Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/c51fd6-3d08-4205-b747-b80530a5e042/1/NHUR7UkGp-y0K7JE56wG2XjATYw.roa
File: NHUR7UkGp-y0K7JE56wG2XjATYw.roa (raw, json)
Hash identifier: 0YfUOcqi9d4DeZvC/Cm5sXx13CAqZglqv/hcOFFFQbo=
Subject key identifier: 34:75:11:ED:49:06:A7:EC:B4:2B:B2:44:E7:AC:06:D9:78:C0:4D:8C
Certificate issuer: /CN=a71e0eee590de2fd8dec4a67e87bc896ffc8b2b5
Certificate serial: 01856D93E97CD19EA87B145F24D2A55FDA29
Authority key identifier: A7:1E:0E:EE:59:0D:E2:FD:8D:EC:4A:67:E8:7B:C8:96:FF:C8:B2:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/px4O7lkN4v2N7Epn6HvIlv_IsrU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/c51fd6-3d08-4205-b747-b80530a5e042/1/NHUR7UkGp-y0K7JE56wG2XjATYw.roa
Signing time: Sun 01 Jan 2023 13:44:48 +0000
ROA not before: Sun 01 Jan 2023 13:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201261
IP address blocks: 185.80.132.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:93:e9:7c:d1:9e:a8:7b:14:5f:24:d2:a5:5f:da:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a71e0eee590de2fd8dec4a67e87bc896ffc8b2b5
Validity
Not Before: Jan 1 13:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=347511ed4906a7ecb42bb244e7ac06d978c04d8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:b5:69:4b:7c:67:91:78:a5:06:bb:bf:96:01:
9e:5e:cd:b1:9a:ae:d7:25:e7:1a:50:2d:b1:34:da:
a8:ae:ea:ff:42:aa:14:9f:39:bb:19:a0:5e:0c:a7:
63:1f:bc:a7:15:95:48:9d:cd:74:f3:50:e1:2d:c0:
8c:3e:3a:bf:b9:f1:1c:bc:eb:de:6a:58:3c:86:9a:
52:2a:5a:28:c2:cc:a0:e6:eb:bd:bd:32:b7:1b:ba:
4b:68:d7:95:b1:9c:45:f1:a9:c4:dc:0b:b0:1a:4f:
8d:30:12:11:c2:d2:a5:41:a1:b0:7e:8c:20:ea:61:
31:25:d5:96:1d:b7:da:43:f9:c8:42:2b:c1:29:59:
3c:fa:8b:33:1f:23:ed:be:c5:2f:77:62:07:84:f2:
80:70:fa:79:4b:ca:7b:f1:19:15:ac:c9:24:6c:56:
19:43:b3:15:70:d6:37:1d:39:26:65:6d:3c:cd:90:
f1:7c:bf:f0:a5:16:06:ac:36:04:24:f5:50:df:b9:
82:f7:5b:b8:ca:dc:88:bb:0f:fa:6b:23:97:01:a3:
9c:0f:40:81:b6:74:64:c7:14:64:3d:f7:95:01:e4:
3e:4a:14:87:94:e7:c9:51:50:6c:ef:c5:89:8f:e6:
79:00:04:ed:46:a1:ce:e4:20:04:76:01:56:2f:7c:
0a:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:75:11:ED:49:06:A7:EC:B4:2B:B2:44:E7:AC:06:D9:78:C0:4D:8C
X509v3 Authority Key Identifier:
keyid:A7:1E:0E:EE:59:0D:E2:FD:8D:EC:4A:67:E8:7B:C8:96:FF:C8:B2:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/px4O7lkN4v2N7Epn6HvIlv_IsrU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/c51fd6-3d08-4205-b747-b80530a5e042/1/NHUR7UkGp-y0K7JE56wG2XjATYw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/c51fd6-3d08-4205-b747-b80530a5e042/1/px4O7lkN4v2N7Epn6HvIlv_IsrU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.80.132.0/22
Signature Algorithm: sha256WithRSAEncryption
44:bc:36:f3:25:53:b2:d3:4b:6e:27:e1:ea:dd:94:93:28:ee:
85:7b:b3:de:8b:fb:7a:12:5b:5a:6a:d8:f7:c3:a5:ef:d9:b6:
3d:93:0c:bf:f8:eb:06:15:80:30:48:6a:f6:de:cc:9b:dc:17:
5b:0f:1e:81:0f:f7:5b:e4:39:86:22:55:96:38:33:97:cd:e4:
f8:7f:e5:a7:73:5e:52:c4:b4:0e:f8:86:6b:16:80:95:8d:f3:
bf:a0:a3:25:59:1b:33:b6:72:81:27:ee:c4:22:d5:dc:fc:fa:
fa:ba:be:55:32:84:c0:04:10:a9:cf:4e:6a:5a:a9:b3:e6:62:
a4:cd:14:83:14:8c:ae:cb:4c:51:38:7b:83:16:07:48:4c:f7:
d9:4d:d4:39:be:f1:3c:b4:49:45:98:56:60:4b:40:01:5e:30:
3e:7a:bd:18:90:55:34:b9:b2:5e:6a:99:60:df:ac:fe:71:99:
b5:f1:89:1c:44:fe:b2:30:f2:bc:f0:de:03:4d:f1:b0:6e:62:
7f:2a:53:db:6c:1e:dd:2b:b5:ff:ae:57:e2:2f:bb:47:32:1d:
9f:b6:ca:9e:24:4f:7b:d8:56:02:0d:ea:73:3c:d3:d1:78:16:
26:ca:bc:90:15:2e:39:55:28:72:0e:3a:b1:11:ae:ea:74:cc:
c6:03:d5:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:27 2024 by rpki-client on console-fra.rpki-client.org