Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/6fcdca-d121-4391-9cfc-7d16b90dbe72/1/NWPZCA18O_HGu4W6SGEoDPSRdo0.roa
File: NWPZCA18O_HGu4W6SGEoDPSRdo0.roa (raw, json)
Hash identifier: UvZMSFjGoto7s5NTkZcUyEw9kwLpU2cd0DYErRIJnIo=
Subject key identifier: 35:63:D9:08:0D:7C:3B:F1:C6:BB:85:BA:48:61:28:0C:F4:91:76:8D
Certificate issuer: /CN=9a526a73ce8f9f62c14a11a2ea913ec273d58c46
Certificate serial: 018570397BCC6B40A12315CF05ACAA500A05
Authority key identifier: 9A:52:6A:73:CE:8F:9F:62:C1:4A:11:A2:EA:91:3E:C2:73:D5:8C:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mlJqc86Pn2LBShGi6pE-wnPVjEY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/6fcdca-d121-4391-9cfc-7d16b90dbe72/1/NWPZCA18O_HGu4W6SGEoDPSRdo0.roa
Signing time: Mon 02 Jan 2023 02:04:53 +0000
ROA not before: Mon 02 Jan 2023 02:04:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60122
IP address blocks: 185.157.98.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:39:7b:cc:6b:40:a1:23:15:cf:05:ac:aa:50:0a:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a526a73ce8f9f62c14a11a2ea913ec273d58c46
Validity
Not Before: Jan 2 02:04:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3563d9080d7c3bf1c6bb85ba4861280cf491768d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:34:3d:03:e2:21:ae:03:65:7e:ea:db:02:66:
a0:55:b1:a9:e8:91:9a:77:09:87:e1:4b:84:11:82:
52:00:4a:82:20:5a:19:fa:43:24:b5:11:e6:1b:08:
a4:55:3b:f4:29:87:43:d2:7d:0e:20:50:98:a9:2d:
ac:95:a7:a5:34:5c:bc:5d:0b:a6:71:80:1a:fc:d7:
77:01:8b:40:10:b0:e1:c4:41:1c:7a:58:40:95:da:
31:ac:13:3f:64:42:02:87:3b:42:e1:5e:a7:c8:34:
65:81:52:0f:d0:8a:de:c7:d5:2c:39:3e:78:47:4a:
a8:e7:94:92:5b:20:24:d1:e2:18:45:0e:9b:ce:ee:
c3:5b:5a:ff:e0:51:55:92:f5:1a:d8:87:c5:dc:32:
6d:e8:e0:4d:d1:13:a7:9f:41:48:7b:c7:68:33:1a:
04:b7:30:f9:eb:20:d7:a9:cb:68:fd:f5:b1:ae:35:
3b:a5:a7:a6:ab:2e:4c:09:95:76:da:59:5a:58:b4:
f3:83:30:cd:37:21:22:e3:f9:c4:47:af:ff:72:1d:
da:c0:57:3e:93:4d:e7:37:81:9a:aa:86:1f:7b:3d:
30:6c:c6:2b:28:c8:ba:f5:99:7c:fd:63:09:51:5e:
0c:20:6c:9a:30:c9:75:9f:32:86:e2:1f:1b:db:35:
6d:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:63:D9:08:0D:7C:3B:F1:C6:BB:85:BA:48:61:28:0C:F4:91:76:8D
X509v3 Authority Key Identifier:
keyid:9A:52:6A:73:CE:8F:9F:62:C1:4A:11:A2:EA:91:3E:C2:73:D5:8C:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mlJqc86Pn2LBShGi6pE-wnPVjEY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/6fcdca-d121-4391-9cfc-7d16b90dbe72/1/NWPZCA18O_HGu4W6SGEoDPSRdo0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/6fcdca-d121-4391-9cfc-7d16b90dbe72/1/mlJqc86Pn2LBShGi6pE-wnPVjEY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.157.98.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:86:b8:d5:11:d8:44:16:c2:c3:02:71:a4:38:02:4c:2c:12:
bd:e1:fb:6d:03:fe:a6:b1:8e:07:46:4a:1e:87:9c:99:f7:d0:
b6:89:22:e1:19:56:6a:a1:ec:09:e8:80:00:4f:f1:c8:48:3f:
60:b9:b9:6e:57:c6:2c:16:3f:6b:f3:85:52:cb:56:4d:94:f2:
5b:2e:e3:2b:c6:90:ce:7f:48:36:b9:ec:e4:4a:d1:32:42:02:
59:9f:7e:3b:36:53:16:2d:d6:74:3f:34:eb:7d:88:05:f7:be:
4a:0e:7f:d7:ee:8c:a6:13:26:ab:1f:01:23:75:f7:60:77:24:
67:b3:dd:72:f9:03:ee:43:36:46:b1:94:ba:5e:c0:51:ef:fe:
40:07:00:17:87:63:b8:2c:65:6f:a3:f4:8f:9b:82:03:d6:ab:
bf:e0:db:69:4d:7f:ba:7c:01:6e:ed:cc:34:6c:26:cf:04:50:
af:a8:03:f0:59:89:3c:bc:9e:c9:a5:1f:4a:3f:4b:ca:81:aa:
2d:ec:a8:b0:18:39:71:c3:2f:9f:1c:ce:dd:62:ad:a5:ab:00:
c0:95:a7:74:80:2f:d9:a4:b6:ca:12:25:c5:7b:8c:77:fe:f3:
4b:ed:fd:38:c6:98:74:36:5c:2a:c4:57:d1:10:c7:65:46:95:
82:15:bb:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:14:48 2024 by rpki-client on console-ams.rpki-client.org