Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/0c2ec3-3844-4b5f-9f58-5f1b69048fe2/1/NGrOP4NTedpYA0Rq-GTQooWY5ag.roa
File: NGrOP4NTedpYA0Rq-GTQooWY5ag.roa (raw, json)
Hash identifier: /bK/GmwxVjaNWLza5hCZUuBAq9VEYmY+JFZaX0c90Uk=
Subject key identifier: 34:6A:CE:3F:83:53:79:DA:58:03:44:6A:F8:64:D0:A2:85:98:E5:A8
Certificate issuer: /CN=423d93054f063cf8a291861735f90059ab9ec169
Certificate serial: 0188ED885BAC96C320E4B88C2CAB59303F02
Authority key identifier: 42:3D:93:05:4F:06:3C:F8:A2:91:86:17:35:F9:00:59:AB:9E:C1:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qj2TBU8GPPiikYYXNfkAWauewWk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/0c2ec3-3844-4b5f-9f58-5f1b69048fe2/1/NGrOP4NTedpYA0Rq-GTQooWY5ag.roa
Signing time: Sat 24 Jun 2023 13:11:56 +0000
ROA not before: Sat 24 Jun 2023 13:11:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204834
IP address blocks: 185.188.112.0/24 maxlen: 24
178.157.0.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:ed:88:5b:ac:96:c3:20:e4:b8:8c:2c:ab:59:30:3f:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=423d93054f063cf8a291861735f90059ab9ec169
Validity
Not Before: Jun 24 13:11:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=346ace3f835379da5803446af864d0a28598e5a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:45:cf:bf:f9:35:8f:22:4d:62:f7:b1:9a:0e:
05:9c:bc:d3:f3:20:2d:cc:4a:fe:7e:92:27:1d:df:
0a:f0:a1:1c:74:ce:dc:70:9f:a4:5f:08:20:fa:dd:
24:c5:c1:27:fc:4c:a5:f7:b8:55:7d:9a:19:36:f3:
d7:08:c4:c9:4c:85:50:d4:66:92:03:1e:61:35:5a:
c2:bc:59:14:08:1e:cf:c5:0d:dd:cc:82:03:ab:c4:
6a:4f:aa:71:86:5a:ec:c8:11:1e:3a:98:00:48:a7:
2b:6d:58:95:63:d4:c0:3d:b7:a6:08:b7:91:ee:1b:
87:e4:04:df:bc:13:5c:ff:86:01:4e:cc:fd:56:4b:
2e:0a:85:14:d2:c5:3d:07:2a:f9:dc:aa:e8:61:40:
8e:9b:a6:5b:ff:05:c1:9a:02:50:0b:95:22:fe:f9:
d7:2f:e5:13:ab:58:90:43:d4:22:c9:0a:6f:4a:b2:
d0:e6:80:5f:85:67:22:bc:d7:a3:17:00:dc:f4:29:
e8:5d:1a:b4:2b:0d:f3:cc:ad:21:f1:6c:0c:e5:82:
a2:be:90:db:5c:8b:c6:f1:8d:1e:d1:b5:22:e5:19:
84:b9:b4:e3:a1:90:63:c3:f6:73:7d:cb:cf:69:24:
d1:17:1a:94:3d:84:40:b9:33:6d:d3:06:74:6c:29:
f4:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:6A:CE:3F:83:53:79:DA:58:03:44:6A:F8:64:D0:A2:85:98:E5:A8
X509v3 Authority Key Identifier:
keyid:42:3D:93:05:4F:06:3C:F8:A2:91:86:17:35:F9:00:59:AB:9E:C1:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qj2TBU8GPPiikYYXNfkAWauewWk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/0c2ec3-3844-4b5f-9f58-5f1b69048fe2/1/NGrOP4NTedpYA0Rq-GTQooWY5ag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/0c2ec3-3844-4b5f-9f58-5f1b69048fe2/1/Qj2TBU8GPPiikYYXNfkAWauewWk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.157.0.0/24
185.188.112.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:67:cb:75:83:cf:50:3f:b8:f7:6d:e0:5a:27:9f:c7:f3:ed:
da:a8:09:bd:00:f8:6b:2d:21:df:f2:df:3e:7a:fb:18:1c:c2:
d3:33:49:ba:16:0e:3a:eb:f2:38:84:5a:d5:76:a6:83:5f:a2:
4f:7c:53:1a:08:36:77:29:ba:2b:4d:10:44:05:87:f8:83:43:
eb:11:38:df:6a:1f:41:04:93:c0:f2:96:ac:50:b3:46:46:33:
c4:c5:11:5f:19:03:07:f8:ac:24:d3:0a:79:a3:c5:4d:a7:92:
18:b7:58:69:49:6c:de:c0:15:e9:96:13:95:a3:9d:16:d9:5a:
63:c8:9a:35:ea:fd:0a:e5:1f:42:85:61:54:e0:1d:de:52:35:
78:93:98:31:19:21:2b:e3:0d:af:37:0f:7e:c4:5f:09:2b:45:
2e:29:45:c9:68:b7:86:70:7b:e5:e7:30:cd:55:76:34:1f:55:
db:a4:d3:f2:69:ff:09:15:4e:75:2e:a1:27:6f:db:2d:c8:a3:
cb:11:53:55:60:db:9a:40:38:ab:cb:a0:bf:6f:3e:3c:4b:bf:
81:da:4c:d5:c6:80:03:b7:fd:42:7d:a9:d6:4e:f7:a8:4e:e5:
ba:2e:e2:79:bc:1e:38:79:19:4a:df:c2:7f:76:ce:00:ad:b4:
d9:1f:4c:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:45 2024 by rpki-client on console-ams.rpki-client.org