Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/e20ba1-6ae8-4b43-a709-7545c04e1578/1/nzLoCXeZc9eygz5eHEadkb_t5tY.roa
File: nzLoCXeZc9eygz5eHEadkb_t5tY.roa (raw, json)
Hash identifier: quqt80lOMyOaWprl+3HAVW4hooJmx7oKFutGxJCmCM4=
Subject key identifier: 9F:32:E8:09:77:99:73:D7:B2:83:3E:5E:1C:46:9D:91:BF:ED:E6:D6
Certificate issuer: /CN=4474cf3e2fa892b5fdd3f30dc8275ee1062e1d06
Certificate serial: 0187851A88E8AC329415B298F114009149D5
Authority key identifier: 44:74:CF:3E:2F:A8:92:B5:FD:D3:F3:0D:C8:27:5E:E1:06:2E:1D:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RHTPPi-okrX90_MNyCde4QYuHQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/e20ba1-6ae8-4b43-a709-7545c04e1578/1/nzLoCXeZc9eygz5eHEadkb_t5tY.roa
Signing time: Sat 15 Apr 2023 13:28:41 +0000
ROA not before: Sat 15 Apr 2023 13:28:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 185.127.166.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:85:1a:88:e8:ac:32:94:15:b2:98:f1:14:00:91:49:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4474cf3e2fa892b5fdd3f30dc8275ee1062e1d06
Validity
Not Before: Apr 15 13:28:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9f32e809779973d7b2833e5e1c469d91bfede6d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:f1:9d:a4:7a:e2:1a:3e:c3:61:8f:65:7a:22:
15:95:f0:c3:a7:58:3b:81:a3:30:8b:88:0b:06:7a:
65:6c:4c:58:2c:bd:52:1d:a4:1a:fc:16:90:87:9e:
db:0d:e6:34:b0:3b:f4:d9:e6:d3:96:4e:73:d3:7a:
a1:43:67:b9:a4:21:1a:85:f0:28:f9:e5:a0:69:1c:
44:3e:a4:0d:df:9c:7f:9e:19:7f:ba:50:d4:db:a0:
e5:0c:a9:38:4d:56:cc:1c:21:31:d3:81:68:71:66:
b8:21:85:f7:ff:72:f5:47:f9:d4:96:08:c8:5d:c5:
d5:6c:f3:e9:4b:bb:49:a5:b0:22:2b:56:02:6a:25:
b0:86:46:00:77:fe:34:4c:b9:2e:30:fb:6a:ec:35:
0a:61:c0:80:dc:4a:3e:d3:a1:2d:94:a3:12:d1:ac:
9c:f3:af:08:cb:ef:f1:8e:b7:bf:20:a1:33:e0:30:
a5:35:f4:d9:01:65:83:ad:5d:0a:87:40:ac:52:90:
fd:0a:45:89:f9:2d:23:5d:e3:dc:a9:a1:6d:51:26:
5e:ba:97:af:36:7f:6d:60:cf:4b:59:2d:ec:7d:1b:
c9:5e:fa:37:ed:a7:26:17:31:8e:51:32:53:d3:a2:
59:48:eb:88:a3:d3:e3:9d:72:f0:fc:1b:a4:1a:c1:
a6:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:32:E8:09:77:99:73:D7:B2:83:3E:5E:1C:46:9D:91:BF:ED:E6:D6
X509v3 Authority Key Identifier:
keyid:44:74:CF:3E:2F:A8:92:B5:FD:D3:F3:0D:C8:27:5E:E1:06:2E:1D:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RHTPPi-okrX90_MNyCde4QYuHQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e20ba1-6ae8-4b43-a709-7545c04e1578/1/nzLoCXeZc9eygz5eHEadkb_t5tY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e20ba1-6ae8-4b43-a709-7545c04e1578/1/RHTPPi-okrX90_MNyCde4QYuHQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.127.166.0/23
Signature Algorithm: sha256WithRSAEncryption
b1:e3:43:68:8b:8e:fc:29:75:5d:09:38:56:4b:10:a0:a3:39:
f7:b9:bb:60:9d:04:0c:f7:75:72:bf:54:72:9e:6c:98:c8:cc:
c8:47:b5:35:b3:00:8d:49:ce:df:22:a5:f3:6b:f9:83:f2:13:
ad:88:6a:51:4a:ce:e2:18:24:94:8e:73:28:30:53:15:65:41:
67:7a:c8:19:42:fc:27:22:fe:53:9e:ba:15:31:e7:4e:f8:fe:
b0:73:eb:0b:27:c9:64:7f:d8:1a:65:c3:ef:99:5b:72:8d:58:
a7:80:f0:c6:63:97:97:e2:40:a5:b2:f2:c4:06:19:f6:b9:15:
e5:ef:83:9f:0b:0d:fa:3a:9e:0e:8b:15:cd:00:1f:b1:c0:15:
ce:d2:86:51:53:9f:82:9f:ba:3e:ec:34:e4:94:71:a6:ec:76:
e1:06:95:02:23:44:be:69:a9:e3:a8:7d:f2:36:88:ce:e1:d3:
6a:1a:2e:6b:8e:f4:1e:1c:69:a1:c1:5c:ad:0b:42:bf:b6:82:
a6:05:13:8b:8e:45:a1:4b:cf:6c:e8:4c:98:01:fb:95:8e:67:
f2:cb:cc:e1:5a:6d:2a:87:fc:27:a5:59:5b:b3:2a:e8:cc:da:
6c:cc:62:26:9f:89:f7:95:af:10:28:4e:5f:e9:2c:ba:5e:d7:
a5:b7:83:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:23 2023 by rpki-client on console-ams.rpki-client.org