Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/dc9309-ca08-418e-b518-1aa0166e37e4/1/nedp0wc9Nf-jUKwM1Ul1UOI96A0.roa
File: nedp0wc9Nf-jUKwM1Ul1UOI96A0.roa (raw, json)
Hash identifier: AigpA713OjcXmHarNOL7huaENq5rW5aLz8lWrMQl/Jg=
Subject key identifier: 9D:E7:69:D3:07:3D:35:FF:A3:50:AC:0C:D5:49:75:50:E2:3D:E8:0D
Certificate issuer: /CN=8b34f0f9275d980662afbb6cafffe4db9c9c9d47
Certificate serial: 018CC3B6A075BC904662110AF206D0DF99A6
Authority key identifier: 8B:34:F0:F9:27:5D:98:06:62:AF:BB:6C:AF:FF:E4:DB:9C:9C:9D:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/izTw-SddmAZir7tsr__k25ycnUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/dc9309-ca08-418e-b518-1aa0166e37e4/1/nedp0wc9Nf-jUKwM1Ul1UOI96A0.roa
Signing time: Mon 01 Jan 2024 06:29:34 +0000
ROA not before: Mon 01 Jan 2024 06:29:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206758
IP address blocks: 185.150.236.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 01 Jan 2025 15:47:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:a0:75:bc:90:46:62:11:0a:f2:06:d0:df:99:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b34f0f9275d980662afbb6cafffe4db9c9c9d47
Validity
Not Before: Jan 1 06:29:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9de769d3073d35ffa350ac0cd5497550e23de80d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:5b:9e:d7:8c:09:4e:3b:32:a7:58:a0:34:f3:
75:fc:35:28:57:7a:df:fc:25:e4:26:3d:d0:26:49:
6b:d2:a7:0d:28:c1:b5:d8:f7:4d:1b:09:f6:41:54:
00:aa:10:64:9e:2f:c8:66:af:03:bb:98:4d:99:46:
6c:ea:cd:d2:90:06:29:61:87:9f:b1:3e:d7:0d:a7:
61:a9:40:fb:d3:14:16:3e:56:95:49:ee:59:31:f9:
b7:f2:e2:81:0a:5e:4c:b6:e7:b2:1e:7f:1c:d1:cd:
1b:4e:b7:2c:99:28:7d:6e:92:9c:0b:63:b7:cb:df:
fa:23:95:29:f9:3c:89:87:fb:ad:03:00:c5:7d:07:
4b:00:6e:fb:3a:9b:81:a9:38:d7:66:8f:8a:c0:7b:
4e:26:b8:04:ec:93:e4:81:1c:29:51:df:a1:ee:b9:
13:45:b8:f8:af:6a:f5:1c:eb:b1:96:92:dd:44:fe:
19:e5:a8:aa:17:5f:cd:f9:b1:d9:3c:6c:3e:05:09:
86:4e:66:cf:5d:93:83:bf:9b:bc:bd:8e:a4:81:13:
19:ad:4c:b3:ed:ea:d3:07:e4:64:a1:0d:69:38:ab:
28:8b:ff:53:a4:5f:b2:01:5b:85:55:9a:04:0a:0c:
21:42:4b:32:87:2c:fd:d1:12:6e:28:51:e5:a5:b8:
35:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:E7:69:D3:07:3D:35:FF:A3:50:AC:0C:D5:49:75:50:E2:3D:E8:0D
X509v3 Authority Key Identifier:
keyid:8B:34:F0:F9:27:5D:98:06:62:AF:BB:6C:AF:FF:E4:DB:9C:9C:9D:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/izTw-SddmAZir7tsr__k25ycnUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/dc9309-ca08-418e-b518-1aa0166e37e4/1/nedp0wc9Nf-jUKwM1Ul1UOI96A0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/dc9309-ca08-418e-b518-1aa0166e37e4/1/izTw-SddmAZir7tsr__k25ycnUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.150.236.0/22
Signature Algorithm: sha256WithRSAEncryption
a7:0e:f0:84:0a:7c:6d:89:e0:60:5c:b1:6b:ce:b4:46:01:0a:
b7:31:53:09:34:a8:8a:35:09:d5:b3:68:8b:91:c2:c7:09:54:
dd:fb:9b:f7:9c:fb:50:9c:78:fc:22:c5:a6:c6:9e:a0:99:0f:
ac:49:b2:1a:fc:cf:c5:cb:a0:60:7c:54:06:98:cf:d8:c9:6b:
ca:5d:b4:72:f7:df:95:b1:e1:75:39:b3:4f:df:b9:b3:a4:1d:
31:d2:2c:6e:38:b8:f0:47:c5:29:60:26:da:91:70:70:4d:fd:
6c:4d:2f:bd:38:6d:4a:d9:b8:be:20:e0:bb:04:3f:ba:86:dd:
c9:77:fb:57:be:ad:52:e1:cf:c4:12:9d:35:0f:de:8d:fb:d6:
3d:49:e8:5c:08:6b:db:55:91:e2:0b:e5:43:09:db:65:68:5b:
d8:94:ab:79:53:4c:c5:f6:e3:e8:60:0d:7a:1e:4b:9f:2d:89:
05:56:2f:76:75:56:96:ff:53:11:7b:68:e9:95:fb:d2:e6:14:
1f:6f:a7:6b:0c:f4:b5:4d:09:36:d0:85:30:36:6f:e1:40:13:
43:27:52:cb:5c:28:a6:2e:fa:76:1d:26:04:22:cb:32:58:9a:
43:0b:fc:52:c7:3d:2e:24:91:8a:d7:52:a9:45:33:0d:be:c8:
b2:c2:11:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:16:14 2025 by rpki-client