Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/b811d5-ba35-423d-862f-23531654e589/1/nmM4kYHMxdBGWY5KFuyvi5Xvaas.roa
File: nmM4kYHMxdBGWY5KFuyvi5Xvaas.roa (raw, json)
Hash identifier: OHpx0Qk30JW95PSGONdAwMz4HFdQHG4oNbb79tgDJrI=
Subject key identifier: 9E:63:38:91:81:CC:C5:D0:46:59:8E:4A:16:EC:AF:8B:95:EF:69:AB
Certificate issuer: /CN=6a37982207e62ded0691dcb18ef6ea32d413f3f6
Certificate serial: 0186DA67FC0D9ACF6572E9719BDB2910813E
Authority key identifier: 6A:37:98:22:07:E6:2D:ED:06:91:DC:B1:8E:F6:EA:32:D4:13:F3:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ajeYIgfmLe0GkdyxjvbqMtQT8_Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/b811d5-ba35-423d-862f-23531654e589/1/nmM4kYHMxdBGWY5KFuyvi5Xvaas.roa
Signing time: Mon 13 Mar 2023 09:58:13 +0000
ROA not before: Mon 13 Mar 2023 09:58:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42184
IP address blocks: 89.251.128.0/20 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:da:67:fc:0d:9a:cf:65:72:e9:71:9b:db:29:10:81:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a37982207e62ded0691dcb18ef6ea32d413f3f6
Validity
Not Before: Mar 13 09:58:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9e63389181ccc5d046598e4a16ecaf8b95ef69ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:78:ef:e7:39:61:fd:19:80:5f:06:73:02:fa:
18:42:a9:90:d8:27:02:84:dc:89:f6:a1:d5:e1:17:
c9:6b:37:c9:9f:c5:fd:dc:4d:6d:07:c0:37:76:75:
25:0d:49:20:90:83:10:54:35:3e:c8:62:0d:85:2d:
69:d0:4a:42:18:ff:e6:98:b9:cc:6c:94:f7:4a:ca:
7c:4b:34:fb:c1:6e:77:c3:9a:55:c5:d2:3e:95:8b:
bb:8e:e1:4d:2e:48:0a:05:94:23:84:02:54:93:5d:
9b:00:3b:ad:33:bb:35:b9:cf:a9:33:d0:59:72:bd:
db:f1:78:e0:1c:cd:c3:78:7b:e7:a2:4c:79:04:ac:
56:32:4a:3f:15:dc:4f:5b:dd:99:7d:c6:50:34:96:
28:16:93:b8:f4:7e:6c:8b:ed:d0:05:66:84:cd:15:
30:37:35:a7:07:63:3d:37:7b:27:c6:bb:87:ab:c3:
85:36:a7:9e:80:7c:7d:ec:dc:63:ea:ce:6f:83:bd:
00:bf:06:cf:bd:88:65:fe:6d:78:b9:82:be:fa:9b:
27:32:cf:fe:bd:6f:ef:5f:e7:50:fa:5e:21:af:5e:
46:a9:d8:55:c9:10:84:e4:62:92:38:4f:0c:c5:a1:
68:78:f4:a1:01:dc:0e:6a:a2:6a:69:91:15:8f:50:
56:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:63:38:91:81:CC:C5:D0:46:59:8E:4A:16:EC:AF:8B:95:EF:69:AB
X509v3 Authority Key Identifier:
keyid:6A:37:98:22:07:E6:2D:ED:06:91:DC:B1:8E:F6:EA:32:D4:13:F3:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ajeYIgfmLe0GkdyxjvbqMtQT8_Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/b811d5-ba35-423d-862f-23531654e589/1/nmM4kYHMxdBGWY5KFuyvi5Xvaas.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/b811d5-ba35-423d-862f-23531654e589/1/ajeYIgfmLe0GkdyxjvbqMtQT8_Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.251.128.0/20
Signature Algorithm: sha256WithRSAEncryption
72:70:3a:2a:5c:48:4b:9f:e5:a9:44:ca:ca:11:8e:7d:c1:e4:
13:c4:4a:09:18:46:ab:8f:5d:dd:2e:6c:5f:44:6c:5b:a3:3a:
db:83:00:5a:0a:ac:db:62:7e:8a:16:a8:94:fe:30:73:21:35:
49:06:39:e5:e1:61:e0:1a:3f:ee:59:5e:a5:d2:4b:2a:b7:4d:
e5:80:5a:97:aa:31:7d:04:87:b6:fe:24:91:9a:dc:61:43:79:
f3:53:56:2f:4c:b3:aa:9a:7a:af:03:eb:74:a2:e2:47:04:06:
34:77:e6:86:ad:e0:60:c5:8f:f6:f4:e6:df:6c:dc:cc:30:a8:
34:52:96:04:2c:14:31:4f:ef:7e:e4:b6:b0:01:38:51:c8:ce:
3a:be:46:c8:94:b4:00:e4:f1:78:da:57:02:cc:0a:90:c3:ce:
8b:1d:09:0f:06:05:89:e2:b8:4c:af:49:5b:a4:75:66:f5:a2:
c4:23:5b:ec:55:d7:42:76:e4:25:c2:a5:5f:bf:13:9f:f5:78:
a2:3c:66:0a:c2:15:33:96:a0:97:d0:33:19:38:12:37:a5:54:
57:19:84:ec:cf:63:be:da:b1:d9:83:d8:1d:ce:32:da:f9:e6:
5d:df:49:b1:51:de:42:77:9e:8e:24:73:f3:ec:48:d8:35:48:
3f:d3:4d:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:13 2024 by rpki-client on console-ams.rpki-client.org