Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/ffa703-b462-4022-9e1e-6d704cda0eb9/1/NR-fNMmdBa_jkeiO3jDLtbJ5F9I.roa
File: NR-fNMmdBa_jkeiO3jDLtbJ5F9I.roa (raw, json)
Hash identifier: iWg74NkKNzx21msM8wNu37u1SmdfwtLSgOm7zGkn8dA=
Subject key identifier: 35:1F:9F:34:C9:9D:05:AF:E3:91:E8:8E:DE:30:CB:B5:B2:79:17:D2
Certificate issuer: /CN=787054b167aa98841cdc2c4ba2b86139ab988e7d
Certificate serial: 018BF17DE5AD56877CCC9573D04C2F743384
Authority key identifier: 78:70:54:B1:67:AA:98:84:1C:DC:2C:4B:A2:B8:61:39:AB:98:8E:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eHBUsWeqmIQc3CxLorhhOauYjn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/ffa703-b462-4022-9e1e-6d704cda0eb9/1/NR-fNMmdBa_jkeiO3jDLtbJ5F9I.roa
Signing time: Tue 21 Nov 2023 10:47:21 +0000
ROA not before: Tue 21 Nov 2023 10:47:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30742
IP address blocks: 2.59.32.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f1:7d:e5:ad:56:87:7c:cc:95:73:d0:4c:2f:74:33:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=787054b167aa98841cdc2c4ba2b86139ab988e7d
Validity
Not Before: Nov 21 10:47:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=351f9f34c99d05afe391e88ede30cbb5b27917d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:07:eb:0f:72:03:ed:fd:ae:c2:76:14:16:ff:
48:1e:5b:9d:72:d4:4e:48:7d:c1:95:15:bc:70:9a:
f5:ba:fb:f4:b1:b7:0e:99:1f:7e:45:30:6f:49:d8:
16:c6:be:6e:96:9b:7f:de:ef:53:9b:6e:f8:01:2c:
13:ed:a2:f7:d9:2f:16:ec:4c:36:b5:eb:c9:42:76:
36:a7:c2:a5:36:b8:84:24:10:7e:d5:c6:27:18:ce:
3e:63:4f:bc:42:0c:f0:f4:02:00:e5:f4:ea:81:8b:
72:c4:c9:90:8d:3d:41:65:45:f4:c4:76:cf:c5:3c:
82:64:2f:d9:aa:c9:92:be:63:6c:c5:03:28:09:3c:
45:84:96:a5:39:6a:47:f3:46:8f:a2:5d:24:7d:e0:
0e:92:8a:84:50:65:2f:5d:df:fa:4d:09:be:ff:e3:
ef:61:3d:80:66:3c:f4:09:da:89:81:3c:22:77:25:
b6:18:bb:ec:12:80:26:fb:4f:ee:28:13:da:b8:15:
00:78:d6:ed:5b:52:b7:3c:2a:f0:c4:73:58:9e:65:
12:dc:42:44:c0:6a:c8:25:ec:80:d5:04:97:55:fb:
73:40:c8:ee:cd:af:94:55:6f:e5:e5:99:ed:f9:c8:
33:dc:42:76:bd:9f:83:17:46:12:d4:20:cc:94:7d:
a1:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:1F:9F:34:C9:9D:05:AF:E3:91:E8:8E:DE:30:CB:B5:B2:79:17:D2
X509v3 Authority Key Identifier:
keyid:78:70:54:B1:67:AA:98:84:1C:DC:2C:4B:A2:B8:61:39:AB:98:8E:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eHBUsWeqmIQc3CxLorhhOauYjn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/ffa703-b462-4022-9e1e-6d704cda0eb9/1/NR-fNMmdBa_jkeiO3jDLtbJ5F9I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/ffa703-b462-4022-9e1e-6d704cda0eb9/1/eHBUsWeqmIQc3CxLorhhOauYjn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.32.0/22
Signature Algorithm: sha256WithRSAEncryption
4f:58:60:a4:84:56:da:5d:16:68:ee:20:74:f4:3c:46:34:f6:
90:09:83:6b:61:37:bd:29:47:74:c6:f8:f9:cb:cb:7f:65:f3:
94:1e:96:ee:44:cc:b8:52:e2:3c:8b:ab:43:a6:ca:ba:2c:0e:
ad:c0:b2:c8:42:e6:48:d9:03:61:11:b9:a1:c9:c4:72:67:e1:
21:62:be:61:73:5c:e5:fb:80:ec:67:ac:f1:10:b3:25:4b:85:
26:c7:c2:f6:98:52:03:bc:b9:4c:d6:19:38:56:e3:e3:0d:8d:
63:e6:35:58:4e:82:a2:00:40:92:61:e6:31:d9:0d:2d:18:27:
08:41:3f:e0:3d:e7:80:8a:ff:e8:00:72:a6:07:e8:4a:75:04:
20:f4:e9:7f:d2:a3:ee:63:a8:64:e2:fb:7b:7b:7f:f3:5a:bd:
7d:de:79:bd:4f:f5:dc:4f:3b:50:2b:06:6d:c4:03:78:a7:f6:
fe:c7:ca:f5:57:8a:93:cd:58:88:af:22:8e:73:76:c9:61:3e:
1f:a7:f5:6d:56:18:94:78:f4:f9:b5:38:20:7e:05:5f:d1:53:
d1:86:58:36:36:37:d5:40:08:76:54:c6:a5:4c:95:c8:8a:5e:
30:26:32:bb:7a:95:c9:1a:26:c7:1e:f4:bf:b1:e3:b6:5c:f4:
ff:34:a0:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:43 2024 by rpki-client on console-ams.rpki-client.org