Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/246d03-e090-4325-82f1-0bd095da78ef/1/nlTIa_yTitpVYhSMZiQKplWQBLM.roa
File: nlTIa_yTitpVYhSMZiQKplWQBLM.roa (raw, json)
Hash identifier: UvdRB6bG5UPPaYmjPrItrqyNHosX3cKD3YX1Tl7X7+E=
Subject key identifier: 9E:54:C8:6B:FC:93:8A:DA:55:62:14:8C:66:24:0A:A6:55:90:04:B3
Certificate issuer: /CN=47bf2ffeda381e54818df07052cf67e222515f89
Certificate serial: 018703851A2521312C5ED98E0AA24063C47F
Authority key identifier: 47:BF:2F:FE:DA:38:1E:54:81:8D:F0:70:52:CF:67:E2:22:51:5F:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R78v_to4HlSBjfBwUs9n4iJRX4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/246d03-e090-4325-82f1-0bd095da78ef/1/nlTIa_yTitpVYhSMZiQKplWQBLM.roa
Signing time: Tue 21 Mar 2023 09:34:27 +0000
ROA not before: Tue 21 Mar 2023 09:34:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24819
IP address blocks: 91.216.7.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 Mar 2023 09:50:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:03:85:1a:25:21:31:2c:5e:d9:8e:0a:a2:40:63:c4:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47bf2ffeda381e54818df07052cf67e222515f89
Validity
Not Before: Mar 21 09:34:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9e54c86bfc938ada5562148c66240aa6559004b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:62:5e:fc:f5:dd:91:e2:63:36:bc:93:af:8a:
81:75:f8:f3:51:52:3b:27:0d:e4:0f:e0:fc:e1:87:
60:88:1f:ae:c1:fc:07:27:fb:f0:5d:17:05:be:f9:
98:97:c1:48:bf:a4:57:f0:24:90:d9:8e:ac:36:80:
a7:44:d9:e1:49:05:bb:c3:21:95:ef:87:9a:17:5a:
14:50:9b:4e:a7:72:e4:fc:43:43:c8:f7:12:a6:c2:
73:23:8c:49:91:4a:8b:3d:68:49:69:57:4f:34:03:
06:7c:cc:5e:93:50:29:7d:f6:ce:9a:12:49:4a:c8:
94:39:77:cc:ba:a0:0c:04:05:22:4b:86:61:92:50:
9c:64:76:dc:b7:3a:0c:1e:14:a4:f8:4d:07:be:19:
7d:03:2f:3f:ab:ac:b3:18:e6:9d:c7:67:42:1b:9e:
0e:14:86:da:85:c4:58:e8:07:1f:0f:27:83:12:d8:
e8:ca:1d:cd:71:e4:b0:06:7f:da:47:82:08:6c:0b:
fa:77:a2:55:8c:1c:1f:c1:da:31:09:09:09:ba:7b:
75:14:eb:42:84:7a:89:28:d7:1b:2a:39:4b:92:87:
52:9e:27:98:71:3c:b7:87:bf:1c:ad:f7:05:69:0d:
f7:0e:b0:6a:38:a4:d8:8f:79:b7:33:6e:e2:54:8a:
5b:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:54:C8:6B:FC:93:8A:DA:55:62:14:8C:66:24:0A:A6:55:90:04:B3
X509v3 Authority Key Identifier:
keyid:47:BF:2F:FE:DA:38:1E:54:81:8D:F0:70:52:CF:67:E2:22:51:5F:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R78v_to4HlSBjfBwUs9n4iJRX4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/246d03-e090-4325-82f1-0bd095da78ef/1/nlTIa_yTitpVYhSMZiQKplWQBLM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/246d03-e090-4325-82f1-0bd095da78ef/1/R78v_to4HlSBjfBwUs9n4iJRX4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.7.0/24
Signature Algorithm: sha256WithRSAEncryption
39:70:7e:05:ae:1d:8f:cb:b4:34:a7:39:4f:71:2a:fa:40:91:
63:bd:00:61:b4:eb:18:07:f5:8a:51:63:54:2a:c5:e7:fb:3a:
83:27:77:8d:d9:f9:58:00:e5:d3:da:ac:2c:0d:ae:aa:7c:71:
98:b5:21:34:23:9c:da:e2:5d:18:15:b3:ae:5d:ae:c1:5c:fa:
e2:ab:66:00:3c:2b:4b:1f:7a:0c:cd:fe:79:d3:bf:72:74:0b:
d3:2a:91:b1:43:37:b4:be:07:52:82:c0:15:9b:77:92:8b:c2:
50:41:89:6f:da:45:37:91:94:80:a7:db:2f:6d:50:51:28:62:
68:da:c4:02:5c:1f:9d:58:af:29:58:b6:e6:85:1e:4f:7d:73:
9d:ae:69:ea:6c:2a:75:15:4d:08:10:df:16:e2:86:3c:4f:39:
9b:78:1c:94:b8:8d:16:f6:0a:b4:27:30:a1:07:f0:5f:9c:dd:
38:08:0a:1c:04:83:ed:b8:08:43:bc:1b:e6:68:24:d0:1c:75:
69:85:c3:d1:c2:ae:a0:cc:78:66:6a:da:5d:5e:96:e3:89:ea:
16:07:7e:83:7f:84:61:23:0e:4d:de:cb:c8:49:ea:ed:ab:fe:
9e:c2:ef:06:ec:3a:76:b5:69:0e:74:e8:e6:11:3d:41:5b:74:
be:4b:d0:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:40 2024 by rpki-client on console-fra.rpki-client.org