Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/00c711-0c29-4301-94bc-ea57cbe36811/1/NjfL0ExgvCpNDdiBBYW7P1vTAUI.roa
File: NjfL0ExgvCpNDdiBBYW7P1vTAUI.roa (raw, json)
Hash identifier: U8KkKhsCXJoWPzGcI5sF8Igt/oqapZ6KrcV2U4NMhG4=
Subject key identifier: 36:37:CB:D0:4C:60:BC:2A:4D:0D:D8:81:05:85:BB:3F:5B:D3:01:42
Certificate issuer: /CN=bfe6fc768ad47b968e0a259fecc8a3da32fac5ea
Certificate serial: 018570F088D6CADCCDE04B2D83ADF4F54FDE
Authority key identifier: BF:E6:FC:76:8A:D4:7B:96:8E:0A:25:9F:EC:C8:A3:DA:32:FA:C5:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v-b8dorUe5aOCiWf7Mij2jL6xeo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/00c711-0c29-4301-94bc-ea57cbe36811/1/NjfL0ExgvCpNDdiBBYW7P1vTAUI.roa
Signing time: Mon 02 Jan 2023 05:24:49 +0000
ROA not before: Mon 02 Jan 2023 05:24:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201011
IP address blocks: 185.247.150.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:f0:88:d6:ca:dc:cd:e0:4b:2d:83:ad:f4:f5:4f:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfe6fc768ad47b968e0a259fecc8a3da32fac5ea
Validity
Not Before: Jan 2 05:24:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3637cbd04c60bc2a4d0dd8810585bb3f5bd30142
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:be:b0:87:3a:58:10:b3:37:5c:97:28:d0:78:
d9:88:82:25:ed:93:37:31:84:3b:bb:a4:c8:83:41:
07:d3:fd:e5:74:77:e1:ea:c7:87:0a:9e:5b:9e:d4:
da:c2:4e:6d:6a:74:b0:73:87:2c:75:d2:0d:dd:63:
b1:4c:2a:5a:ef:72:bb:97:0a:aa:42:18:8f:d5:8a:
ee:9b:15:17:42:13:bb:86:2e:22:7a:b0:b7:95:af:
0a:7d:38:eb:c0:af:63:7f:0e:b7:73:4e:ca:8f:ea:
46:83:f8:9b:ed:30:c6:a4:0f:d5:36:de:ef:06:7a:
62:01:ab:8a:3e:b2:e1:98:b9:75:17:ef:ff:21:4f:
ce:da:f4:4c:fb:30:63:93:75:6f:c2:d4:7d:c6:02:
92:1b:94:10:ed:18:6a:b7:15:ba:64:60:12:7b:9c:
53:08:47:c3:cd:c9:d9:aa:f1:1c:68:d4:22:09:94:
bb:8a:40:9c:07:39:81:0c:2a:b2:38:84:f3:66:76:
14:03:6e:0d:e6:db:e7:b4:7e:b2:10:d1:6f:24:02:
94:07:83:cc:75:3e:c8:5e:e0:fc:bd:93:53:f5:72:
a7:d2:8e:a8:f6:82:e7:2b:82:cb:c6:b9:5d:d6:96:
85:0f:93:8f:f7:d9:35:33:4d:a9:43:e0:ef:5d:97:
32:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:37:CB:D0:4C:60:BC:2A:4D:0D:D8:81:05:85:BB:3F:5B:D3:01:42
X509v3 Authority Key Identifier:
keyid:BF:E6:FC:76:8A:D4:7B:96:8E:0A:25:9F:EC:C8:A3:DA:32:FA:C5:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v-b8dorUe5aOCiWf7Mij2jL6xeo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/00c711-0c29-4301-94bc-ea57cbe36811/1/NjfL0ExgvCpNDdiBBYW7P1vTAUI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/00c711-0c29-4301-94bc-ea57cbe36811/1/v-b8dorUe5aOCiWf7Mij2jL6xeo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.247.150.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:48:69:e5:8f:50:08:7e:fe:f7:fe:eb:22:a0:c8:11:fa:bd:
e6:2f:fa:0d:71:54:e0:aa:28:93:7e:67:07:71:44:7e:0c:45:
6f:75:68:7c:80:b3:d2:9f:a6:4f:6b:4d:9c:90:32:34:64:17:
ae:bd:51:8f:f2:b0:12:22:10:00:92:18:5f:47:c0:c6:d2:ac:
d1:15:fc:26:61:bc:3e:77:7b:55:b7:7f:0c:c6:21:d7:32:29:
05:23:02:b7:51:95:29:d1:4a:60:8d:55:28:91:e3:a4:db:ee:
3b:ec:d4:48:84:6b:ed:63:ed:88:a4:ff:68:2e:89:0f:9a:e1:
70:24:17:aa:8c:1d:f2:04:81:80:67:2a:94:24:22:96:0a:cd:
8e:c1:60:ee:dd:9e:60:a4:4d:4c:a5:f5:bc:cc:37:ac:8e:da:
cf:5b:a8:1a:82:82:0b:2d:e3:23:63:f9:c4:f2:31:55:98:a3:
1c:6b:b2:95:78:88:df:91:b7:07:0d:e6:2e:7b:69:67:80:64:
b4:9b:a7:df:95:83:ff:6d:ea:42:7d:21:87:d5:09:71:4f:5e:
11:de:f9:b9:bf:77:fe:06:24:f6:74:94:7e:f6:41:f3:35:65:
c4:07:54:99:f5:24:c8:9d:f6:3e:c1:ff:f8:bf:60:6f:49:8b:
a7:22:1f:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:06 2024 by rpki-client on console-fra.rpki-client.org