Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/987979-9693-45e3-85ba-ed5358b6da31/1/nsnDuDAKSrwETlnPZUgh2h0LGZU.roa
File: nsnDuDAKSrwETlnPZUgh2h0LGZU.roa (raw, json)
Hash identifier: zrkhBUti1fl4iqqxFvZabwvhru02j18nV+sVzpdzMQs=
Subject key identifier: 9E:C9:C3:B8:30:0A:4A:BC:04:4E:59:CF:65:48:21:DA:1D:0B:19:95
Certificate issuer: /CN=7415fec4ae76b24e4f02991649917b99b740044a
Certificate serial: 0191EA819F81874E0E149EE16579D20BD5E8
Authority key identifier: 74:15:FE:C4:AE:76:B2:4E:4F:02:99:16:49:91:7B:99:B7:40:04:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dBX-xK52sk5PApkWSZF7mbdABEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/987979-9693-45e3-85ba-ed5358b6da31/1/nsnDuDAKSrwETlnPZUgh2h0LGZU.roa
Signing time: Fri 13 Sep 2024 08:30:48 +0000
ROA not before: Fri 13 Sep 2024 08:30:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210644
IP address blocks: 77.105.164.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 18 Sep 2024 19:57:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:ea:81:9f:81:87:4e:0e:14:9e:e1:65:79:d2:0b:d5:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7415fec4ae76b24e4f02991649917b99b740044a
Validity
Not Before: Sep 13 08:30:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9ec9c3b8300a4abc044e59cf654821da1d0b1995
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f0:8e:43:93:64:ee:84:18:0d:2e:b2:6e:33:
fa:11:73:d5:e5:1c:d4:72:fb:a2:8b:fd:a5:ee:77:
1d:91:df:40:a9:7f:e8:62:67:6f:95:4f:04:4d:96:
07:00:31:2a:db:ad:bc:55:90:10:d0:8c:f8:df:33:
cb:26:c7:57:1d:7d:ee:0f:84:e2:74:09:5f:2c:e4:
2b:57:bd:31:31:20:15:3d:71:08:97:33:a5:cf:77:
ea:3e:14:97:26:5b:30:1a:a1:22:05:5d:98:8b:95:
e1:2e:3d:26:53:e6:22:d6:42:60:56:ca:37:cd:3f:
ea:d9:1f:70:7d:59:98:9f:2a:e7:d3:9c:67:ab:7a:
bb:b9:df:49:4b:04:da:56:81:e8:9a:4f:5b:46:c7:
96:2d:e7:4d:b3:60:32:8d:86:0d:cb:9d:cc:c5:94:
58:65:9d:ff:f0:4e:d8:db:94:a9:78:6b:9a:4b:1b:
bf:82:d5:74:06:a9:58:00:80:19:86:02:21:37:7a:
71:48:be:7d:1a:a2:0d:2b:f5:b7:33:f4:d9:ea:e3:
ed:f0:08:57:e4:0d:f7:f5:6d:e1:7a:ed:f3:61:f0:
2a:55:6e:e6:ff:a7:6d:9b:4e:86:b4:91:7d:d7:29:
6d:07:04:a9:eb:a9:5d:f1:80:29:00:a3:5e:7d:11:
42:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:C9:C3:B8:30:0A:4A:BC:04:4E:59:CF:65:48:21:DA:1D:0B:19:95
X509v3 Authority Key Identifier:
keyid:74:15:FE:C4:AE:76:B2:4E:4F:02:99:16:49:91:7B:99:B7:40:04:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dBX-xK52sk5PApkWSZF7mbdABEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/987979-9693-45e3-85ba-ed5358b6da31/1/nsnDuDAKSrwETlnPZUgh2h0LGZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/987979-9693-45e3-85ba-ed5358b6da31/1/dBX-xK52sk5PApkWSZF7mbdABEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.164.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:8d:d1:fc:ca:e0:f6:59:c4:62:bb:68:d9:17:b4:44:21:db:
60:41:a7:f4:6a:46:fb:11:56:9d:98:44:1c:c9:fa:aa:e6:3d:
53:c7:bf:7e:61:ae:90:fb:d2:16:56:00:93:97:d0:47:05:88:
da:b5:75:a6:84:95:4e:bf:f7:48:55:3f:5f:09:41:e1:78:f5:
a0:19:b7:65:93:e1:54:60:5a:9f:79:09:bf:a3:33:31:8c:93:
21:ac:c8:d0:e4:0f:c8:d1:95:c8:79:2d:5c:9a:0a:60:ad:35:
fc:9e:95:12:0e:1e:ad:47:a0:d0:0f:0e:2c:cd:1c:76:c5:01:
1a:30:1f:f2:8f:23:4d:56:ab:d4:fb:b5:d8:45:fe:a4:ac:3c:
16:1e:5b:cb:dc:ea:36:d6:73:6f:ef:d9:26:99:ed:b0:b2:7f:
ea:b6:21:d2:a1:7a:dc:84:24:7a:c8:41:6c:c6:c5:54:25:2b:
ef:62:18:ae:81:a9:29:c1:ca:5c:9d:4c:68:2f:9b:cd:a7:c2:
87:ae:5b:fc:3e:82:bf:d5:92:4f:8b:b1:cf:fe:1e:f1:b4:cb:
fd:92:fb:31:b6:43:ec:b0:8d:5a:80:4d:24:e0:8b:12:58:dc:
5a:2d:8e:66:91:60:fe:f6:a4:f5:75:b1:29:6a:6c:72:f5:75:
fd:76:48:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 18 21:45:05 2024 by rpki-client on console-ams.rpki-client.org