Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/NdzkHGuNNEU1pJgGvIZfEOxYaCY.roa
File: NdzkHGuNNEU1pJgGvIZfEOxYaCY.roa (raw, json)
Hash identifier: FVRsJS44kBhNoBHMtOtgyvs8bhwREm9664IFqaWqMIs=
Subject key identifier: 35:DC:E4:1C:6B:8D:34:45:35:A4:98:06:BC:86:5F:10:EC:58:68:26
Certificate issuer: /CN=fe779e56238b6f2ea068ede4e20aef00c904132b
Certificate serial: 018C8785BE73D9A77DD2A737CACDFA6C3F29
Authority key identifier: FE:77:9E:56:23:8B:6F:2E:A0:68:ED:E4:E2:0A:EF:00:C9:04:13:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/NdzkHGuNNEU1pJgGvIZfEOxYaCY.roa
Signing time: Wed 20 Dec 2023 13:58:58 +0000
ROA not before: Wed 20 Dec 2023 13:58:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5650
IP address blocks: 92.53.176.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:87:85:be:73:d9:a7:7d:d2:a7:37:ca:cd:fa:6c:3f:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe779e56238b6f2ea068ede4e20aef00c904132b
Validity
Not Before: Dec 20 13:58:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=35dce41c6b8d344535a49806bc865f10ec586826
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:7a:08:13:c9:d7:24:86:bc:a7:9b:ef:3f:3b:
88:d8:fc:bd:cf:31:be:f2:ad:4e:87:09:cf:ee:07:
4e:b2:79:73:51:eb:6f:55:ee:d9:04:c8:b3:9f:dd:
a6:6a:0b:17:5f:90:d3:cf:4d:0f:0b:6d:71:66:84:
6f:32:63:f5:b3:88:2a:6d:ed:41:62:49:44:3a:ca:
09:08:af:8f:4e:92:07:65:42:32:6c:7d:18:00:23:
60:29:5a:78:97:af:d4:61:4f:2a:3b:46:8c:36:11:
9d:6e:43:9b:e1:6c:48:94:b7:5f:a8:63:e4:df:c4:
f0:70:5f:61:32:a0:74:20:a8:52:8c:e3:ee:ec:fe:
2b:1b:51:0e:c7:a7:08:04:91:46:64:12:ba:00:5a:
08:0b:d9:5a:52:9a:03:46:b6:a7:69:57:de:43:59:
81:5b:7e:10:33:22:ae:eb:30:94:3c:01:f5:81:1e:
21:a1:f7:74:1f:17:a2:0c:a6:44:3b:f7:ea:bf:b0:
f8:83:95:2b:76:17:9a:74:ca:ee:eb:26:4a:b8:b4:
27:7f:15:bc:0e:68:1f:f0:cd:4a:8d:16:2d:eb:23:
e9:24:98:89:53:54:07:f3:4d:19:11:8c:c2:c5:f2:
65:f8:e1:9e:db:64:2f:79:dd:47:a5:97:d6:0e:1d:
2d:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:DC:E4:1C:6B:8D:34:45:35:A4:98:06:BC:86:5F:10:EC:58:68:26
X509v3 Authority Key Identifier:
keyid:FE:77:9E:56:23:8B:6F:2E:A0:68:ED:E4:E2:0A:EF:00:C9:04:13:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/NdzkHGuNNEU1pJgGvIZfEOxYaCY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/_neeViOLby6gaO3k4grvAMkEEys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.53.176.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:3e:9c:35:87:81:fe:90:78:b6:e4:67:17:99:79:f0:8e:70:
92:af:78:3c:14:54:de:ea:79:70:60:ea:4c:e0:96:e2:a1:08:
57:af:d8:63:5f:e0:22:bd:fa:78:36:e4:ab:cd:e6:ef:7a:87:
81:06:96:55:98:6a:90:cb:49:c2:a0:2e:86:3f:90:fa:e4:bf:
be:0a:e4:ea:38:9f:db:b5:54:3a:67:0e:3b:74:d0:69:f6:f5:
b3:d7:e8:be:1d:3e:3d:2a:d9:cc:b4:53:e1:2f:4e:9a:4f:02:
bc:3c:28:c3:d2:86:f7:fe:3d:b6:ec:d6:23:32:2a:d4:0c:3c:
ba:7f:90:c6:1b:e8:9f:95:60:68:f8:20:e6:6e:45:cf:3e:5a:
df:68:d1:86:8a:8d:f9:06:f9:6c:cf:d4:c0:39:7c:a8:f5:66:
65:98:c9:67:94:57:d6:2b:80:63:b4:db:98:4e:21:de:83:c5:
0b:23:6e:17:ef:a9:a6:a2:af:7e:18:95:3c:aa:6e:54:74:26:
c0:f5:b8:fc:94:c0:61:ae:ee:31:1a:23:0d:30:70:20:64:aa:
70:f9:dd:85:5d:e7:83:33:56:29:f1:6a:01:33:04:84:9a:ea:
36:86:5f:b1:8b:a4:11:8b:12:62:60:84:83:70:b8:0c:87:ef:
42:a4:85:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:13 2024 by rpki-client on console-fra.rpki-client.org