Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/NGEYTFzsQM88r0ASr_vfgiXC9bs.roa
File: NGEYTFzsQM88r0ASr_vfgiXC9bs.roa (raw, json)
Hash identifier: lRs1lNiYPcqhqMZjtXVxyzHkjuRncij8ilpWsLGx+ck=
Subject key identifier: 34:61:18:4C:5C:EC:40:CF:3C:AF:40:12:AF:FB:DF:82:25:C2:F5:BB
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 01856F79758718B5480909783C4A4F6BFE90
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/NGEYTFzsQM88r0ASr_vfgiXC9bs.roa
Signing time: Sun 01 Jan 2023 22:35:08 +0000
ROA not before: Sun 01 Jan 2023 22:35:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13213
IP address blocks: 136.144.40.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 20 Sep 2023 04:09:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:75:87:18:b5:48:09:09:78:3c:4a:4f:6b:fe:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 1 22:35:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3461184c5cec40cf3caf4012affbdf8225c2f5bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:68:d3:d1:40:ad:ba:70:52:8c:f3:18:a6:59:
df:d3:3e:87:30:89:e2:a9:ac:91:25:6e:a6:05:f7:
51:68:21:26:d4:8a:61:1f:8f:81:62:98:da:8b:84:
75:f9:99:91:a9:34:13:69:30:1f:83:ac:ee:49:99:
df:b2:f1:14:00:d0:ca:84:02:37:09:ff:f5:22:32:
79:cd:f0:f2:9b:ed:5c:b7:66:c1:b6:0d:4a:6c:da:
07:77:a8:1c:79:cc:14:dc:2b:5e:4f:51:cd:52:33:
6a:f5:3f:68:a1:e7:11:2e:c9:41:32:13:c0:06:5e:
12:05:20:cf:7c:74:45:d3:54:32:3f:36:10:53:40:
59:fd:7e:78:5a:74:60:43:53:e7:7a:f9:21:cc:cd:
92:e8:00:da:36:32:09:06:c5:69:6b:7c:84:f5:f4:
6c:1e:d1:4c:a0:b3:c7:fe:3a:9e:86:0d:b8:26:e3:
7b:63:a5:cb:89:44:57:8c:f8:ad:d7:52:b2:7b:25:
84:8d:52:7f:a0:5d:4d:99:2e:e9:fb:33:0c:b6:3e:
f6:4b:05:9d:01:e3:c8:d2:19:6d:9d:7a:38:25:83:
c6:92:b8:49:21:43:f5:d2:82:d4:e8:82:26:27:d4:
c6:d8:8c:ac:bc:88:37:1f:1e:5e:70:62:07:fb:06:
3a:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:61:18:4C:5C:EC:40:CF:3C:AF:40:12:AF:FB:DF:82:25:C2:F5:BB
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/NGEYTFzsQM88r0ASr_vfgiXC9bs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
136.144.40.0/24
Signature Algorithm: sha256WithRSAEncryption
68:a7:08:d4:6b:10:9a:55:a3:c9:64:26:ac:41:70:f5:36:0c:
ff:57:22:92:54:27:57:b1:45:fa:5c:06:f6:60:db:00:9b:88:
54:5b:ce:2e:e6:48:86:75:f9:76:0e:2a:f1:ee:ae:91:c9:8a:
2c:9b:65:6f:e9:1a:51:2f:73:30:7a:e8:1a:04:e1:25:c5:f5:
4d:02:df:35:a8:f6:bf:26:a0:0f:0b:54:8b:4a:29:f1:b7:ba:
3c:84:01:01:a4:67:09:9b:69:42:fd:59:7b:19:62:5d:24:43:
fd:df:ef:dd:d8:17:6e:e8:51:4a:d1:a9:3d:c3:1b:4f:06:aa:
3d:59:76:d9:ce:f7:13:3e:dc:64:0b:33:bb:c5:e7:c7:a9:fa:
31:9f:f4:72:86:8b:e8:fd:76:65:4c:1d:d3:26:bd:ad:ef:75:
f5:fa:66:12:21:a5:6f:32:29:69:57:60:d3:77:5e:99:62:91:
01:05:b2:24:88:ce:4c:ac:95:ec:dc:83:77:f6:91:2a:83:49:
a2:65:ae:51:87:5e:7f:22:7f:b8:19:28:97:7f:a4:52:b9:bb:
dd:fa:8d:40:f4:65:47:44:3a:37:b1:71:90:07:a8:22:42:7e:
4b:a2:e8:6b:37:7b:18:b1:d8:2e:f1:da:2d:ee:b1:48:96:a6:
38:5b:21:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:52 2024 by rpki-client on console-fra.rpki-client.org