Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/9a72e0-fb9c-4e72-af34-dc48cecd1545/1/NpEl83KLdu3TnUlEzIJ8nTIrEp0.roa
File: NpEl83KLdu3TnUlEzIJ8nTIrEp0.roa (raw, json)
Hash identifier: K6HufGIxpwHvm/mB1PtfVUp29Btf1UpwpCKJPOYaF2o=
Subject key identifier: 36:91:25:F3:72:8B:76:ED:D3:9D:49:44:CC:82:7C:9D:32:2B:12:9D
Certificate issuer: /CN=b3a4714a695c63cf2e9c4adea6171827d866e298
Certificate serial: 0185724C669D747A4581E607892335800385
Authority key identifier: B3:A4:71:4A:69:5C:63:CF:2E:9C:4A:DE:A6:17:18:27:D8:66:E2:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s6RxSmlcY88unErephcYJ9hm4pg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/9a72e0-fb9c-4e72-af34-dc48cecd1545/1/NpEl83KLdu3TnUlEzIJ8nTIrEp0.roa
Signing time: Mon 02 Jan 2023 11:44:47 +0000
ROA not before: Mon 02 Jan 2023 11:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212818
IP address blocks: 195.177.215.0/24 maxlen: 24
195.177.214.0/24 maxlen: 24
195.177.214.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:4c:66:9d:74:7a:45:81:e6:07:89:23:35:80:03:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3a4714a695c63cf2e9c4adea6171827d866e298
Validity
Not Before: Jan 2 11:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=369125f3728b76edd39d4944cc827c9d322b129d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:53:1e:f1:b4:96:19:50:f4:b7:3b:70:d4:27:
c2:f7:cb:24:b0:a5:3d:31:63:ad:9d:bf:04:38:b6:
d3:eb:8f:0d:c9:68:0f:43:50:e6:0a:47:ca:14:92:
4b:62:71:5a:69:48:6e:24:da:9b:be:ab:02:1a:33:
63:7e:49:7c:30:86:18:4e:fb:5e:2a:fd:70:f4:76:
dd:bf:0e:9e:d7:c8:b1:37:c4:52:46:27:90:af:88:
88:50:1a:76:68:06:4b:b6:c4:f3:94:2f:18:cc:63:
31:ee:74:90:84:65:2e:0f:c2:bb:d1:17:32:c6:26:
e7:6f:dd:ba:b5:32:f9:ec:1e:ac:5b:46:2b:a6:09:
69:c3:2f:74:4f:b4:12:5b:7d:37:15:3c:df:fd:64:
25:62:c8:b6:44:50:5b:cb:6d:dd:e4:e2:a7:50:1f:
91:a2:ee:d3:3b:ba:4c:ce:5d:4a:aa:1d:8a:f3:c7:
e2:5b:5c:80:9d:ae:96:6e:c3:aa:6d:2b:fa:cf:bb:
cd:4c:0b:aa:83:50:ab:1c:3d:0f:4a:51:bf:30:e6:
8c:38:c9:ff:5f:4a:a0:b2:fa:f7:db:a0:53:92:f1:
3c:b3:28:1f:a3:44:77:6c:03:6d:28:0d:24:89:fa:
92:ef:1c:41:1d:74:02:cd:df:c0:18:91:f8:b2:57:
8c:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:91:25:F3:72:8B:76:ED:D3:9D:49:44:CC:82:7C:9D:32:2B:12:9D
X509v3 Authority Key Identifier:
keyid:B3:A4:71:4A:69:5C:63:CF:2E:9C:4A:DE:A6:17:18:27:D8:66:E2:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s6RxSmlcY88unErephcYJ9hm4pg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/9a72e0-fb9c-4e72-af34-dc48cecd1545/1/NpEl83KLdu3TnUlEzIJ8nTIrEp0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/9a72e0-fb9c-4e72-af34-dc48cecd1545/1/s6RxSmlcY88unErephcYJ9hm4pg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.177.214.0/23
Signature Algorithm: sha256WithRSAEncryption
51:7b:e9:3d:86:63:c7:24:0e:df:ec:a5:70:9f:f7:7f:42:f8:
1d:e0:0a:12:1d:40:ee:f6:7b:db:17:a8:18:7e:c7:cd:2c:c4:
57:ce:14:5b:5d:81:9b:08:01:2f:d3:0c:bc:aa:c2:69:20:bb:
13:5e:e0:ee:59:1c:1e:03:cc:df:c1:86:73:6a:84:a3:e0:f6:
f4:74:84:25:63:56:bf:86:ec:f5:bf:03:6e:ae:0b:29:9a:8b:
fc:47:fb:70:4c:21:db:e0:93:24:f3:8e:e2:9a:c6:6b:49:fe:
1d:f6:37:fb:ee:55:12:04:8a:4a:54:db:57:05:76:25:31:cb:
5e:11:84:3e:cb:34:52:b2:1a:5a:59:5d:5f:3b:b4:5a:4e:bb:
69:00:9c:50:e2:a6:f1:75:07:75:3e:87:57:c5:2d:0c:75:45:
49:13:4b:df:01:1b:19:3b:ca:33:94:c4:bb:58:c7:59:06:7d:
d7:3f:e2:d2:46:f1:8e:d7:5d:a5:fa:e8:97:a5:70:9e:db:48:
80:d2:bb:75:6c:8a:0b:a6:e5:50:d6:d6:f0:19:7b:5a:35:9a:
3a:59:aa:22:cc:2f:1a:37:59:74:31:4a:80:cb:0d:1f:76:a3:
d0:2d:f9:5b:f8:48:ae:78:70:1e:d3:24:ce:09:33:23:6a:43:
fe:3a:1f:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:05 2024 by rpki-client on console-ams.rpki-client.org