Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/149cf6-611d-4e03-a660-dce1127ab223/1/NHWIxUGwa_ZqACHXTpBMz83pZYE.roa
File: NHWIxUGwa_ZqACHXTpBMz83pZYE.roa (raw, json)
Hash identifier: aO030c8Z3eGN9ag8mZU+1Kd6Zng5L1pram37bw43mv8=
Subject key identifier: 34:75:88:C5:41:B0:6B:F6:6A:00:21:D7:4E:90:4C:CF:CD:E9:65:81
Certificate issuer: /CN=70cbeb388f5902c16160bbed0962cb622b2bb832
Certificate serial: 0185737A99A041DC6C21663FDB9F4A7000CA
Authority key identifier: 70:CB:EB:38:8F:59:02:C1:61:60:BB:ED:09:62:CB:62:2B:2B:B8:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvrOI9ZAsFhYLvtCWLLYisruDI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/149cf6-611d-4e03-a660-dce1127ab223/1/NHWIxUGwa_ZqACHXTpBMz83pZYE.roa
Signing time: Mon 02 Jan 2023 17:14:52 +0000
ROA not before: Mon 02 Jan 2023 17:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34702
IP address blocks: 185.46.20.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:7a:99:a0:41:dc:6c:21:66:3f:db:9f:4a:70:00:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbeb388f5902c16160bbed0962cb622b2bb832
Validity
Not Before: Jan 2 17:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=347588c541b06bf66a0021d74e904ccfcde96581
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:0e:32:88:30:29:60:1b:d0:31:7f:55:35:8a:
ac:d1:ea:0d:cb:9c:bd:fc:4b:5c:3e:67:fb:8a:0c:
dd:0d:c3:c0:8e:10:3f:d5:ee:ec:b0:46:01:85:c4:
5f:7f:6a:3a:79:82:c9:23:32:cc:51:96:39:d6:9d:
94:67:36:af:69:22:28:ab:16:53:c3:60:64:98:2a:
34:40:70:0e:d3:ee:5e:eb:5d:80:e9:1e:1d:1d:e6:
13:c0:50:1a:03:8e:60:33:a6:39:7f:ed:a8:c2:91:
83:dc:02:3d:b8:bb:99:16:cb:8e:22:e6:fc:ea:01:
12:c8:0c:d8:74:76:1e:9d:87:d2:0b:dc:5c:24:b0:
f4:3f:23:39:39:0f:12:b7:bd:93:e2:91:27:f7:c8:
53:c6:5d:e2:78:66:c1:6c:60:89:a8:a1:29:62:98:
dd:11:7f:91:24:e1:a9:79:a5:c7:48:bd:0d:e7:f8:
9c:49:45:a2:62:7c:6e:8a:25:27:8e:0b:af:ab:24:
b6:0f:dc:80:c7:8f:11:b7:3f:cd:ea:ef:54:8b:db:
cc:49:70:59:6d:2d:18:c1:43:86:8a:0a:34:d6:2e:
4a:22:f7:5f:d9:9c:2f:7a:d3:75:8d:36:c4:c0:03:
f5:f6:8e:8c:05:11:65:14:01:9b:68:01:11:e5:86:
df:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:75:88:C5:41:B0:6B:F6:6A:00:21:D7:4E:90:4C:CF:CD:E9:65:81
X509v3 Authority Key Identifier:
keyid:70:CB:EB:38:8F:59:02:C1:61:60:BB:ED:09:62:CB:62:2B:2B:B8:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvrOI9ZAsFhYLvtCWLLYisruDI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/149cf6-611d-4e03-a660-dce1127ab223/1/NHWIxUGwa_ZqACHXTpBMz83pZYE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/149cf6-611d-4e03-a660-dce1127ab223/1/cMvrOI9ZAsFhYLvtCWLLYisruDI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.46.20.0/22
Signature Algorithm: sha256WithRSAEncryption
19:3f:56:0f:34:24:ba:40:3c:7e:c7:49:74:bd:0a:e1:ac:58:
89:68:b4:73:8d:a8:44:e9:88:a6:cc:f8:95:98:c6:16:52:95:
5c:8b:ce:7e:b6:66:4d:ea:cc:1e:e2:f1:54:51:a6:0e:4c:10:
cb:95:5d:a1:48:22:d2:29:d6:77:1c:0a:2c:1d:a9:9f:ab:e1:
cd:a8:34:ef:fd:f2:fa:30:0d:6c:fe:24:fa:4a:16:46:05:9a:
53:ef:c9:7d:76:d1:00:d9:41:ab:84:a7:2c:e2:17:45:54:90:
b7:f4:53:3a:1d:ee:a8:88:58:f9:ba:f6:b5:c9:ea:05:d8:2c:
24:4d:e1:26:21:0a:b9:27:1a:2b:82:22:88:a1:33:57:e9:b8:
e8:16:05:bc:30:ba:df:f8:96:64:08:6f:e1:d9:a6:cc:c1:76:
0b:cd:0b:30:88:97:38:80:d7:23:bf:af:0f:a4:43:2f:bf:e6:
53:e7:fd:84:7e:4c:36:4a:1c:6d:37:d3:17:79:12:0a:a9:dd:
b6:7a:ed:80:aa:fe:bf:0c:3e:71:d9:04:de:50:8c:67:43:68:
54:fe:a1:d2:fd:2a:f5:fa:54:b4:2c:eb:c4:af:28:4b:49:e6:
39:84:1e:86:6e:1c:23:c8:25:fe:aa:e0:e2:dd:5a:0b:58:d3:
b7:32:5c:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:18 2024 by rpki-client on console-ams.rpki-client.org