Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/NklmWas-EWUWpdLTFIqlZEO1LVY.roa
File: NklmWas-EWUWpdLTFIqlZEO1LVY.roa (raw, json)
Hash identifier: KVWoLry7Fo0qHrNk+kt1nS+LBwnR54mywr02JIKJtwk=
Subject key identifier: 36:49:66:59:AB:3E:11:65:16:A5:D2:D3:14:8A:A5:64:43:B5:2D:56
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 018C3FB0D457C69486AE04E7F8DF6E7625A8
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/NklmWas-EWUWpdLTFIqlZEO1LVY.roa
Signing time: Wed 06 Dec 2023 15:13:22 +0000
ROA not before: Wed 06 Dec 2023 15:13:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5065
IP address blocks: 77.81.79.0/24 maxlen: 24
188.214.232.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:3f:b0:d4:57:c6:94:86:ae:04:e7:f8:df:6e:76:25:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Dec 6 15:13:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=36496659ab3e116516a5d2d3148aa56443b52d56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:cc:22:73:9b:52:d5:ac:7f:71:72:2a:75:7d:
e5:75:3a:f3:1c:f3:65:61:a6:1a:1e:ba:08:5a:b7:
9e:bc:e3:d0:8e:c9:22:92:cb:11:cc:78:36:17:7c:
f8:99:d8:bc:29:aa:94:70:d0:23:0a:11:29:94:ba:
3b:7b:0f:a5:60:93:26:6c:9a:f0:1b:aa:8e:3d:7c:
69:cf:d6:ed:28:6e:c6:68:4a:7f:cd:54:77:86:15:
68:62:13:11:ac:01:5b:ba:3e:f6:91:1a:d4:07:cc:
ad:12:f7:cd:b0:e3:fe:e0:08:b9:92:1c:ce:f5:ac:
83:08:68:df:d5:34:7d:3c:06:77:14:b9:88:01:d6:
99:91:f3:6f:2f:81:ed:20:47:52:9e:62:27:82:08:
b0:8d:36:a4:8c:ee:67:32:50:29:3a:45:91:f0:a6:
9a:2f:80:11:44:83:a8:40:d4:a0:d8:7d:df:e9:f0:
da:e8:f1:17:8c:94:3b:9b:e6:b6:b6:0e:ed:e5:29:
f4:ac:7e:17:e2:a0:d3:a8:02:34:04:e8:8a:eb:df:
2c:15:92:d2:ae:d6:bc:48:3f:be:50:a4:cb:ba:bd:
70:43:ee:55:8b:4c:ad:30:de:3f:87:8b:3e:e2:c3:
19:ec:a2:5e:17:1c:cd:cb:cd:6d:9b:8f:77:a3:45:
46:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:49:66:59:AB:3E:11:65:16:A5:D2:D3:14:8A:A5:64:43:B5:2D:56
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/NklmWas-EWUWpdLTFIqlZEO1LVY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.79.0/24
188.214.232.0/23
Signature Algorithm: sha256WithRSAEncryption
97:95:03:a2:c6:d1:8a:aa:7c:7e:63:04:30:31:b9:0b:2d:7e:
e4:0b:6d:b5:bd:30:a4:bf:03:af:e6:49:3a:39:90:f1:04:6a:
13:d2:37:83:9b:16:59:94:12:8e:3c:f5:4a:97:9e:ec:bd:9f:
9e:c9:26:34:37:bf:0c:5e:9f:8c:e3:69:1a:ae:59:6e:50:20:
93:f5:8e:f5:e4:dc:6d:0a:c9:7d:6c:ab:b1:c0:3a:2c:bb:62:
53:1d:c4:7e:b6:b4:08:7d:12:00:09:8f:f4:5d:10:25:3d:34:
0f:93:78:af:04:56:cc:a9:8d:70:0b:3c:8e:26:83:9b:d6:37:
af:3d:60:82:a9:d6:42:86:cf:32:c3:ed:cc:e5:8c:99:ef:f0:
45:8b:07:7f:9a:ae:11:24:2c:05:ea:71:cc:d1:9f:5b:5c:00:
cc:93:d1:96:b4:5d:e6:20:5e:92:e7:11:ed:88:2f:ad:c2:69:
aa:43:ce:a7:22:ca:16:e0:7d:47:1d:5e:03:69:2b:f1:db:d8:
41:da:ba:f6:39:67:56:2a:8b:06:62:90:c9:21:ff:2f:de:ed:
42:23:dc:9f:16:17:95:0b:50:78:1a:da:0f:2f:3f:b5:8f:08:
f7:df:eb:49:f3:f2:0d:e9:fd:7f:09:c2:0b:ca:0e:34:59:d4:
b1:e0:be:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:23 2024 by rpki-client on console-fra.rpki-client.org