njUG_8SBR_bU6tRNlj_tA2_3sYk.roa (raw, json)
Hash identifier: XPOPKq00lvfis0VvfieYKCCRhTNiB4nlPVAjbIcN9G4=
Subject key identifier: 9E:35:06:FF:C4:81:47:F6:D4:EA:D4:4D:96:3F:ED:03:6F:F7:B1:89
Certificate issuer: /CN=3e8dd43928edfb1200efbc62c441f9cd29048585
Certificate serial: 01856C137DD7ED9F1D110E564AED192C95EA
Authority key identifier: 3E:8D:D4:39:28:ED:FB:12:00:EF:BC:62:C4:41:F9:CD:29:04:85:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Po3UOSjt-xIA77xixEH5zSkEhYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/njUG_8SBR_bU6tRNlj_tA2_3sYk.roa
Signing time: Sun 01 Jan 2023 06:44:54 +0000
ROA not before: Sun 01 Jan 2023 06:44:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60049
IP address blocks: 185.57.232.0/22 maxlen: 24
2a02:46e0::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:13:7d:d7:ed:9f:1d:11:0e:56:4a:ed:19:2c:95:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e8dd43928edfb1200efbc62c441f9cd29048585
Validity
Not Before: Jan 1 06:44:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9e3506ffc48147f6d4ead44d963fed036ff7b189
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:a5:0a:14:76:5c:42:ff:a9:c6:38:21:d1:02:
d6:83:cf:dd:8b:d0:4d:df:91:a6:91:67:97:bc:15:
cb:da:5f:79:5d:7d:de:98:4d:44:6b:73:12:84:39:
75:42:40:ad:5e:76:6a:4f:71:f2:85:75:0c:db:84:
af:aa:63:d8:7f:9f:09:7d:c8:d6:a1:02:04:03:13:
84:ea:32:c6:8a:3f:d1:d7:1e:9a:9b:e3:c3:fb:75:
87:59:ce:fc:40:a6:c4:8f:b6:89:bc:40:22:0e:61:
67:3a:9f:f6:79:ad:62:80:13:ca:49:95:b3:21:26:
68:1a:d0:42:32:f4:31:8c:0c:51:db:e4:45:03:9c:
58:c2:dc:17:aa:1d:91:f9:18:35:69:96:7c:af:00:
64:64:38:ac:33:64:ae:0d:39:77:a0:df:33:2e:74:
b3:ad:af:b5:41:4b:b6:ea:8f:c8:e2:3b:6f:9b:16:
3c:45:3a:39:f5:8a:4a:bb:04:a9:05:a2:d0:2e:d0:
03:bf:79:4c:61:5d:e8:18:a2:98:79:8a:b4:47:a9:
16:ef:64:9d:af:42:a0:c0:b5:8b:df:82:af:32:53:
16:c6:39:46:26:c1:f8:19:de:06:0d:0d:03:7d:1e:
23:d0:a4:4a:66:39:df:f4:a9:62:5e:59:76:7a:fe:
29:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:35:06:FF:C4:81:47:F6:D4:EA:D4:4D:96:3F:ED:03:6F:F7:B1:89
X509v3 Authority Key Identifier:
keyid:3E:8D:D4:39:28:ED:FB:12:00:EF:BC:62:C4:41:F9:CD:29:04:85:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Po3UOSjt-xIA77xixEH5zSkEhYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/njUG_8SBR_bU6tRNlj_tA2_3sYk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.57.232.0/22
IPv6:
2a02:46e0::/32
Signature Algorithm: sha256WithRSAEncryption
36:15:04:69:70:3f:de:9e:25:42:8f:78:86:2e:41:78:99:3a:
3d:13:62:19:43:2a:ad:dc:7a:a7:7a:8d:b7:55:2d:33:a4:61:
04:c1:3f:43:96:5a:51:3d:03:bc:a9:f5:da:cd:e1:ce:e9:a5:
3a:8e:ce:61:e9:b2:de:1e:66:de:2d:c1:3a:28:7b:b8:16:d2:
23:45:57:79:ea:5b:b0:94:a8:3b:0e:d1:6b:d4:4f:18:a1:a0:
df:06:7d:8d:4d:01:e9:fd:4f:5c:53:ab:2f:87:f5:5f:5a:df:
90:b6:cd:18:65:97:cf:ce:af:f0:ff:ab:1e:0a:06:91:af:6d:
da:bd:2e:13:5a:b2:e8:f7:ad:72:df:bb:f2:6a:7c:ac:b9:4a:
11:89:69:0f:9b:f4:26:4b:0a:b3:42:67:74:ea:7a:b5:95:ee:
4b:e6:c0:7d:54:25:45:f8:30:d8:3f:29:e3:e0:02:49:8c:e5:
99:87:43:b0:1f:a2:1d:ef:18:f1:39:42:a6:c9:33:2e:ee:2c:
ab:21:b5:73:66:57:5c:d9:22:41:60:ff:c7:8b:38:42:b8:d9:
16:29:a4:a1:f9:3f:95:c4:3f:94:4f:5b:94:0b:90:9b:bb:b0:
02:04:4b:32:4e:5c:8d:a6:77:28:a6:2d:87:91:c4:c9:86:0f:
3f:c2:51:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:24 2024 by rpki-client on console-fra.rpki-client.org