Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f80926-e9a9-41f9-95a0-9b813a2002aa/1/NezarbVQnA9E8g9AflVNMJsGHfY.roa
File: NezarbVQnA9E8g9AflVNMJsGHfY.roa (raw, json)
Hash identifier: KPXAHfGZE4SoSPTn287flGU47NXN/+ejINZa9pKFB2Q=
Subject key identifier: 35:EC:DA:AD:B5:50:9C:0F:44:F2:0F:40:7E:55:4D:30:9B:06:1D:F6
Certificate issuer: /CN=e5f9ad212cd65ab4ee2b8e9b3f8b833c3900ea7d
Certificate serial: 018F57F4E003088EEFA2BEA95EC634398133
Authority key identifier: E5:F9:AD:21:2C:D6:5A:B4:EE:2B:8E:9B:3F:8B:83:3C:39:00:EA:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5fmtISzWWrTuK46bP4uDPDkA6n0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f80926-e9a9-41f9-95a0-9b813a2002aa/1/NezarbVQnA9E8g9AflVNMJsGHfY.roa
Signing time: Wed 08 May 2024 11:26:56 +0000
ROA not before: Wed 08 May 2024 11:26:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207983
IP address blocks: 2a0e:5e44::/31 maxlen: 31
Validation: Failed, certificate revoked on Fri 10 May 2024 11:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:57:f4:e0:03:08:8e:ef:a2:be:a9:5e:c6:34:39:81:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5f9ad212cd65ab4ee2b8e9b3f8b833c3900ea7d
Validity
Not Before: May 8 11:26:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=35ecdaadb5509c0f44f20f407e554d309b061df6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:b3:f6:ef:c7:b9:79:88:70:6c:ec:c2:19:10:
7f:d7:b8:1b:1d:08:9a:e8:ae:2c:5f:49:2d:a6:92:
1c:5c:5e:6b:1b:d4:d1:49:22:0d:f1:27:da:fd:11:
f6:ce:25:4d:4b:62:31:e1:6f:92:e9:77:17:7c:17:
8f:80:31:c6:bc:38:20:bc:c8:e6:9a:8a:d0:76:2c:
51:97:e2:b2:e7:76:6f:72:82:5c:fb:11:1a:73:2b:
da:60:5a:2b:59:9d:85:d0:1f:2c:60:ad:6d:a0:cf:
3e:d2:2e:f3:6e:fc:28:4a:ac:2c:f3:fa:69:88:f8:
9e:70:ca:5d:4e:b2:99:25:8f:a5:16:2e:a9:7d:bc:
1d:ff:1d:54:6b:7e:e1:11:b1:7a:04:86:5b:5e:9e:
21:52:33:8c:31:65:1f:4d:7a:14:ca:43:7c:b4:99:
2b:e4:be:bc:03:5f:06:0f:53:5f:49:75:ba:9a:a8:
dc:d4:6b:6c:1c:07:3c:91:6a:20:e5:f0:7d:75:d2:
ab:b8:da:78:23:49:ec:45:6c:bf:5f:41:75:eb:fc:
1c:65:91:17:71:12:98:9e:65:31:40:5f:48:83:40:
74:e3:37:e6:c1:90:17:a8:d4:db:c3:41:fa:c5:6d:
77:cd:67:a3:11:2c:2f:10:22:c5:f7:bc:54:a6:93:
de:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:EC:DA:AD:B5:50:9C:0F:44:F2:0F:40:7E:55:4D:30:9B:06:1D:F6
X509v3 Authority Key Identifier:
keyid:E5:F9:AD:21:2C:D6:5A:B4:EE:2B:8E:9B:3F:8B:83:3C:39:00:EA:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5fmtISzWWrTuK46bP4uDPDkA6n0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f80926-e9a9-41f9-95a0-9b813a2002aa/1/NezarbVQnA9E8g9AflVNMJsGHfY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f80926-e9a9-41f9-95a0-9b813a2002aa/1/5fmtISzWWrTuK46bP4uDPDkA6n0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:5e44::/31
Signature Algorithm: sha256WithRSAEncryption
21:2d:aa:cb:60:7d:dd:b2:07:72:9e:5a:9e:d0:67:ab:c8:52:
fc:61:6c:19:b5:b0:e8:e6:ef:14:e4:61:55:29:5e:fa:34:04:
8d:c3:56:8d:54:8a:a3:64:94:34:64:73:e8:88:55:39:01:d5:
6f:4e:43:12:a0:62:3d:cd:06:5a:09:7a:b8:11:72:c0:19:4a:
82:ee:fd:ea:50:da:49:65:74:8e:11:26:33:cd:d6:84:54:66:
bb:cf:8e:e1:a3:ce:6f:57:c7:71:b8:6f:41:b5:85:62:f0:d4:
0d:60:18:72:26:d8:f2:7c:67:4b:44:67:01:8f:d0:0a:55:a8:
1a:0e:89:35:c9:40:48:ba:42:3e:6e:38:d5:34:c3:6f:0f:3b:
a9:5b:af:e1:59:4a:58:3b:9b:13:56:cf:71:85:a6:67:ad:4d:
88:a0:5a:09:ce:78:c4:cf:1d:20:1d:06:a2:39:c4:6f:5a:b8:
e0:5b:d3:e3:2d:ff:a9:fb:48:56:66:87:3d:77:36:b7:a8:51:
2e:49:8e:38:83:5a:cc:58:bb:f1:aa:48:e1:f2:d6:06:2f:7e:
37:e8:93:1b:a7:a8:cb:2c:73:0a:21:7a:37:cb:15:40:cc:e5:
b8:db:d3:09:ec:89:a3:20:d8:04:39:d6:a4:57:f4:ed:83:41:
26:ed:ca:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:59 2024 by rpki-client on console-ams.rpki-client.org