Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/195f3d-a851-455a-9b0f-d70cd97f4857/1/nzpCi-BY7y_byX0LrhJwGLt4wqo.roa
File: nzpCi-BY7y_byX0LrhJwGLt4wqo.roa (raw, json)
Hash identifier: vmsG42H9byJnJvdsHX+ao7vWeotMubAwOB7xeeu15Xc=
Subject key identifier: 9F:3A:42:8B:E0:58:EF:2F:DB:C9:7D:0B:AE:12:70:18:BB:78:C2:AA
Certificate issuer: /CN=65bdcff77bf060d5da12de45e2072e1cff4560a7
Certificate serial: 01856F5DF59278A05AA9F9A8F0123A81DFD6
Authority key identifier: 65:BD:CF:F7:7B:F0:60:D5:DA:12:DE:45:E2:07:2E:1C:FF:45:60:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zb3P93vwYNXaEt5F4gcuHP9FYKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/195f3d-a851-455a-9b0f-d70cd97f4857/1/nzpCi-BY7y_byX0LrhJwGLt4wqo.roa
Signing time: Sun 01 Jan 2023 22:05:06 +0000
ROA not before: Sun 01 Jan 2023 22:05:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202060
IP address blocks: 185.41.243.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:f5:92:78:a0:5a:a9:f9:a8:f0:12:3a:81:df:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65bdcff77bf060d5da12de45e2072e1cff4560a7
Validity
Not Before: Jan 1 22:05:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9f3a428be058ef2fdbc97d0bae127018bb78c2aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7d:03:b4:a5:98:c2:bc:a1:e5:96:64:85:47:
91:4d:26:6c:a5:a6:5a:71:50:10:5f:86:65:d8:46:
52:35:39:16:20:c5:a0:d0:b2:1f:58:45:28:16:a2:
5b:c2:86:28:53:9a:2b:07:14:84:09:c8:b4:9b:c0:
65:80:87:01:5b:cd:84:16:db:85:d1:c7:c6:4f:93:
bc:0f:d9:d0:ca:8c:c2:43:d0:78:8e:be:93:e9:35:
e5:39:32:67:4c:31:26:01:34:94:cd:1a:08:6c:17:
33:49:41:4f:91:04:1f:68:42:68:ff:19:2e:0a:e3:
b4:5e:4c:b9:39:33:3a:35:f8:df:ac:87:1d:74:4e:
14:9a:35:56:8f:e0:72:7e:44:07:e1:b6:4f:03:06:
e9:b0:b4:32:95:50:5b:30:0e:93:97:52:0f:c6:82:
05:de:6c:59:71:48:94:8e:83:0d:e4:e6:83:0b:6b:
7b:83:ba:31:a9:d8:06:85:f5:a8:5a:6d:3a:f9:4c:
d9:ff:39:e2:50:d6:2f:b4:a3:18:e1:ae:7d:59:56:
b7:d1:35:ca:df:00:97:ac:93:52:ec:9c:51:e1:7b:
4a:51:fe:22:2f:9c:e9:7d:a8:cf:42:d7:f4:ac:8e:
29:e4:46:f9:f8:cc:e3:3d:32:4c:27:a5:66:fa:a0:
7d:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:3A:42:8B:E0:58:EF:2F:DB:C9:7D:0B:AE:12:70:18:BB:78:C2:AA
X509v3 Authority Key Identifier:
keyid:65:BD:CF:F7:7B:F0:60:D5:DA:12:DE:45:E2:07:2E:1C:FF:45:60:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zb3P93vwYNXaEt5F4gcuHP9FYKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/195f3d-a851-455a-9b0f-d70cd97f4857/1/nzpCi-BY7y_byX0LrhJwGLt4wqo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/195f3d-a851-455a-9b0f-d70cd97f4857/1/Zb3P93vwYNXaEt5F4gcuHP9FYKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.41.243.0/24
Signature Algorithm: sha256WithRSAEncryption
96:e6:e1:ed:98:28:b6:dd:8a:82:21:ee:25:84:b1:92:6c:ad:
0e:75:bc:16:7f:b1:3e:47:9f:ac:b6:c9:38:87:5c:00:2d:03:
90:6d:38:0c:63:6f:2d:2c:87:2b:17:04:1c:30:42:7f:8b:48:
c8:6c:ef:43:e4:b9:da:ed:13:22:05:fe:61:7c:0d:e9:7b:1f:
30:f8:05:4c:18:2c:93:5d:b4:04:1e:03:09:83:1e:ab:97:82:
78:f3:37:8b:df:f5:6c:a6:61:cd:2c:8c:0e:f8:9c:37:6d:a9:
a2:51:d6:ca:48:28:e8:0e:39:7d:fc:f4:a6:64:7d:c6:2b:26:
b8:a8:b3:60:b5:7b:13:93:6c:4a:8b:6a:82:93:c4:69:50:28:
06:52:67:bb:08:56:12:f3:e4:3a:e6:e7:e0:d5:83:e5:37:98:
dd:83:56:8c:ee:a3:36:79:97:1b:89:51:ed:f8:cb:62:90:8f:
31:d2:18:b0:50:8e:bf:f1:ab:bb:70:c8:eb:31:c5:b3:d2:0b:
40:e5:72:d4:e3:55:29:6f:99:d6:6c:fd:f5:73:18:d1:59:46:
39:47:a3:90:5a:58:eb:3d:b9:2b:be:f7:08:5e:81:2b:e2:55:
ba:39:d2:04:d0:3f:1a:93:bc:f6:6c:d9:d2:51:c5:65:56:b7:
52:46:95:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:19 2024 by rpki-client on console-ams.rpki-client.org