Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/nJ9aPtam_o-flDSV2DUSX1dnbzg.roa
File: nJ9aPtam_o-flDSV2DUSX1dnbzg.roa (raw, json)
Hash identifier: tYvrJ9t1OWAb/paX+ka8ezgoYH7tnqC73QEUocvIyi8=
Subject key identifier: 9C:9F:5A:3E:D6:A6:FE:8F:9F:94:34:95:D8:35:12:5F:57:67:6F:38
Certificate issuer: /CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Certificate serial: 01857079723C31620DD2D47C4E73598684F8
Authority key identifier: 32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/nJ9aPtam_o-flDSV2DUSX1dnbzg.roa
Signing time: Mon 02 Jan 2023 03:14:45 +0000
ROA not before: Mon 02 Jan 2023 03:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59891
IP address blocks: 185.73.242.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 08 Aug 2023 12:47:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:72:3c:31:62:0d:d2:d4:7c:4e:73:59:86:84:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Validity
Not Before: Jan 2 03:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9c9f5a3ed6a6fe8f9f943495d835125f57676f38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:9b:77:bf:b4:57:27:d5:2e:9c:ed:ef:65:38:
b0:1d:09:cf:ed:ed:59:fc:cd:9c:56:33:2b:6a:01:
56:73:0d:df:fb:06:4b:5b:95:fa:47:87:8e:cc:33:
7b:77:61:ad:7e:b9:27:43:5f:8f:b1:2d:6e:ec:a2:
0f:15:0f:fa:b1:b2:12:cf:22:84:6c:4e:a5:72:77:
c6:d8:f9:0b:e1:72:12:96:55:18:c3:9d:67:36:b3:
15:6b:5a:85:66:4d:6e:69:38:e9:96:c5:0c:86:63:
e8:71:03:ca:3b:45:fd:b0:5e:e8:40:2f:3d:cd:ea:
01:ec:80:73:52:cc:c3:0a:46:13:c2:00:83:1b:dd:
25:e6:69:16:2b:d6:fe:a0:d6:df:ce:fd:77:03:44:
34:f8:ed:11:5f:86:f9:8e:c4:2a:57:c9:c1:11:f6:
64:f1:d2:ab:0f:9b:13:1a:be:67:df:9b:9c:12:5f:
82:13:96:3f:7d:87:29:85:58:ec:7d:be:1f:80:7e:
5f:25:c4:32:ee:77:32:c5:6b:de:af:78:fa:af:4e:
8d:6c:21:63:e4:12:ac:1a:1f:0d:a2:07:5c:63:9d:
e3:c7:cd:78:44:62:74:41:8a:1f:01:7a:2b:f2:c0:
1f:5a:6a:90:98:e7:a6:87:a2:e4:dc:fa:b6:22:51:
92:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:9F:5A:3E:D6:A6:FE:8F:9F:94:34:95:D8:35:12:5F:57:67:6F:38
X509v3 Authority Key Identifier:
keyid:32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/nJ9aPtam_o-flDSV2DUSX1dnbzg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.73.242.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:c4:a8:c1:2b:eb:71:8a:58:e2:46:4c:9e:ac:ae:18:47:f5:
64:13:77:a1:44:55:3b:47:58:fb:bf:58:25:28:c5:0c:58:d8:
47:fa:0a:19:ea:80:61:75:f5:d3:f6:fe:a7:0f:4e:70:cf:58:
bb:9c:0f:49:b9:6b:a2:dd:00:60:27:a1:be:54:84:2e:bf:92:
cf:66:5a:59:e3:d1:9b:a6:3e:e3:cc:50:26:d8:24:c1:53:c7:
4e:2b:bd:ae:8d:29:d6:fb:59:2a:42:0c:d0:fc:65:8e:27:51:
45:1d:55:f7:d6:3e:d7:e8:e1:f3:b8:a6:b0:10:dc:8d:5f:e0:
5a:19:13:01:b1:59:ba:e8:42:62:a7:09:4a:66:28:da:7e:f9:
cc:c0:fe:62:81:0d:21:51:1a:5a:31:16:c2:bf:b8:df:d8:6b:
fe:59:2f:fd:9f:cb:ba:43:bd:f2:84:e7:ae:21:58:61:44:27:
4c:11:02:a6:4e:4d:52:f6:27:0a:b3:9a:18:43:ef:f0:1b:15:
58:5a:60:85:95:d2:a3:f1:56:dc:32:a4:2a:ab:4e:af:9b:53:
b5:89:0e:f2:4a:90:0b:fd:80:86:eb:c8:d2:c6:e3:30:0d:b5:
fa:6d:24:8a:53:17:ea:21:b9:64:fb:b0:7c:75:93:21:5b:80:
ad:1e:2b:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:20 2024 by rpki-client on console-ams.rpki-client.org