Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/nSuM3-P2EyepyAbNav4PEaIUYxE.roa
File: nSuM3-P2EyepyAbNav4PEaIUYxE.roa (raw, json)
Hash identifier: uhrGpqneL3R0srUzaGwtZPX4NUKAvHud/M+sMnYsz/8=
Subject key identifier: 9D:2B:8C:DF:E3:F6:13:27:A9:C8:06:CD:6A:FE:0F:11:A2:14:63:11
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 01898159645489441FCB9CBCEAC8B0925947
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/nSuM3-P2EyepyAbNav4PEaIUYxE.roa
Signing time: Sun 23 Jul 2023 06:04:26 +0000
ROA not before: Sun 23 Jul 2023 06:04:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 91.186.216.0/22 maxlen: 24
94.241.168.0/21 maxlen: 24
178.253.22.0/23 maxlen: 24
178.253.40.0/22 maxlen: 24
83.147.244.0/22 maxlen: 24
83.147.252.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 24 Jul 2023 19:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:81:59:64:54:89:44:1f:cb:9c:bc:ea:c8:b0:92:59:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jul 23 06:04:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9d2b8cdfe3f61327a9c806cd6afe0f11a2146311
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:74:38:38:2f:90:69:e7:6e:41:a2:02:a2:8a:
da:f8:bd:a7:c8:c4:25:09:c2:50:b5:3e:82:14:1b:
b6:f4:28:21:33:15:69:8a:23:c0:b9:59:f2:e1:54:
60:82:5c:55:5f:07:fa:c8:8d:ac:bd:c7:79:d8:d1:
12:3d:3e:f0:7b:99:92:6a:bf:66:96:01:60:c6:3e:
a0:33:2e:4b:69:72:7c:e3:dd:04:1a:bb:f7:3e:4f:
ff:e1:b9:c9:7f:8d:a3:b3:9b:2e:c6:ba:df:49:ae:
dd:e3:73:97:ae:cc:19:2e:f6:e4:bd:10:c3:d4:d1:
ec:80:19:df:fd:2a:ea:bc:18:c0:31:0c:6e:13:76:
ed:f8:29:e0:81:f8:63:65:f1:05:f9:62:5b:78:1c:
a2:61:cc:41:62:3f:c2:cb:f0:58:9b:38:83:c2:30:
85:35:a3:33:91:18:a8:f6:fe:8e:c3:f1:13:33:fc:
ee:74:f7:34:ff:76:1e:3b:5a:05:03:29:bd:07:c7:
ef:3f:1e:88:b2:57:e0:97:4c:31:5d:1c:c1:91:25:
d5:46:d4:a2:74:bd:ab:d9:55:2b:88:7a:52:05:3a:
df:2d:18:a7:e3:86:ee:16:08:aa:34:86:af:44:27:
9b:34:68:86:86:01:62:4d:fd:2b:7f:4a:86:7a:67:
ea:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:2B:8C:DF:E3:F6:13:27:A9:C8:06:CD:6A:FE:0F:11:A2:14:63:11
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/nSuM3-P2EyepyAbNav4PEaIUYxE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.244.0/22
83.147.252.0/22
91.186.216.0/22
94.241.168.0/21
178.253.22.0/23
178.253.40.0/22
Signature Algorithm: sha256WithRSAEncryption
1c:06:11:b6:79:07:4f:b6:a8:6f:90:ff:01:4c:da:59:cd:65:
47:44:8b:03:e9:90:b6:f0:3c:ad:1a:2a:7a:3a:8c:5a:30:ca:
e9:b3:d0:6f:f8:a1:91:87:e8:d5:c4:b2:0c:74:d0:f9:bf:44:
00:5e:83:6e:cc:da:76:85:10:d0:be:33:f8:40:d7:e9:e2:9a:
6e:9b:a9:5e:4e:1c:49:b1:14:10:a4:77:f0:d8:1a:9d:7d:12:
15:49:e7:03:ec:ca:2b:7a:57:08:86:97:4d:b4:e4:48:bd:98:
43:ed:5d:a0:d0:4b:43:2c:80:c3:ee:25:31:18:6e:e7:ca:ad:
a0:05:1a:98:0a:2c:81:d7:43:f9:8a:a0:47:97:e9:8b:f3:cb:
a1:59:1e:e7:43:cb:96:b3:7e:5c:6f:a5:88:84:2f:3f:8b:f5:
67:04:48:df:f8:da:08:15:e2:52:c8:e6:02:c3:65:d6:a7:ac:
5a:86:22:8c:83:6d:37:7b:74:37:18:8a:b0:12:a6:51:ad:d6:
e0:09:6b:1a:67:93:bb:db:c7:af:5a:0b:a0:d8:5d:ee:df:72:
eb:f1:be:15:ca:92:a4:b4:83:4d:03:05:88:47:b3:ef:e1:81:
fe:fb:09:4a:f2:49:51:de:87:c4:32:88:6a:cd:ac:0b:ea:6d:
46:46:2c:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:10 2024 by rpki-client on console-fra.rpki-client.org