Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/NRlwrVfe9zTqGrRRTdj-lflxzdg.roa
File: NRlwrVfe9zTqGrRRTdj-lflxzdg.roa (raw, json)
Hash identifier: 93DmSKmaf5Q3jds4JtivAN77dlWL0WtW6Hgdyn3uGnc=
Subject key identifier: 35:19:70:AD:57:DE:F7:34:EA:1A:B4:51:4D:D8:FE:95:F9:71:CD:D8
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018949AF9C2B4E9AC35FA92D3E3C0F38BFE2
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/NRlwrVfe9zTqGrRRTdj-lflxzdg.roa
Signing time: Wed 12 Jul 2023 10:39:52 +0000
ROA not before: Wed 12 Jul 2023 10:39:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13740
IP address blocks: 185.227.146.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 14 Jul 2023 12:03:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:49:af:9c:2b:4e:9a:c3:5f:a9:2d:3e:3c:0f:38:bf:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jul 12 10:39:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=351970ad57def734ea1ab4514dd8fe95f971cdd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:42:ce:70:43:a1:b6:27:91:92:5e:e2:51:da:
0e:fb:dc:b2:cd:22:dd:18:5c:43:07:81:a3:ef:ca:
62:3f:c1:23:bc:e5:b2:f5:31:88:4e:79:21:97:88:
bb:93:71:df:db:2f:e1:46:27:20:10:f3:53:bd:66:
b4:28:08:08:95:f9:40:f1:75:65:1d:b7:eb:68:28:
47:ac:c6:e2:3a:b5:a4:47:34:31:fe:a1:ce:4c:ca:
ca:74:fa:e4:f3:3a:fc:59:16:72:de:29:c9:cf:13:
98:25:36:a6:7a:e3:bf:18:cf:e5:ac:6d:ef:ae:39:
5e:86:55:22:4a:f6:7b:a1:dd:df:4a:2d:2b:7a:2d:
86:c1:a0:59:69:18:22:0b:5d:3b:12:ef:43:15:b6:
7f:28:6b:c7:16:d3:58:b9:a1:93:5d:49:84:c8:3b:
09:35:06:3b:37:6f:ba:44:aa:ca:61:fc:31:7b:74:
c3:9a:dc:51:5a:98:49:62:85:89:c1:7f:af:1e:7e:
19:54:02:80:95:3a:c8:61:62:f7:63:0c:a4:cd:25:
56:86:26:d9:d7:7a:03:7d:6e:2c:da:80:da:10:0c:
9e:76:f3:c7:b3:e7:bc:4d:22:27:a8:1e:41:be:2e:
42:40:3e:d9:27:a6:3b:0d:39:21:16:71:6e:cb:2e:
4c:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:19:70:AD:57:DE:F7:34:EA:1A:B4:51:4D:D8:FE:95:F9:71:CD:D8
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/NRlwrVfe9zTqGrRRTdj-lflxzdg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.227.146.0/23
Signature Algorithm: sha256WithRSAEncryption
07:2e:41:9a:7d:4f:71:3f:68:74:d2:fb:ca:c1:e7:2e:30:c8:
c6:8c:bc:27:e5:96:3d:ea:93:73:f0:91:e5:9f:91:b5:86:7a:
52:2b:27:0f:78:49:7a:87:83:8c:f9:14:21:f2:ec:a1:56:f6:
c0:7b:96:93:59:f0:4d:47:57:50:dd:b7:26:9e:99:4d:1f:70:
60:95:14:ad:a3:e7:44:ae:ac:15:ad:96:15:3f:17:7e:ab:e1:
c0:8b:a5:ba:dc:2d:43:e5:8a:bb:98:a7:20:c4:30:20:1b:01:
1b:77:89:27:85:29:da:85:cd:cf:8d:92:a1:d6:94:3c:5e:e0:
90:4d:50:b1:d9:cb:a1:a3:0a:02:b3:4b:3e:cd:0b:ba:51:ad:
3a:ed:2a:12:5f:c2:d9:2b:b0:f3:8f:29:91:f2:d3:f5:01:d0:
b2:e5:16:40:d1:c4:69:3a:ca:e6:5f:e3:e3:e9:b1:06:f5:0a:
74:cf:bb:11:e1:cf:45:72:ce:d9:6a:5d:ee:cd:1d:d3:80:b1:
14:26:85:c3:f9:19:eb:3b:5b:f5:0b:13:e3:25:70:52:de:06:
f9:cb:ef:1b:a2:6a:f5:e3:64:57:42:91:0d:03:e4:3f:c7:42:
0e:fc:d5:55:3f:a4:3f:2c:ec:f1:16:aa:6c:b5:aa:8b:52:19:
0c:d9:5a:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:22 2024 by rpki-client on console-ams.rpki-client.org