Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/nvVmpjxA1H2gHKah5M09_lzVvkk.roa
File: nvVmpjxA1H2gHKah5M09_lzVvkk.roa (raw, json)
Hash identifier: gDMPV4eZVih+PgdOYzfhyk3EBV+gzuKFtR+mlgQbGKw=
Subject key identifier: 9E:F5:66:A6:3C:40:D4:7D:A0:1C:A6:A1:E4:CD:3D:FE:5C:D5:BE:49
Certificate issuer: /CN=fe779e56238b6f2ea068ede4e20aef00c904132b
Certificate serial: 0189BB4797AABF0576F7F46A20CFF35AD091
Authority key identifier: FE:77:9E:56:23:8B:6F:2E:A0:68:ED:E4:E2:0A:EF:00:C9:04:13:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/nvVmpjxA1H2gHKah5M09_lzVvkk.roa
Signing time: Thu 03 Aug 2023 12:02:58 +0000
ROA not before: Thu 03 Aug 2023 12:02:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1018
IP address blocks: 209.16.140.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:bb:47:97:aa:bf:05:76:f7:f4:6a:20:cf:f3:5a:d0:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe779e56238b6f2ea068ede4e20aef00c904132b
Validity
Not Before: Aug 3 12:02:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9ef566a63c40d47da01ca6a1e4cd3dfe5cd5be49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:e7:fd:e0:c9:16:35:b9:ed:bc:d1:67:4f:73:
c6:67:da:bb:ca:a5:f0:e5:78:b2:eb:ce:2c:e7:11:
8e:eb:f7:69:88:26:cb:e8:7c:25:62:f3:a2:e4:cc:
7c:11:7b:41:9c:c7:e1:0d:df:14:2a:92:05:e7:99:
11:7a:07:c6:cc:f3:4d:76:ee:d7:4a:10:b0:5e:29:
4b:7b:9b:77:7d:d0:bc:67:70:76:8d:27:99:2a:bc:
c0:a1:40:22:dc:f1:48:20:52:c3:b0:07:1a:0e:3f:
d8:78:33:74:5b:6b:09:c7:34:77:48:22:ab:04:d6:
40:0d:fa:1f:76:2d:47:34:61:b7:48:b4:b2:6a:8d:
57:a2:74:27:d0:56:8c:ab:41:f9:f7:27:36:2a:77:
a1:7e:12:9d:a0:2e:08:23:fd:10:d0:e0:92:6e:39:
6f:2c:a0:96:d5:a9:26:ab:88:06:85:ca:63:b0:e4:
62:d6:f0:de:cb:00:78:2b:b8:ff:01:79:f0:63:ed:
a5:fa:fc:7d:c1:1e:a0:ee:2e:80:5b:fd:b5:ea:dc:
b5:86:83:be:bc:5c:cc:9e:1f:70:3d:28:48:ed:ac:
48:ff:25:aa:ef:e6:7a:3c:b8:1a:0d:f6:55:78:1f:
54:33:5e:b1:ba:d8:b4:2d:f8:d8:b8:57:9c:77:98:
21:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:F5:66:A6:3C:40:D4:7D:A0:1C:A6:A1:E4:CD:3D:FE:5C:D5:BE:49
X509v3 Authority Key Identifier:
keyid:FE:77:9E:56:23:8B:6F:2E:A0:68:ED:E4:E2:0A:EF:00:C9:04:13:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/nvVmpjxA1H2gHKah5M09_lzVvkk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/_neeViOLby6gaO3k4grvAMkEEys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
209.16.140.0/23
Signature Algorithm: sha256WithRSAEncryption
80:93:97:fc:91:1c:e2:1d:f0:26:b1:fb:6c:76:8e:98:82:dc:
58:6e:52:cc:95:6d:96:55:0c:6e:81:ae:9a:0e:57:21:1e:d0:
e4:e4:3d:88:f3:9a:a5:d4:6d:1a:c2:ad:1e:34:6f:0a:95:18:
a2:fc:2f:74:9a:30:6b:4b:3c:d4:1b:de:c9:14:91:2a:3a:3c:
77:2f:0d:8d:ec:c0:b7:d4:1e:62:c4:ec:71:2c:46:f6:9f:96:
4d:9b:a1:0f:17:20:55:18:96:38:74:d7:f7:40:2c:6c:18:2b:
06:91:e1:d4:b8:f1:d1:65:8b:ef:34:88:cf:48:7e:1a:5e:b1:
47:f9:ae:41:98:33:9c:4e:74:6e:ac:a4:b7:30:0e:1f:4c:ce:
ed:43:b5:ec:40:a3:c1:57:23:1b:5a:09:bf:c8:ad:c4:08:cc:
3c:af:c5:f5:33:dd:71:0b:21:17:e1:2e:87:b6:49:23:ad:73:
e4:2a:b4:48:b9:32:e4:71:9b:ae:02:de:b8:7f:d3:ee:f9:bd:
ac:7d:e4:1d:66:6c:41:7a:a2:77:71:11:ea:77:e1:4f:4c:8e:
39:ec:ff:bc:a6:25:6b:2e:13:08:0e:93:ee:81:05:b7:78:56:
1c:ec:39:d8:e6:1a:ed:67:55:14:0a:34:15:9e:af:47:67:84:
fc:72:ae:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:05 2024 by rpki-client on console-ams.rpki-client.org