Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/3c875d-9e65-4e06-8865-65368f408da3/1/N4BGQ5qhRdQ8z7rrgNakNQTKcXc.roa
File: N4BGQ5qhRdQ8z7rrgNakNQTKcXc.roa (raw, json)
Hash identifier: Ub2JpWC9eYbqVoPWe/kwyWEXpTT4ve1xGs7BcrOUZmE=
Subject key identifier: 37:80:46:43:9A:A1:45:D4:3C:CF:BA:EB:80:D6:A4:35:04:CA:71:77
Certificate issuer: /CN=2705a4ed17a681842102cc8f6ef03a569e15612a
Certificate serial: 01856F14DE3F061A9A1421D46B3D20BB079A
Authority key identifier: 27:05:A4:ED:17:A6:81:84:21:02:CC:8F:6E:F0:3A:56:9E:15:61:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JwWk7RemgYQhAsyPbvA6Vp4VYSo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/3c875d-9e65-4e06-8865-65368f408da3/1/N4BGQ5qhRdQ8z7rrgNakNQTKcXc.roa
Signing time: Sun 01 Jan 2023 20:45:16 +0000
ROA not before: Sun 01 Jan 2023 20:45:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25540
IP address blocks: 93.188.144.0/21 maxlen: 21
178.22.176.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:de:3f:06:1a:9a:14:21:d4:6b:3d:20:bb:07:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2705a4ed17a681842102cc8f6ef03a569e15612a
Validity
Not Before: Jan 1 20:45:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=378046439aa145d43ccfbaeb80d6a43504ca7177
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:72:93:3e:d8:01:d6:c5:57:0b:5f:b9:ff:c9:
8a:87:02:b6:c0:1e:f2:21:97:8f:53:6c:00:d8:f5:
e0:63:d1:06:d6:63:5e:94:6b:87:5a:09:88:28:64:
3c:37:bb:61:9b:2b:84:c6:9d:0b:99:85:3a:4e:43:
e7:01:a4:51:0b:84:fc:60:e3:20:d8:72:7f:d8:fb:
bf:ed:19:cb:df:c9:e9:6f:7e:e5:e4:c6:4d:b6:7a:
74:c8:ba:f7:b6:8a:6f:72:64:96:65:1b:b1:01:39:
bf:5c:53:db:90:13:f9:01:00:76:5d:7e:ff:38:e2:
6c:60:b0:54:2c:15:5e:4e:5d:1a:d1:89:0d:af:f3:
0f:25:3a:57:98:fd:ca:91:fd:f9:81:3d:4c:e3:9f:
cd:e5:e1:96:6a:0d:0f:6e:26:48:d4:1f:e7:8d:6e:
c5:7e:4a:af:84:c8:6a:e5:c4:ec:e0:3a:93:7a:f4:
3d:aa:12:8b:61:30:ba:e4:f7:05:1b:52:81:a2:cc:
72:f3:01:99:5b:05:da:39:56:6d:66:95:2a:58:c7:
66:74:20:d2:ec:54:d3:b0:f3:78:3b:33:f5:84:f4:
10:14:62:ae:fc:bc:d0:19:5f:0e:5d:84:d2:f6:6c:
3d:95:55:80:99:c2:c9:8f:f5:9d:84:db:48:74:7f:
28:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:80:46:43:9A:A1:45:D4:3C:CF:BA:EB:80:D6:A4:35:04:CA:71:77
X509v3 Authority Key Identifier:
keyid:27:05:A4:ED:17:A6:81:84:21:02:CC:8F:6E:F0:3A:56:9E:15:61:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JwWk7RemgYQhAsyPbvA6Vp4VYSo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/3c875d-9e65-4e06-8865-65368f408da3/1/N4BGQ5qhRdQ8z7rrgNakNQTKcXc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/3c875d-9e65-4e06-8865-65368f408da3/1/JwWk7RemgYQhAsyPbvA6Vp4VYSo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.188.144.0/21
178.22.176.0/21
Signature Algorithm: sha256WithRSAEncryption
41:f5:b4:0b:34:6c:47:29:39:cc:84:0b:28:1b:b8:fb:55:a4:
75:b8:07:73:15:7e:0d:9a:06:65:00:cc:7f:0c:cb:cc:17:e8:
c4:7e:0f:bb:19:ff:fc:a2:12:12:de:64:b2:88:30:43:cf:4b:
c4:73:6e:a3:cf:f9:23:12:de:53:ca:7e:b8:08:fe:13:b1:96:
c8:85:2f:9d:91:54:26:62:e1:ef:8e:cf:11:cc:3f:90:15:0c:
d7:38:8f:66:57:a8:0d:0f:d7:59:35:fa:69:58:e6:08:48:bf:
6d:14:f7:b1:fa:fe:c2:60:67:56:c9:ca:a9:ca:74:f5:1d:5c:
39:9b:76:55:29:12:6c:b6:b2:17:e3:0b:da:58:6b:67:14:b3:
6d:95:bb:c4:14:7b:03:13:56:1f:8d:d1:a1:86:5c:f7:a0:ca:
ef:00:a6:a4:a9:fc:a7:bc:85:68:85:d7:d2:2a:6f:fe:22:6e:
c0:98:e9:7a:a0:ee:d2:de:4a:90:b2:85:16:14:7d:80:c8:40:
8c:f5:79:bc:c7:c2:c0:79:2c:43:e5:99:be:1c:9f:fa:7c:ee:
a7:66:6a:93:10:3c:84:9e:37:fd:7e:de:7e:61:b0:f7:ba:2b:
e5:bc:d0:e1:5d:bf:2d:c4:b6:4e:84:90:11:91:4f:de:fd:32:
12:f7:f3:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:21 2024 by rpki-client on console-ams.rpki-client.org