Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/f59fe3-956e-4937-858d-eec416a886f7/1/nm0eLaLFJdEXklf2lN4BZcCflUY.roa
File: nm0eLaLFJdEXklf2lN4BZcCflUY.roa (raw, json)
Hash identifier: /Qf5lGW8JqkB76Z8332Etq7E28MOdnBV6j9Mt8Bwk3I=
Subject key identifier: 9E:6D:1E:2D:A2:C5:25:D1:17:92:57:F6:94:DE:01:65:C0:9F:95:46
Certificate issuer: /CN=3af7710df8add64bb9688e0f4581bea67e402c66
Certificate serial: 018C1EAD950EA25A0DBEEF570BFCF3D74852
Authority key identifier: 3A:F7:71:0D:F8:AD:D6:4B:B9:68:8E:0F:45:81:BE:A6:7E:40:2C:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvdxDfit1ku5aI4PRYG-pn5ALGY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/f59fe3-956e-4937-858d-eec416a886f7/1/nm0eLaLFJdEXklf2lN4BZcCflUY.roa
Signing time: Thu 30 Nov 2023 05:22:21 +0000
ROA not before: Thu 30 Nov 2023 05:22:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6898
IP address blocks: 185.155.176.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:1e:ad:95:0e:a2:5a:0d:be:ef:57:0b:fc:f3:d7:48:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af7710df8add64bb9688e0f4581bea67e402c66
Validity
Not Before: Nov 30 05:22:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9e6d1e2da2c525d1179257f694de0165c09f9546
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:af:2d:ae:46:f9:15:91:e0:d9:94:19:de:b0:
1b:c1:e3:72:bd:2b:38:90:c2:22:81:8d:ac:61:85:
4f:a7:03:e0:b9:cc:47:99:0e:b2:46:83:58:93:8f:
1c:82:58:be:ab:7f:83:a2:f2:7e:cb:1d:b1:ea:0b:
fc:6e:ad:c3:04:84:aa:ed:92:ea:8d:02:53:03:9f:
c5:f5:b9:ec:d5:e2:0f:4e:48:cf:e3:bb:19:13:f1:
3a:89:7f:58:ca:4a:69:2a:ef:96:63:cd:51:2f:80:
d3:f7:ba:b0:bc:40:4c:75:16:6d:d8:34:2b:0c:e8:
36:8f:8e:7f:56:38:06:87:2e:6f:33:53:ca:86:2e:
5a:c5:74:a6:c7:6a:70:60:cb:9b:bf:e4:18:ba:eb:
b4:9e:57:73:50:4d:bc:fd:38:1a:8d:f0:a4:90:9d:
67:5f:52:55:c0:1e:8b:af:58:57:e8:09:c1:6a:8b:
c0:71:b4:1f:90:df:90:c5:22:51:24:80:d2:79:6a:
2a:bc:cf:06:cf:eb:0c:c6:18:a3:bc:68:5f:9b:a3:
c9:20:73:e3:a9:e2:32:e1:40:ed:df:04:7b:7a:85:
d4:51:6e:fb:be:ba:1a:84:51:88:d6:bc:22:69:f4:
3b:69:0f:7a:d3:67:8b:7e:cd:0c:23:66:dc:e6:0d:
b6:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:6D:1E:2D:A2:C5:25:D1:17:92:57:F6:94:DE:01:65:C0:9F:95:46
X509v3 Authority Key Identifier:
keyid:3A:F7:71:0D:F8:AD:D6:4B:B9:68:8E:0F:45:81:BE:A6:7E:40:2C:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvdxDfit1ku5aI4PRYG-pn5ALGY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/f59fe3-956e-4937-858d-eec416a886f7/1/nm0eLaLFJdEXklf2lN4BZcCflUY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/f59fe3-956e-4937-858d-eec416a886f7/1/OvdxDfit1ku5aI4PRYG-pn5ALGY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.176.0/22
Signature Algorithm: sha256WithRSAEncryption
08:e2:a0:2d:6e:f0:02:34:05:bb:db:19:c1:8d:47:7c:07:cb:
fd:8f:8f:4c:9d:cf:9c:b0:05:80:79:7a:08:51:ce:cb:98:e0:
16:1e:37:75:63:18:40:59:05:17:ec:61:8b:70:cc:c6:88:21:
38:c2:f1:83:50:ff:f8:0f:35:a2:c4:bb:e4:9e:32:d4:73:f4:
0b:45:95:6c:78:9d:37:49:3c:2e:d7:86:5b:c6:26:e6:a5:2f:
c7:4e:45:ba:70:35:4f:54:16:20:a9:c3:4b:85:e5:c8:b6:80:
7b:cf:45:af:3a:fe:ab:72:9e:40:c8:51:1b:4e:45:f3:5b:9f:
4b:09:d7:2d:f2:21:32:e3:a2:06:61:5c:0d:4f:85:4f:db:7f:
3b:c6:99:99:24:84:c9:8b:e1:23:8d:0d:1f:71:7c:2e:9f:2c:
6e:30:b3:ec:d9:3c:92:49:6a:86:94:51:3b:9b:2b:e6:2d:c6:
58:75:d8:c0:e0:47:bd:75:9e:d2:38:a9:a5:86:7a:a9:ff:dd:
ef:95:00:58:fa:09:a0:6a:5b:42:bf:32:cf:af:09:23:e5:06:
3d:d2:26:c6:3a:ea:ac:66:bb:4e:fc:6e:c0:57:7c:65:72:30:
84:c9:7f:29:8a:26:88:78:85:49:70:17:dc:59:71:cb:7e:08:
ab:ac:7e:9a
-----BEGIN CERTIFICATE-----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Generated at Sat Dec 30 08:52:33 2023 by rpki-client on console-ams.rpki-client.org