Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/n7XWrYRQyJFYI1oWUF1FfC-yHus.roa
File: n7XWrYRQyJFYI1oWUF1FfC-yHus.roa (raw, json)
Hash identifier: icpNZLY1XeHF/+RkS5fSnOAtG1ykNvJQvp+lFB5hhuk=
Subject key identifier: 9F:B5:D6:AD:84:50:C8:91:58:23:5A:16:50:5D:45:7C:2F:B2:1E:EB
Certificate issuer: /CN=fe779e56238b6f2ea068ede4e20aef00c904132b
Certificate serial: 01856D41965F5086A5E4F60829D6DFD77FD2
Authority key identifier: FE:77:9E:56:23:8B:6F:2E:A0:68:ED:E4:E2:0A:EF:00:C9:04:13:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/n7XWrYRQyJFYI1oWUF1FfC-yHus.roa
Signing time: Sun 01 Jan 2023 12:14:52 +0000
ROA not before: Sun 01 Jan 2023 12:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212166
IP address blocks: 92.53.172.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 15 Jan 2023 23:04:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:41:96:5f:50:86:a5:e4:f6:08:29:d6:df:d7:7f:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe779e56238b6f2ea068ede4e20aef00c904132b
Validity
Not Before: Jan 1 12:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9fb5d6ad8450c89158235a16505d457c2fb21eeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:eb:c9:cc:e9:2e:6b:3b:b6:49:cb:f3:76:44:
8b:d8:39:88:a4:ca:bb:b2:75:fe:6e:93:06:95:d8:
ad:c5:14:ca:2f:3d:94:29:d4:fc:84:26:ff:2a:be:
0a:51:49:d4:7f:4d:f0:5f:db:33:7e:ca:fa:63:42:
8e:c8:c1:d8:1a:2f:04:05:0b:e6:db:ba:1b:ef:ca:
8d:72:9f:ff:55:86:bf:61:28:3b:00:ac:26:2f:66:
2c:17:f4:d9:81:1d:63:c4:2d:dc:0f:12:ee:90:b0:
c4:cb:79:0d:31:84:8f:85:b4:2c:2b:ee:a7:01:d6:
b9:b8:ed:45:33:8d:9a:66:11:74:8b:f3:cf:e9:ad:
b1:16:1c:6b:e2:db:4a:99:8b:d9:a7:12:d1:48:38:
d3:4c:37:58:24:51:cc:df:71:fc:26:ac:d5:9d:17:
90:2f:85:7f:1b:4b:49:df:1e:73:42:65:81:bf:c5:
d7:27:6f:b4:75:d3:d8:b8:0e:d5:83:80:3c:78:a2:
44:29:54:c2:8e:e8:c8:90:d3:4c:3b:11:1c:59:d9:
72:f0:ef:6c:cc:8d:59:8d:dd:87:1f:69:47:f8:8e:
74:9f:62:14:d4:59:c7:c8:e2:81:44:0e:22:12:a2:
bf:8c:ab:7e:3a:48:2a:d1:6d:02:58:26:b1:c9:4c:
d7:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:B5:D6:AD:84:50:C8:91:58:23:5A:16:50:5D:45:7C:2F:B2:1E:EB
X509v3 Authority Key Identifier:
keyid:FE:77:9E:56:23:8B:6F:2E:A0:68:ED:E4:E2:0A:EF:00:C9:04:13:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/n7XWrYRQyJFYI1oWUF1FfC-yHus.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/_neeViOLby6gaO3k4grvAMkEEys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.53.172.0/22
Signature Algorithm: sha256WithRSAEncryption
86:ca:d5:8f:18:35:6d:1c:3d:fc:e1:f1:5c:be:1b:fc:47:e7:
6d:8e:e2:5e:07:63:44:1a:7e:f8:aa:89:ed:74:37:c9:4c:ff:
5f:80:35:82:f0:94:0c:13:25:fc:d8:35:5a:6d:5d:98:a9:76:
62:e3:f4:3f:4b:f8:f6:4d:2a:c7:87:f8:05:2f:c1:93:63:69:
d0:df:a7:8e:ad:06:28:f6:64:85:fc:4b:cf:1c:d8:61:a4:3f:
99:66:50:81:35:7e:b2:e1:3b:30:fd:92:98:dc:20:4d:a0:0b:
23:b5:4a:f7:08:fd:86:97:74:35:ab:f3:6f:00:9d:5c:42:2d:
cc:58:83:69:66:b9:25:c1:d2:ba:a2:10:3f:60:48:44:5c:d3:
d9:ba:42:ee:de:f2:8e:6f:b9:d6:60:62:db:b6:2f:ea:23:82:
62:df:f7:a1:1a:8b:a0:a6:cc:ce:06:05:43:05:d7:e4:73:8d:
c0:33:5c:55:32:5f:ef:d4:e5:3c:a6:ed:8f:29:e8:a4:08:d3:
e7:9c:38:46:2e:d0:35:71:a6:47:29:0f:b9:3d:28:1f:1e:df:
eb:ef:29:7b:92:ed:a9:20:80:2e:4e:ca:00:95:98:03:ea:98:
32:f2:e8:cb:9d:8b:2e:16:36:93:57:2f:6a:6d:99:61:ce:4e:
be:87:2c:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:13 2024 by rpki-client on console-fra.rpki-client.org