Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/76aee1-e220-4e22-9cb5-8fe3a0f61437/1/NcDjkxcJbfqaoUBRAPCySFhxNwA.roa
File: NcDjkxcJbfqaoUBRAPCySFhxNwA.roa (raw, json)
Hash identifier: SlhKDWfY80V0kXcfeZ28HHj9oHiDJTOBwhOz0fOtMn0=
Subject key identifier: 35:C0:E3:93:17:09:6D:FA:9A:A1:40:51:00:F0:B2:48:58:71:37:00
Certificate issuer: /CN=dde36e98021264f5a8070106780be29d48a16c67
Certificate serial: 01856F38FA5DFBA923846AF2347758230906
Authority key identifier: DD:E3:6E:98:02:12:64:F5:A8:07:01:06:78:0B:E2:9D:48:A1:6C:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3eNumAISZPWoBwEGeAvinUihbGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/76aee1-e220-4e22-9cb5-8fe3a0f61437/1/NcDjkxcJbfqaoUBRAPCySFhxNwA.roa
Signing time: Sun 01 Jan 2023 21:24:43 +0000
ROA not before: Sun 01 Jan 2023 21:24:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396982
IP address blocks: 1.179.112.0/20 maxlen: 20
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:38:fa:5d:fb:a9:23:84:6a:f2:34:77:58:23:09:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dde36e98021264f5a8070106780be29d48a16c67
Validity
Not Before: Jan 1 21:24:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=35c0e39317096dfa9aa1405100f0b24858713700
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:86:d9:ba:08:9e:1d:f3:62:42:6a:9e:8e:a2:
d1:56:67:d3:76:ad:74:02:36:12:28:ec:55:9b:6f:
c8:17:c0:1e:12:3a:ac:a4:ac:ba:97:f1:e8:62:28:
a0:8b:28:e3:90:3c:cb:5a:0d:a2:6d:9f:5f:00:44:
2f:18:6d:52:7d:92:eb:76:f5:f0:ad:94:fb:32:c7:
bc:1c:33:98:de:dc:dc:4e:63:4c:1b:a7:43:4f:22:
16:25:3b:1d:4b:06:a1:00:38:b7:87:94:b5:8e:21:
7f:ba:81:0c:f6:94:56:01:b6:14:aa:25:2f:ae:51:
2c:3f:3f:81:8d:61:95:25:f2:cf:8b:28:d6:4e:0a:
bb:c4:f2:43:d9:61:3b:5b:a3:a6:47:2a:2b:67:59:
b2:f3:da:68:b0:9e:56:6f:bb:c6:95:70:22:ae:31:
f2:f4:91:14:75:9a:25:de:25:16:fa:e0:51:c2:db:
f8:28:f7:06:6f:c3:d4:f4:6c:e0:49:79:16:14:ae:
89:25:7a:43:df:c6:89:9c:0c:2e:d8:d6:0a:f5:28:
c1:66:d3:e5:11:1b:ed:59:69:2b:5a:c6:62:8e:fc:
f6:50:de:4a:5c:81:d7:3b:c8:90:5d:40:55:ea:7f:
bd:5e:29:ad:fc:9a:28:93:e8:e8:ef:c8:0a:3c:8d:
15:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:C0:E3:93:17:09:6D:FA:9A:A1:40:51:00:F0:B2:48:58:71:37:00
X509v3 Authority Key Identifier:
keyid:DD:E3:6E:98:02:12:64:F5:A8:07:01:06:78:0B:E2:9D:48:A1:6C:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3eNumAISZPWoBwEGeAvinUihbGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/76aee1-e220-4e22-9cb5-8fe3a0f61437/1/NcDjkxcJbfqaoUBRAPCySFhxNwA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/76aee1-e220-4e22-9cb5-8fe3a0f61437/1/3eNumAISZPWoBwEGeAvinUihbGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
1.179.112.0/20
Signature Algorithm: sha256WithRSAEncryption
14:1c:c8:fa:18:42:7a:c0:f6:23:b4:f9:0a:60:95:e8:16:d8:
e6:fa:6c:8b:c7:8a:f9:32:ff:1b:ed:9f:dd:58:13:8e:1d:a2:
29:86:2a:5b:19:0b:ad:b0:a7:7d:e8:65:4d:7e:93:13:b6:ad:
28:bb:45:54:84:2d:1e:be:1c:92:00:35:24:4f:e7:9e:71:47:
eb:b8:49:74:46:bd:c6:0c:5b:31:b9:2d:15:ab:97:88:bc:24:
60:ae:ec:2a:90:94:4c:ba:07:cc:86:01:28:1a:1d:7b:e9:dc:
87:97:1c:57:39:57:63:b4:46:34:b2:62:3b:70:41:6a:8a:eb:
8d:b4:46:93:b1:ee:66:e1:9b:3a:bc:f4:99:8c:01:1a:f4:a4:
8b:b9:77:e2:63:b9:d8:a9:fb:36:45:3e:88:7f:69:d7:e8:a2:
73:df:a6:d2:a4:bb:b1:b9:79:b2:5b:bc:a5:41:4f:a5:81:64:
8f:e1:f1:20:ce:14:56:ec:fd:0d:ac:37:f0:7e:f3:28:a6:3d:
00:54:7e:a0:19:fd:d6:79:1b:c4:55:2e:9e:5a:03:e5:40:16:
c2:90:40:92:eb:d0:be:5a:48:73:ff:9f:a9:80:b1:5b:dc:99:
3b:49:77:33:85:b1:89:a6:11:4a:e8:91:21:fd:11:af:a8:c3:
11:96:b3:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:27 2024 by rpki-client on console-ams.rpki-client.org