Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/ng-fPuRJnTLLMdUaqSemPQoyOS0.roa
File: ng-fPuRJnTLLMdUaqSemPQoyOS0.roa (raw, json)
Hash identifier: hTI5u8WiLJmNywWU51oNbq0d2hn9gLSNnr+4WNtGFY4=
Subject key identifier: 9E:0F:9F:3E:E4:49:9D:32:CB:31:D5:1A:A9:27:A6:3D:0A:32:39:2D
Certificate issuer: /CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Certificate serial: 01870E140972D1D18FC269DE5DCEB15B1DDA
Authority key identifier: BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/ng-fPuRJnTLLMdUaqSemPQoyOS0.roa
Signing time: Thu 23 Mar 2023 10:46:46 +0000
ROA not before: Thu 23 Mar 2023 10:46:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 195.149.87.0/24 maxlen: 24
80.92.205.0/24 maxlen: 24
80.92.204.0/24 maxlen: 24
80.92.206.0/24 maxlen: 24
74.119.195.0/24 maxlen: 24
74.119.194.0/24 maxlen: 24
185.242.84.0/24 maxlen: 24
185.242.85.0/24 maxlen: 24
185.242.87.0/24 maxlen: 24
185.242.86.0/24 maxlen: 24
185.250.149.0/24 maxlen: 24
185.250.148.0/24 maxlen: 24
185.250.151.0/24 maxlen: 24
45.67.231.0/24 maxlen: 24
45.67.230.0/24 maxlen: 24
45.67.229.0/24 maxlen: 24
45.67.228.0/24 maxlen: 24
2a09:7c41::/32 maxlen: 32
2a09:7c44::/32 maxlen: 32
2a09:7c47::/32 maxlen: 32
2a09:7c40::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 23 Mar 2023 10:48:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:0e:14:09:72:d1:d1:8f:c2:69:de:5d:ce:b1:5b:1d:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Validity
Not Before: Mar 23 10:46:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9e0f9f3ee4499d32cb31d51aa927a63d0a32392d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:cc:14:f5:3b:b5:ce:a2:b7:a9:7f:07:a2:88:
0b:73:8b:a8:93:ec:5c:7e:e3:b2:1b:01:f7:6b:d7:
a6:50:9e:37:a5:b5:d6:b7:80:92:d7:7a:4c:d4:07:
ca:94:21:ee:10:92:f3:19:58:b9:19:3e:d2:2c:eb:
bd:61:1e:e5:53:c8:25:74:da:04:10:66:6a:35:10:
9d:a4:19:a5:1b:c5:29:b1:55:07:7f:07:e8:8c:ee:
cb:55:97:02:d3:d6:3a:f9:f2:35:85:1c:e0:36:fb:
03:6a:7f:f7:b0:2e:26:5e:36:90:0b:22:cb:eb:f4:
82:1c:e8:5d:e3:47:f0:9f:72:29:73:39:e7:2b:08:
56:ad:18:31:a5:28:8d:fa:f4:b7:89:40:e4:73:2c:
05:0e:c1:e4:59:7d:73:c2:2b:f1:7d:1c:91:1e:84:
57:8e:0a:c4:e7:99:b7:6a:c5:95:1a:84:21:fa:b5:
12:f8:e4:85:b9:f5:8e:a4:4d:82:ec:35:a2:70:53:
71:5f:18:54:56:bc:e8:d8:8e:e5:cb:9f:f9:14:df:
01:d2:c7:12:b2:33:9a:33:1d:b5:78:1a:e7:8a:10:
97:49:3d:2b:6d:32:e6:ec:55:a6:90:0f:dd:f1:e0:
c4:e6:e7:25:d8:61:e9:dc:1b:6f:df:1b:d9:5d:b3:
88:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:0F:9F:3E:E4:49:9D:32:CB:31:D5:1A:A9:27:A6:3D:0A:32:39:2D
X509v3 Authority Key Identifier:
keyid:BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/ng-fPuRJnTLLMdUaqSemPQoyOS0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/u4MGMPI7Bwore99Sn3OUjJfqzUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.228.0/22
74.119.194.0/23
80.92.204.0-80.92.206.255
185.242.84.0/22
185.250.148.0/23
185.250.151.0/24
195.149.87.0/24
IPv6:
2a09:7c40::/31
2a09:7c44::/32
2a09:7c47::/32
Signature Algorithm: sha256WithRSAEncryption
1f:7c:1d:58:f2:0e:43:3c:76:f1:35:18:d6:fd:bf:f6:28:52:
fb:6b:4d:53:be:61:cc:0c:79:a2:a4:e4:fa:9e:9e:a5:7f:28:
29:4a:db:c7:67:ef:6c:13:07:b3:b1:5f:2f:f5:ed:e4:f8:66:
01:44:f4:8b:a2:ab:7e:7c:ba:06:65:ea:b5:e1:6b:97:90:9b:
9f:21:61:60:e1:c6:57:1a:6d:29:41:06:69:43:20:5f:89:ed:
61:4f:74:d0:df:10:a0:28:68:ca:2d:2f:af:9e:b2:d2:ef:a0:
25:16:47:f7:4f:c3:fb:e0:1b:b2:86:e4:34:3e:9f:70:a0:64:
91:d9:99:77:c0:40:ff:1d:e9:52:fc:1d:3a:e8:67:be:18:0c:
19:67:31:b5:79:02:c3:30:a9:c6:d2:83:66:8d:f8:bb:c8:20:
db:e8:c1:0f:f1:e5:89:f9:af:3e:01:00:88:48:f2:cc:ac:b2:
4a:84:bc:44:5d:51:8e:c4:21:6d:ee:f9:9a:99:e0:ba:bb:31:
39:ce:85:3c:91:5b:4e:c7:e3:0f:48:18:86:7f:84:d3:0e:69:
a0:bf:84:54:9b:04:02:0c:dd:77:dd:36:c8:a0:1d:6f:e6:7c:
4f:3e:0a:c9:93:92:8e:d7:fb:4a:b2:5f:13:56:58:89:60:13:
15:7e:db:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:28 2024 by rpki-client on console-ams.rpki-client.org