Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/nAa-_t6lfOID-1zoS1cRMet-Zyo.roa
File: nAa-_t6lfOID-1zoS1cRMet-Zyo.roa (raw, json)
Hash identifier: m4RuVUl7qp69hzfkd2JzRyioLpzKp1byXn+bwsCtXlQ=
Subject key identifier: 9C:06:BE:FE:DE:A5:7C:E2:03:FB:5C:E8:4B:57:11:31:EB:7E:67:2A
Certificate issuer: /CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd
Certificate serial: 018E3D3285C57F4581864B1EBF604F7F7DC8
Authority key identifier: 52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/nAa-_t6lfOID-1zoS1cRMet-Zyo.roa
Signing time: Thu 14 Mar 2024 13:41:44 +0000
ROA not before: Thu 14 Mar 2024 13:41:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14670
IP address blocks: 65.181.111.0/24 maxlen: 24
190.92.168.0/22 maxlen: 24
190.92.172.0/24 maxlen: 24
190.92.173.0/24 maxlen: 24
192.243.110.0/24 maxlen: 24
192.250.225.0/24 maxlen: 24
192.250.231.0/24 maxlen: 24
199.103.58.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 Apr 2024 13:45:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:3d:32:85:c5:7f:45:81:86:4b:1e:bf:60:4f:7f:7d:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd
Validity
Not Before: Mar 14 13:41:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9c06befedea57ce203fb5ce84b571131eb7e672a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e1:8f:01:71:d8:f9:80:5f:7b:ff:47:06:5b:
9e:66:09:c2:b9:2b:77:da:98:96:61:ca:ed:dc:42:
67:19:13:ce:c4:1b:c5:ad:14:cd:75:9f:da:3c:41:
c9:b5:46:aa:65:6a:7e:f4:24:10:c7:f4:e2:4f:3d:
d9:11:27:a0:bf:8e:79:99:cc:50:cd:ad:93:e2:f5:
45:2b:0a:0e:18:99:b0:65:57:04:d9:ed:da:9f:ea:
c7:7f:d7:c4:d5:cd:4d:d9:d4:91:34:41:25:2e:11:
16:cc:8a:46:2f:7f:4e:3d:c3:b3:07:a2:9c:94:fc:
41:6c:dd:17:de:34:d9:28:5e:08:65:fa:5a:c1:52:
4e:50:15:7f:3a:15:a0:23:e7:ce:d9:31:f8:23:e3:
0b:95:1c:9f:f5:58:3f:77:5e:ab:61:de:30:75:40:
47:8f:fc:9f:cb:13:29:0a:68:07:fe:11:37:c0:dc:
87:82:bb:f6:97:4f:82:8e:93:54:ab:d2:aa:b6:50:
60:3e:ff:79:07:70:84:80:a1:b0:ed:a2:c7:22:aa:
15:09:44:97:28:32:fb:f5:db:e4:d9:37:57:7a:cb:
7b:db:e5:e7:27:a4:17:2c:dd:57:62:df:52:d1:bc:
68:2f:7f:f7:53:76:df:c6:1e:3f:c4:cd:ea:cc:cb:
c0:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:06:BE:FE:DE:A5:7C:E2:03:FB:5C:E8:4B:57:11:31:EB:7E:67:2A
X509v3 Authority Key Identifier:
keyid:52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/nAa-_t6lfOID-1zoS1cRMet-Zyo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
65.181.111.0/24
190.92.168.0-190.92.173.255
192.243.110.0/24
192.250.225.0/24
192.250.231.0/24
199.103.58.0/24
Signature Algorithm: sha256WithRSAEncryption
54:14:fc:1c:03:29:be:92:28:1e:07:08:70:ca:19:2a:75:fa:
82:a2:ef:6b:74:25:84:32:bc:69:d1:c8:05:65:4c:00:3b:14:
cc:96:92:78:a2:d1:47:8a:ef:87:2a:29:68:6a:ae:10:a0:3b:
f2:b1:1b:77:aa:63:45:b9:a8:60:75:c8:96:08:d4:68:b7:69:
0f:ae:87:cf:67:4c:a7:a1:b4:db:68:97:06:f5:37:26:c1:bb:
19:cf:42:84:f2:48:59:48:eb:df:2e:b4:62:d2:94:f1:4b:9b:
e2:6c:8f:27:60:9b:50:5f:d1:19:2b:3d:92:d3:e1:18:32:96:
e4:5a:10:b1:77:46:83:c2:84:03:ba:2f:90:34:6d:0c:24:1f:
b7:d9:a9:60:2f:2b:ef:55:62:32:0b:b9:df:53:f2:f1:ae:60:
67:46:7b:2d:c2:20:cf:45:bb:06:ae:ea:6c:88:f9:0b:7b:96:
fc:54:6e:ff:ca:52:2d:5f:9d:51:a3:68:2d:53:07:02:47:76:
26:d0:7d:93:9c:d2:4a:94:81:9e:13:d8:9b:d1:d2:61:e3:fb:
a7:a3:34:68:f7:1a:9c:77:54:b7:a9:21:65:91:89:26:65:cc:
67:7a:b1:82:2f:e3:98:f2:5a:c9:43:b1:91:c2:d9:93:58:ad:
2b:34:af:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:49 2024 by rpki-client on console-fra.rpki-client.org