Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/ff10a5-2fa3-4942-b2a9-bfe52b4af8b7/1/NpWZksBapgUt_it6TSk5VImfiP4.roa
File: NpWZksBapgUt_it6TSk5VImfiP4.roa (raw, json)
Hash identifier: cezZ5dnYPw4jYjvowISnVoTaGeNV8iq5lgIALVtxnaE=
Subject key identifier: 36:95:99:92:C0:5A:A6:05:2D:FE:2B:7A:4D:29:39:54:89:9F:88:FE
Certificate issuer: /CN=cb608201f88aeae9486b9fa87189d796c54027dd
Certificate serial: 018DAEA8E93B843B012E8B3843910F870CDC
Authority key identifier: CB:60:82:01:F8:8A:EA:E9:48:6B:9F:A8:71:89:D7:96:C5:40:27:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y2CCAfiK6ulIa5-ocYnXlsVAJ90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/ff10a5-2fa3-4942-b2a9-bfe52b4af8b7/1/NpWZksBapgUt_it6TSk5VImfiP4.roa
Signing time: Thu 15 Feb 2024 21:25:21 +0000
ROA not before: Thu 15 Feb 2024 21:25:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 89.23.126.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Mar 2024 15:46:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ae:a8:e9:3b:84:3b:01:2e:8b:38:43:91:0f:87:0c:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb608201f88aeae9486b9fa87189d796c54027dd
Validity
Not Before: Feb 15 21:25:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=36959992c05aa6052dfe2b7a4d293954899f88fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:51:a3:f2:e8:c3:9a:48:72:02:6c:1f:f6:cb:
97:16:29:f2:1b:0f:b0:f8:06:5d:6c:93:b8:51:81:
7d:c8:ca:e4:39:71:07:45:56:7a:03:54:7e:01:7b:
15:1f:cd:f5:a6:1a:d8:a6:cb:d9:82:a5:44:6c:66:
47:35:31:47:dd:e8:27:32:b0:a0:04:bf:3b:b8:f0:
d0:a0:35:e3:64:95:c7:db:f6:20:4a:05:b1:70:e8:
11:10:91:91:c3:1b:05:18:4d:3c:36:0e:78:fc:7c:
7d:85:4b:23:95:ff:a7:92:18:e7:19:a6:9e:0a:20:
fa:87:67:67:f8:d9:95:0d:79:f8:04:ea:ea:5a:16:
c7:49:99:92:7a:aa:70:61:52:99:4f:44:7d:f7:a5:
5c:3a:ca:eb:07:05:f0:e1:ce:7a:9b:d9:a3:06:2a:
bd:db:60:cb:c7:69:0d:c2:35:dd:c8:7b:ce:8b:0d:
6f:83:22:e3:8e:01:19:5d:05:27:80:20:42:e4:c1:
74:20:e8:77:8e:49:e4:77:2a:35:72:d3:64:52:73:
d1:6e:28:c3:b6:d6:b7:97:f0:9e:aa:f8:c7:46:a4:
a5:46:4f:84:05:f5:66:f5:b4:5d:51:a4:4f:a6:5c:
16:4c:de:fb:a6:2a:20:1d:06:59:01:67:a6:53:69:
7f:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:95:99:92:C0:5A:A6:05:2D:FE:2B:7A:4D:29:39:54:89:9F:88:FE
X509v3 Authority Key Identifier:
keyid:CB:60:82:01:F8:8A:EA:E9:48:6B:9F:A8:71:89:D7:96:C5:40:27:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y2CCAfiK6ulIa5-ocYnXlsVAJ90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/ff10a5-2fa3-4942-b2a9-bfe52b4af8b7/1/NpWZksBapgUt_it6TSk5VImfiP4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/ff10a5-2fa3-4942-b2a9-bfe52b4af8b7/1/y2CCAfiK6ulIa5-ocYnXlsVAJ90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.23.126.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:fd:34:65:7e:df:15:f0:42:60:9c:cd:6b:9c:0b:6b:cb:ad:
d2:5c:8f:74:e2:cd:50:8f:1b:ee:2f:a3:44:9d:21:28:1b:1e:
e9:9c:68:af:9a:2c:50:15:6a:14:80:c6:c0:82:24:7f:ec:94:
6a:b8:f9:7e:1b:7d:66:f0:d8:8a:62:9c:bf:e6:c4:fa:8f:f1:
33:7a:8a:ef:e2:2e:15:a7:18:2c:f1:f5:6a:10:ae:ac:51:69:
49:32:38:ed:bb:2c:47:1d:a7:a7:eb:66:02:5c:29:98:86:01:
f5:30:ef:5a:38:78:a4:5a:d3:38:c5:90:c2:e9:86:71:5b:b3:
87:b1:f2:95:bc:c8:16:91:1a:53:62:24:bc:ba:89:20:23:ee:
e5:9d:2d:51:93:15:93:c6:c6:03:4e:7e:38:96:53:5a:16:22:
e2:fb:c4:db:b5:96:27:ab:d5:88:37:14:87:86:3b:75:3a:9d:
51:37:13:f4:b0:42:12:56:42:a6:47:f3:31:a6:80:d4:59:8e:
1c:be:2e:e5:9b:77:de:32:a7:a6:85:a8:1f:20:72:df:b1:86:
69:ad:c5:56:c3:db:03:bb:9e:7b:2c:5e:60:f3:51:80:1c:67:
9f:1b:31:ec:fe:df:c4:2e:9e:d5:37:87:aa:96:01:1c:e7:4b:
1b:06:54:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:39:17 2025 by rpki-client