Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/NwjRUYGN8PxYXvODza5Ack6OUo8.roa
File: NwjRUYGN8PxYXvODza5Ack6OUo8.roa (raw, json)
Hash identifier: CY3xxmGj67H4zCe8XCkRL7aT6fMufYijoTp4iPp1iWM=
Subject key identifier: 37:08:D1:51:81:8D:F0:FC:58:5E:F3:83:CD:AE:40:72:4E:8E:52:8F
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 0185CFF413389C6ACA64AF45EC22C8828929
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/NwjRUYGN8PxYXvODza5Ack6OUo8.roa
Signing time: Fri 20 Jan 2023 16:12:37 +0000
ROA not before: Fri 20 Jan 2023 16:12:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211895
IP address blocks: 5.253.37.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 Mar 2023 17:38:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:cf:f4:13:38:9c:6a:ca:64:af:45:ec:22:c8:82:89:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Jan 20 16:12:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3708d151818df0fc585ef383cdae40724e8e528f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:ed:a2:d6:35:a1:8e:c9:04:24:dd:8c:27:b7:
f4:f0:e9:d4:7b:27:56:83:6a:fd:d2:d4:a3:fc:1f:
e7:a9:f3:ad:b9:dc:d6:e9:fc:0d:b9:4c:4d:4d:5e:
8b:6c:a3:ae:9e:8c:61:c3:54:ed:d4:5f:59:3f:f6:
85:bf:75:c6:17:32:20:1c:82:3a:93:a4:ee:bb:dd:
24:10:9f:6d:7f:70:78:29:a7:83:13:7f:ea:90:90:
a0:af:3a:c5:bf:76:c7:f1:b5:58:a0:60:7e:03:2e:
d9:8f:f2:72:b9:ac:21:96:c9:07:69:e4:d1:5f:72:
35:57:f3:69:9b:47:f1:7d:c0:47:14:34:69:53:1c:
26:66:9a:57:86:91:1b:83:ae:1b:45:c0:ac:e7:2e:
da:19:2a:86:b1:ee:b0:eb:0c:c9:44:7a:f8:53:8b:
c0:c1:08:8b:be:f4:12:46:ae:89:b4:59:04:72:2b:
7f:f2:5a:b9:87:f7:3e:61:ff:49:11:3f:b1:36:27:
62:f4:3d:d8:59:9e:0b:e7:93:11:74:39:c9:bf:e1:
12:9a:2a:bd:62:a6:87:58:de:f2:c7:fd:d7:9e:8f:
f9:52:06:5f:87:21:bd:46:e5:63:8f:a2:f6:a6:c1:
51:5f:9e:6c:6e:58:b9:7e:ec:f5:f5:b8:a5:32:22:
8d:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:08:D1:51:81:8D:F0:FC:58:5E:F3:83:CD:AE:40:72:4E:8E:52:8F
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/NwjRUYGN8PxYXvODza5Ack6OUo8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.37.0/24
Signature Algorithm: sha256WithRSAEncryption
73:b2:29:05:97:7c:45:e6:b4:60:d4:ee:a5:46:c7:ff:b8:a8:
30:5d:ac:e2:86:1a:54:08:5f:04:75:06:7d:64:44:07:3e:72:
58:35:a8:9b:81:20:e4:bc:8e:38:90:0a:ce:04:36:d3:1e:48:
bd:56:b7:b5:3b:c4:73:fc:21:15:2f:fa:ff:9e:1a:26:01:05:
22:fd:0b:19:7d:58:39:91:c3:2e:5f:0c:42:18:6d:54:c2:26:
ec:16:81:b6:03:14:65:15:94:06:88:c6:44:e7:19:9a:67:70:
39:5a:fb:be:ab:fb:15:d4:56:15:4e:21:81:8f:f6:1d:8f:46:
95:dc:70:a8:a3:c1:68:e4:b6:82:5b:98:ca:4c:6a:e1:bf:71:
a2:45:e4:81:b5:95:d4:ea:ea:cc:05:65:40:73:1a:5e:04:5e:
15:45:c4:c8:b5:93:f3:98:58:8b:c9:f5:25:e1:83:3f:64:c4:
04:8a:0f:78:51:1c:69:4b:cf:69:f3:ab:b0:4f:af:55:bf:9d:
80:8d:de:ce:23:56:18:83:f1:d2:37:2b:e3:94:55:e1:22:b8:
43:d5:38:10:ef:aa:df:b3:95:5a:0e:1b:e3:4e:b4:00:83:42:
f0:0e:a1:6c:e6:4a:9b:b2:34:1f:b3:ea:cd:b2:88:b6:50:d8:
4d:99:e5:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:24 2024 by rpki-client on console-fra.rpki-client.org