Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/NnOg-P8S02mcTdY9q0qItRckBPA.roa
File: NnOg-P8S02mcTdY9q0qItRckBPA.roa (raw, json)
Hash identifier: u5WgaPf+Vy2Mpv+I8YmC+M6DpQfl55RpCCQIhBLo2go=
Subject key identifier: 36:73:A0:F8:FF:12:D3:69:9C:4D:D6:3D:AB:4A:88:B5:17:24:04:F0
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018AF0F12C179EBD104006080ECAF0A29CB4
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/NnOg-P8S02mcTdY9q0qItRckBPA.roa
Signing time: Mon 02 Oct 2023 15:10:51 +0000
ROA not before: Mon 02 Oct 2023 15:10:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47263
IP address blocks: 185.225.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 20 Dec 2023 11:21:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f0:f1:2c:17:9e:bd:10:40:06:08:0e:ca:f0:a2:9c:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Oct 2 15:10:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3673a0f8ff12d3699c4dd63dab4a88b5172404f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:02:5c:d9:31:a4:ec:26:51:b1:16:86:60:41:
05:10:7c:da:75:1e:8b:f8:5e:6f:b1:50:66:34:3a:
73:8c:ac:7d:bb:a4:b0:e4:bc:14:8d:48:09:85:0e:
02:a7:bc:a3:f4:ba:70:7e:6b:fd:95:35:69:14:56:
a7:56:5d:5b:1b:fe:6a:89:a1:10:32:1d:b1:dc:c7:
9d:82:f9:a6:92:25:19:58:f1:21:ea:11:ba:0d:88:
ec:8d:93:15:98:c0:75:ad:34:cf:ae:e3:11:22:8d:
bb:bc:b7:02:43:ae:d5:63:c3:3e:7f:6d:81:67:02:
1d:c9:f4:d5:29:62:e0:2d:c0:e2:9d:c6:49:08:7c:
2c:3f:61:56:b5:57:30:bb:08:73:cb:84:e5:97:30:
c8:8c:77:4e:3d:bf:ba:53:18:13:16:5c:4d:3b:bc:
24:a5:59:d1:30:fe:7d:82:02:1b:15:c2:0d:db:a5:
bc:fa:98:d9:c9:25:f1:97:c5:dc:fa:b8:58:9b:69:
0a:c6:96:5e:2a:69:79:59:8d:cc:07:39:4b:a3:ef:
3e:ee:70:e9:01:c3:7b:55:a8:13:2e:78:06:3d:22:
e5:51:6f:ba:51:0a:d4:d4:30:8f:c0:07:6f:43:f3:
7b:4b:2e:57:26:2e:d1:60:60:86:02:7a:63:51:75:
df:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:73:A0:F8:FF:12:D3:69:9C:4D:D6:3D:AB:4A:88:B5:17:24:04:F0
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/NnOg-P8S02mcTdY9q0qItRckBPA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.22.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:6c:6d:21:b8:4d:ee:ea:72:d3:49:6d:70:3e:d8:03:da:e6:
94:9d:cd:8e:6d:d9:86:c9:57:da:b1:c1:00:e6:92:25:1d:95:
f4:0d:10:a7:ca:8f:44:91:b2:36:6b:cb:24:cc:01:ae:8b:9e:
8d:62:f6:32:73:a9:c3:71:2e:64:cd:8e:d7:b0:bf:d8:08:5e:
4d:23:4b:24:c0:fe:2f:8c:d5:03:f8:c0:e2:ac:c5:b9:9d:4b:
82:66:b7:26:93:ad:46:4c:1c:3e:34:e7:a5:f6:ec:22:a6:4e:
a5:59:a2:ba:f6:12:4a:2b:d2:e8:44:57:cc:21:de:2e:95:11:
13:9b:44:93:24:ed:9d:da:f3:4c:ab:a6:48:6d:a6:d6:c0:42:
7a:4e:87:e9:44:91:90:a4:6b:3f:bb:6c:b9:7d:93:3a:e1:d4:
d7:bb:33:23:d3:12:04:93:2a:96:db:47:96:3c:ca:19:1e:e8:
26:cf:7d:f1:b4:08:3d:84:90:1e:3b:99:bc:65:ab:e9:38:08:
05:66:66:dd:0f:c8:5e:e0:63:55:5a:91:ff:e3:5f:a9:f2:f0:
e8:03:e7:17:a1:1c:f8:a3:a1:42:3e:76:88:4e:53:6e:b9:be:
7b:6e:60:e9:a1:0f:39:77:82:cc:90:bb:f2:fd:9a:fb:a1:f4:
28:59:f9:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:22 2024 by rpki-client on console-ams.rpki-client.org