Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/6256b6-36a1-4f2f-a0b9-411f5837fefa/1/Nn9e8jZhO_f0nLieHCAnuYyMmx4.roa
File: Nn9e8jZhO_f0nLieHCAnuYyMmx4.roa (raw, json)
Hash identifier: HShobqgFAU5//2pdaRtkOy4Yk3/13SOxnpGkizY96Bc=
Subject key identifier: 36:7F:5E:F2:36:61:3B:F7:F4:9C:B8:9E:1C:20:27:B9:8C:8C:9B:1E
Certificate issuer: /CN=a8e75802e7efb8653e3af59cbf1bc06538bca671
Certificate serial: 018570C2B046F1F70DAC4ECBD4F0E0986B31
Authority key identifier: A8:E7:58:02:E7:EF:B8:65:3E:3A:F5:9C:BF:1B:C0:65:38:BC:A6:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qOdYAufvuGU-OvWcvxvAZTi8pnE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/6256b6-36a1-4f2f-a0b9-411f5837fefa/1/Nn9e8jZhO_f0nLieHCAnuYyMmx4.roa
Signing time: Mon 02 Jan 2023 04:34:45 +0000
ROA not before: Mon 02 Jan 2023 04:34:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212866
IP address blocks: 185.111.252.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:c2:b0:46:f1:f7:0d:ac:4e:cb:d4:f0:e0:98:6b:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8e75802e7efb8653e3af59cbf1bc06538bca671
Validity
Not Before: Jan 2 04:34:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=367f5ef236613bf7f49cb89e1c2027b98c8c9b1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:b1:21:b7:c2:b1:c8:98:6b:2f:70:e7:2c:c8:
d3:37:ee:39:da:36:be:6c:f3:38:6b:8a:6c:1d:b6:
a7:11:be:1d:d4:a3:a5:d8:e8:d2:da:1b:13:fa:e7:
2c:fb:ba:af:de:f6:88:a2:0b:93:72:b3:5e:2f:e5:
d5:72:14:db:bb:6f:c4:a4:29:47:8d:c6:67:69:16:
a1:e1:83:3f:37:a4:1c:1f:54:a0:58:2d:f4:fa:8e:
12:34:9b:0c:b0:23:ba:b4:6c:ca:ae:8a:8f:b7:51:
ce:dd:a4:c0:16:cb:5b:6b:58:24:c5:34:41:bc:45:
44:77:d8:68:6b:41:f6:b4:70:2e:d8:40:34:2a:94:
98:13:92:82:65:72:f3:86:eb:de:c4:1d:6d:88:59:
ca:dc:46:2c:83:5e:a9:ad:17:2f:f0:25:bb:c8:38:
11:81:e6:2d:d3:24:c2:2b:14:f3:03:0e:e6:d5:b6:
13:4a:b1:00:58:62:e8:49:08:c2:d7:24:41:c3:17:
39:87:f0:1e:d2:c2:a7:aa:10:90:5e:0e:5c:ad:61:
13:08:f8:b8:36:1b:9f:bb:2c:d3:b3:e4:7c:66:bc:
9f:60:9b:ca:13:92:cd:0f:8b:ea:0a:c6:c7:b2:b7:
e0:6d:2a:50:ee:64:0e:30:c5:ef:c5:ff:c2:ce:3b:
e2:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:7F:5E:F2:36:61:3B:F7:F4:9C:B8:9E:1C:20:27:B9:8C:8C:9B:1E
X509v3 Authority Key Identifier:
keyid:A8:E7:58:02:E7:EF:B8:65:3E:3A:F5:9C:BF:1B:C0:65:38:BC:A6:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qOdYAufvuGU-OvWcvxvAZTi8pnE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/6256b6-36a1-4f2f-a0b9-411f5837fefa/1/Nn9e8jZhO_f0nLieHCAnuYyMmx4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/6256b6-36a1-4f2f-a0b9-411f5837fefa/1/qOdYAufvuGU-OvWcvxvAZTi8pnE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.111.252.0/22
Signature Algorithm: sha256WithRSAEncryption
ad:61:75:48:97:70:46:c1:8b:df:36:f6:73:47:73:3c:34:60:
e5:d0:b9:b6:40:93:e0:40:c7:39:34:15:45:33:79:4e:c1:5a:
3e:2a:72:93:bf:48:8b:63:27:52:ef:0f:53:0a:7c:d7:d4:89:
2d:fe:44:9f:e6:27:b0:52:d7:60:9f:c2:f8:8c:6c:37:c4:f0:
f8:f3:49:ef:d5:7c:50:53:12:01:f1:33:b4:c4:e6:cd:0e:09:
d7:5d:2b:b3:bd:cf:c1:2e:61:fd:88:52:bc:5f:f8:5f:87:b1:
e5:a4:63:7c:c8:c8:fd:62:8b:d8:9a:27:ee:a4:d0:42:4a:9a:
6d:90:21:3d:12:a8:2e:a7:a4:da:88:34:49:22:3d:e9:bc:99:
8a:b2:34:c2:7f:4e:9a:b1:6c:f0:df:70:46:a3:83:55:07:3b:
b2:11:d0:56:48:fc:5b:e9:58:35:71:76:50:f5:39:9b:fe:ac:
52:25:a6:44:55:40:fd:b8:da:4c:8b:fa:6c:36:1d:19:75:b2:
c8:3c:2f:ed:6e:72:ab:e9:c5:a5:7a:df:4e:a9:8b:f0:ac:b4:
fd:86:df:d2:11:8e:cb:70:36:78:94:31:db:29:6b:6c:57:42:
c4:45:71:1c:61:73:60:fa:8d:de:7c:37:b4:81:a2:dd:3b:99:
35:b7:d0:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:23 2024 by rpki-client on console-fra.rpki-client.org