Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/4fc780-b296-40b7-9508-9f8e6a184374/1/nqA6fzPJqFTsBsqf7nfkX5WeOg8.roa
File: nqA6fzPJqFTsBsqf7nfkX5WeOg8.roa (raw, json)
Hash identifier: x8Z1kwwUiIBewJ5TwuUUxLQdMbW8Ua0P5sg82Rar7Tc=
Subject key identifier: 9E:A0:3A:7F:33:C9:A8:54:EC:06:CA:9F:EE:77:E4:5F:95:9E:3A:0F
Certificate issuer: /CN=cd919eb5c2108360155de7fb4f216a055ae31f09
Certificate serial: 01857271088A684E66AE339EF102DB94F499
Authority key identifier: CD:91:9E:B5:C2:10:83:60:15:5D:E7:FB:4F:21:6A:05:5A:E3:1F:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zZGetcIQg2AVXef7TyFqBVrjHwk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/4fc780-b296-40b7-9508-9f8e6a184374/1/nqA6fzPJqFTsBsqf7nfkX5WeOg8.roa
Signing time: Mon 02 Jan 2023 12:24:48 +0000
ROA not before: Mon 02 Jan 2023 12:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39180
IP address blocks: 185.191.201.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:71:08:8a:68:4e:66:ae:33:9e:f1:02:db:94:f4:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd919eb5c2108360155de7fb4f216a055ae31f09
Validity
Not Before: Jan 2 12:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9ea03a7f33c9a854ec06ca9fee77e45f959e3a0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:bc:ef:6d:f3:f3:79:9b:8e:c2:85:d7:b1:f4:
6a:76:93:fa:36:f5:c0:47:7a:93:3b:a0:ec:74:c2:
2b:e3:d9:65:cd:dd:e2:fb:c5:23:79:42:0e:1a:c7:
44:9b:b6:cc:3d:85:e5:e5:a6:c3:86:a2:ba:45:55:
b6:89:78:10:4a:0d:1c:5f:59:1b:ea:bc:d7:ce:5b:
9e:df:f0:d6:03:a9:17:4d:1f:c2:57:b6:a9:1a:8b:
03:f7:06:4a:4d:b4:e2:98:ad:4c:d4:23:fb:46:5c:
81:1d:7d:36:8c:ea:2b:75:1f:75:2d:02:7f:fa:c5:
07:8f:08:d1:4d:57:a4:88:0c:e3:0c:57:5b:3c:9e:
3f:43:68:c4:b0:a4:80:2d:d7:cd:84:51:36:b1:8b:
48:5b:61:63:09:c1:8a:3e:e0:5a:12:a6:59:17:de:
87:f0:ac:fc:d9:2c:e8:d7:70:8f:13:2d:3e:7b:c0:
3a:d7:e0:1b:13:96:c0:c6:f2:54:c2:a9:bb:34:d1:
37:cd:c4:47:6d:c4:73:c6:1e:7b:cc:03:c7:e5:99:
69:8d:3c:b5:dc:d7:66:cc:b0:c2:d9:07:49:0e:c7:
62:25:2c:5c:58:00:a5:69:f5:22:1e:57:1d:8b:76:
81:c1:ea:5a:34:82:e8:31:6e:eb:d8:51:10:b0:67:
47:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:A0:3A:7F:33:C9:A8:54:EC:06:CA:9F:EE:77:E4:5F:95:9E:3A:0F
X509v3 Authority Key Identifier:
keyid:CD:91:9E:B5:C2:10:83:60:15:5D:E7:FB:4F:21:6A:05:5A:E3:1F:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zZGetcIQg2AVXef7TyFqBVrjHwk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/4fc780-b296-40b7-9508-9f8e6a184374/1/nqA6fzPJqFTsBsqf7nfkX5WeOg8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/4fc780-b296-40b7-9508-9f8e6a184374/1/zZGetcIQg2AVXef7TyFqBVrjHwk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.191.201.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:f1:2b:8e:db:4b:09:fb:df:29:f5:33:03:ac:fd:70:c6:fe:
77:e2:9e:0c:89:ec:29:8e:03:54:a8:37:ca:60:13:5e:9b:e7:
35:dd:91:2a:6a:7e:ec:17:f5:f9:26:38:0a:a8:ce:20:b2:53:
55:95:fd:81:32:17:4e:f9:d7:2b:97:82:ca:69:cc:20:f6:23:
c9:37:6c:db:65:d9:9d:a5:25:0e:a2:26:e1:ee:de:70:c7:83:
56:59:92:18:df:06:b5:4a:1b:ac:7e:35:f6:f2:ac:0d:99:09:
49:28:a9:27:09:79:68:cd:d1:3e:2a:52:95:27:3c:b8:54:30:
aa:2a:45:84:45:de:c7:f6:b4:21:21:7a:d2:9a:1c:05:9d:99:
8f:40:aa:44:7e:9a:af:86:b6:65:1b:0e:15:bd:8e:ec:cf:c3:
b3:c0:5f:07:bc:61:c8:43:b5:1a:a1:18:39:45:f9:e0:ec:e5:
3b:09:18:07:21:23:04:c7:42:fe:32:87:5b:51:76:79:bf:98:
5e:63:b1:af:c1:5d:63:4e:32:aa:33:79:52:65:42:95:1a:5e:
39:7f:76:4a:83:17:0c:f5:00:26:bd:61:27:d6:8d:77:c5:90:
76:11:64:d8:f8:f6:f5:fa:27:0b:5c:5c:3f:21:fd:04:22:b7:
ce:e8:8c:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:44 2023 by rpki-client on console-fra.rpki-client.org