Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/ncyTovJu6JcclD74eTUYG7nxl6s.roa
File: ncyTovJu6JcclD74eTUYG7nxl6s.roa (raw, json)
Hash identifier: svll49oDxWFPT4h4yZkTWnHfdbwWZD2or2hDNHwNmXE=
Subject key identifier: 9D:CC:93:A2:F2:6E:E8:97:1C:94:3E:F8:79:35:18:1B:B9:F1:97:AB
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0185710C2711547B9EB337239667B2BDE7B8
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/ncyTovJu6JcclD74eTUYG7nxl6s.roa
Signing time: Mon 02 Jan 2023 05:54:59 +0000
ROA not before: Mon 02 Jan 2023 05:54:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59994
IP address blocks: 45.137.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0c:27:11:54:7b:9e:b3:37:23:96:67:b2:bd:e7:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 2 05:54:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9dcc93a2f26ee8971c943ef87935181bb9f197ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ac:2c:9a:39:d2:9e:26:8d:b0:47:c1:16:af:
73:0a:d8:2b:86:e2:ac:d3:0b:cb:39:f4:aa:c1:b0:
2a:30:b5:5c:4d:72:c5:53:84:99:83:f4:a4:2f:04:
b4:cb:03:fd:ff:9e:e1:e8:a2:b0:2b:58:37:fb:35:
62:9c:b3:c1:a0:22:4a:94:da:55:44:89:c4:86:ae:
99:8a:21:b0:83:12:d2:e8:04:04:3d:a4:a1:6e:42:
1f:d1:1d:d9:68:54:79:03:10:86:b5:88:04:29:0c:
5f:39:58:49:81:f0:40:32:8a:37:0f:aa:69:13:23:
4c:34:86:ca:a9:6d:1c:d8:ce:b6:2b:22:9e:07:4c:
e2:0f:4a:cd:3d:d2:0c:55:d1:0d:51:7a:db:5d:99:
c6:0a:6a:ee:eb:a0:0f:2c:17:af:08:66:62:ac:8c:
e7:73:47:9c:49:7f:8c:b8:3a:39:10:c1:93:c2:d2:
5c:91:ae:ce:67:5c:83:f6:66:0f:e6:c3:22:48:d3:
18:dc:48:f9:e6:07:d9:0a:7c:88:2a:23:74:d3:04:
f6:18:49:68:f2:42:92:b9:3a:28:91:80:a5:c3:e1:
44:b9:b8:95:73:f8:d7:a5:74:ab:80:03:62:ad:ea:
4f:7b:ae:fa:80:61:11:8e:83:ee:fe:db:16:87:11:
6b:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:CC:93:A2:F2:6E:E8:97:1C:94:3E:F8:79:35:18:1B:B9:F1:97:AB
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/ncyTovJu6JcclD74eTUYG7nxl6s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.107.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:c6:72:da:04:91:7d:b3:4c:9e:0b:2e:73:d8:b3:a2:48:0d:
21:ca:d3:41:28:3d:ad:46:21:bf:05:cf:b7:30:cd:49:5d:1a:
ee:42:6b:40:c9:21:d3:f2:0e:a6:73:92:d8:60:f1:72:ab:ce:
63:33:29:af:12:ce:ca:4d:09:5a:93:88:2b:93:46:d3:09:2c:
be:6c:93:6a:5f:01:e1:8d:98:a1:a3:20:98:e4:92:c1:0b:4a:
0c:2b:34:98:7d:7c:63:9b:b0:9c:c7:fc:8a:98:34:04:cf:52:
84:72:04:4a:27:39:7e:89:f3:42:26:92:79:9d:bf:8d:ed:b2:
7a:21:88:71:ed:4e:ea:4e:fa:32:2d:16:16:9b:c0:05:9a:7a:
81:0e:5e:df:3a:ec:98:e5:dc:b4:ff:58:32:46:f5:fd:f6:0d:
d5:aa:64:38:65:42:bb:1d:10:49:e1:a8:50:51:f0:63:4e:c9:
40:47:28:1e:f7:a7:c6:61:71:30:24:a0:d1:82:d2:5e:6e:fb:
09:3a:b4:4d:33:cf:fe:a7:6c:72:6c:2b:d4:54:5d:01:95:9a:
39:9c:64:f1:d9:8b:39:90:19:4c:86:38:13:00:e8:1f:00:36:
f3:df:c7:ba:4d:28:0c:5a:31:67:cd:89:c6:06:52:4c:5f:99:
64:ab:a6:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:08 2024 by rpki-client on console-fra.rpki-client.org