Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/00e33e-fd74-4583-984e-c6b84cc58610/1/NqKpYE3BOSS_WhWFPulmugaN_RM.roa
File: NqKpYE3BOSS_WhWFPulmugaN_RM.roa (raw, json)
Hash identifier: U1RIdCFn/gGYzDRKYvi6tKrXSuDV7o8rJSnkWYFkMh0=
Subject key identifier: 36:A2:A9:60:4D:C1:39:24:BF:5A:15:85:3E:E9:66:BA:06:8D:FD:13
Certificate issuer: /CN=04a5ec5f52668be50b4518b687cf8bd95930ae39
Certificate serial: 01856E0B1159FA4F157937BD7CCB675A0C5C
Authority key identifier: 04:A5:EC:5F:52:66:8B:E5:0B:45:18:B6:87:CF:8B:D9:59:30:AE:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BKXsX1Jmi-ULRRi2h8-L2Vkwrjk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/00e33e-fd74-4583-984e-c6b84cc58610/1/NqKpYE3BOSS_WhWFPulmugaN_RM.roa
Signing time: Sun 01 Jan 2023 15:54:57 +0000
ROA not before: Sun 01 Jan 2023 15:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212603
IP address blocks: 185.60.20.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:0b:11:59:fa:4f:15:79:37:bd:7c:cb:67:5a:0c:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04a5ec5f52668be50b4518b687cf8bd95930ae39
Validity
Not Before: Jan 1 15:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=36a2a9604dc13924bf5a15853ee966ba068dfd13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:51:73:08:46:29:5d:e4:27:15:e0:85:a1:81:
5b:4a:03:49:d1:70:d2:38:60:b6:05:70:0f:50:e8:
4e:a5:9a:e7:b1:97:e0:ec:ae:86:bb:fd:4f:94:aa:
f1:a1:6b:1d:87:dd:44:c3:a5:51:2b:cc:7a:7b:e7:
fa:fc:4f:3b:3a:52:c2:c6:60:9c:5e:db:5a:7d:bb:
82:cd:63:cc:00:9d:85:c6:04:f6:9f:d2:e1:2a:eb:
19:18:87:5f:67:db:47:f8:10:a4:06:a7:da:99:0c:
35:0b:0a:b2:7b:6d:35:74:e9:52:46:3d:67:61:54:
87:d8:f7:ca:dc:0c:bb:44:34:52:84:69:02:33:f9:
4e:99:82:29:b6:5b:fa:96:b2:cf:10:1e:83:61:1d:
4b:1b:7a:a5:ca:14:90:74:6d:37:01:94:fa:7f:81:
b0:af:93:99:d3:df:82:fd:e6:c0:71:58:7e:8c:70:
7d:5d:44:fc:8b:3d:4b:26:e6:ea:63:ba:bd:09:74:
b1:73:0b:6f:cf:b2:cb:35:57:fa:6d:8b:66:bc:cf:
4f:34:3b:7c:8c:e1:03:a6:6b:2a:16:37:7f:23:e6:
a7:7f:90:15:dc:38:ce:25:08:1e:f1:e4:94:71:49:
5e:64:00:41:99:9b:cd:72:d5:63:5b:22:d2:77:a0:
66:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:A2:A9:60:4D:C1:39:24:BF:5A:15:85:3E:E9:66:BA:06:8D:FD:13
X509v3 Authority Key Identifier:
keyid:04:A5:EC:5F:52:66:8B:E5:0B:45:18:B6:87:CF:8B:D9:59:30:AE:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BKXsX1Jmi-ULRRi2h8-L2Vkwrjk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/00e33e-fd74-4583-984e-c6b84cc58610/1/NqKpYE3BOSS_WhWFPulmugaN_RM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/00e33e-fd74-4583-984e-c6b84cc58610/1/BKXsX1Jmi-ULRRi2h8-L2Vkwrjk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.60.20.0/24
Signature Algorithm: sha256WithRSAEncryption
48:a0:f7:ff:82:68:80:99:b2:e0:b5:b1:77:97:a1:48:87:70:
e9:7f:dc:d8:9d:ab:29:77:fe:94:f6:5c:9a:60:4e:3c:6c:01:
3d:e5:36:a1:1d:04:d9:88:15:e1:48:22:6e:08:a0:ac:df:99:
6b:09:4d:3a:7d:c8:82:00:00:81:96:a6:96:96:2c:93:3a:4b:
66:8c:97:7a:49:81:e4:11:6a:33:ff:44:7f:2c:09:83:95:92:
1e:36:34:15:30:62:4f:48:e3:fb:6f:a2:9b:b3:65:16:f9:dd:
e7:dd:25:24:8e:ec:86:a3:8b:28:c5:8e:01:8a:76:0b:4f:4f:
aa:ec:9f:47:c9:4c:ae:13:8d:b7:77:37:5d:b8:52:96:05:57:
5c:4e:32:37:58:e4:e2:97:f2:26:58:d2:84:e2:62:0d:bc:15:
a1:38:bd:3c:84:ce:7b:45:ce:f4:d2:42:6c:85:c8:97:ec:c5:
6e:e5:f3:14:14:ae:51:9c:74:55:2a:ab:88:06:69:86:66:06:
5f:ed:af:1d:20:1b:8f:59:b4:6c:c8:92:cf:67:0f:37:df:b5:
db:f6:c2:85:68:f3:ad:4e:ca:3f:b6:c0:d8:77:1b:73:1d:7d:
06:43:05:8e:3e:60:c2:07:ee:c5:80:a9:bf:a7:24:1a:78:dc:
8f:7a:e0:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:11:36 2024 by rpki-client on console-ams.rpki-client.org