Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/nkg-9RsSUwC9sTW1jq5WpnBpQtA.roa
File: nkg-9RsSUwC9sTW1jq5WpnBpQtA.roa (raw, json)
Hash identifier: vlcFJLNhoNI3p7vPZy4peGEAALv/Pr1zc06nSyxWpbg=
Subject key identifier: 9E:48:3E:F5:1B:12:53:00:BD:B1:35:B5:8E:AE:56:A6:70:69:42:D0
Certificate issuer: /CN=57130f799f8a8985502a2ea3356037674085cfca
Certificate serial: 0187B83F815BDFD9496D4F31F78E775AA13D
Authority key identifier: 57:13:0F:79:9F:8A:89:85:50:2A:2E:A3:35:60:37:67:40:85:CF:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VxMPeZ-KiYVQKi6jNWA3Z0CFz8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/nkg-9RsSUwC9sTW1jq5WpnBpQtA.roa
Signing time: Tue 25 Apr 2023 11:49:42 +0000
ROA not before: Tue 25 Apr 2023 11:49:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212609
IP address blocks: 45.149.38.0/24 maxlen: 24
45.149.39.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 27 Oct 2023 12:08:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b8:3f:81:5b:df:d9:49:6d:4f:31:f7:8e:77:5a:a1:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57130f799f8a8985502a2ea3356037674085cfca
Validity
Not Before: Apr 25 11:49:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9e483ef51b125300bdb135b58eae56a6706942d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:6c:b3:3b:c7:d6:48:bb:5c:3d:c1:b8:a5:ca:
90:8b:43:4d:80:65:d2:0c:ab:42:00:6d:42:3c:75:
0d:8f:dd:99:9b:c4:5b:81:1f:50:f2:5a:c2:3c:32:
05:04:16:1b:5c:08:48:c9:13:25:75:0c:ec:94:03:
6a:d2:94:6e:0c:6b:55:36:a3:6a:ca:9f:7d:39:4f:
f7:32:d4:d5:42:60:80:1c:9b:e1:91:09:b2:54:1f:
f5:c3:b2:8a:2e:2d:7b:2e:8b:41:7c:2c:8e:ff:6c:
04:ef:07:fe:f4:8d:5d:0a:a9:5b:6b:f4:16:05:72:
08:cc:22:c6:04:60:44:1a:41:0f:5c:f9:3e:53:32:
9d:c5:d9:f3:19:b5:1b:a3:90:91:bd:23:6f:b0:e9:
7c:95:33:28:66:33:c1:48:21:a1:0c:73:2d:22:97:
d4:33:3f:f6:54:51:41:ed:90:16:27:3c:be:2a:94:
6c:a7:c7:0e:6b:01:d3:2a:d2:8a:cd:e2:44:14:6d:
22:16:2a:a6:d3:6d:78:8d:75:22:08:db:78:af:5c:
bc:01:14:88:dc:4b:21:c9:bd:1a:af:00:49:0e:3f:
e5:65:dc:1f:4c:2c:7c:af:9a:8b:15:41:ff:8a:8e:
83:a2:d1:b8:75:14:ab:d8:69:e6:68:b4:ce:d9:54:
8b:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:48:3E:F5:1B:12:53:00:BD:B1:35:B5:8E:AE:56:A6:70:69:42:D0
X509v3 Authority Key Identifier:
keyid:57:13:0F:79:9F:8A:89:85:50:2A:2E:A3:35:60:37:67:40:85:CF:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VxMPeZ-KiYVQKi6jNWA3Z0CFz8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/nkg-9RsSUwC9sTW1jq5WpnBpQtA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/VxMPeZ-KiYVQKi6jNWA3Z0CFz8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.38.0/23
Signature Algorithm: sha256WithRSAEncryption
8b:33:29:a2:1b:8d:d9:4d:e5:ca:9a:f9:cb:30:78:73:d5:0c:
23:af:97:df:6a:03:2a:30:d8:96:da:74:e6:7a:15:fe:d0:04:
db:a4:a0:4d:77:a3:04:99:7f:51:63:bb:bf:41:ca:34:4e:6e:
ef:0a:1d:50:e5:50:45:15:a7:fd:e9:3b:98:25:f4:ec:ef:ba:
50:db:47:9b:da:4f:a6:8e:28:a0:8d:63:9a:94:a4:91:72:b1:
27:07:9b:6f:79:47:8e:23:6b:31:70:85:b8:dd:fe:29:7f:4e:
e2:9f:30:bb:d3:45:eb:fc:f0:87:2c:e3:c4:9d:41:68:87:9b:
89:fe:e9:b7:46:cd:33:92:c1:34:8d:03:be:12:f8:0b:e4:90:
3e:f9:9b:21:17:d6:05:11:2b:ec:f3:65:4b:a6:b6:03:54:e8:
dd:8f:ac:85:11:91:62:0b:37:6b:66:6d:9f:64:46:ac:e6:6d:
77:73:11:4f:89:cc:4f:63:18:21:45:13:2c:6b:ff:be:6a:bb:
be:2e:f9:82:e0:e3:62:01:4f:f3:71:9a:90:2b:e5:ab:97:47:
24:05:e0:96:0d:54:a6:bb:3b:97:c9:a6:b5:5a:a8:de:08:22:
cd:ce:9b:20:94:5e:a3:8a:53:ce:9b:5a:df:f2:b2:6c:b3:88:
69:a9:29:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:30 2024 by rpki-client on console-ams.rpki-client.org