Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/nMp3BtheB65mBQCR6aU8cb96lyU.roa
File: nMp3BtheB65mBQCR6aU8cb96lyU.roa (raw, json)
Hash identifier: ks1NKyoNveNnLYc42Qh71Vr29KA260eYXnJkzty0q/s=
Subject key identifier: 9C:CA:77:06:D8:5E:07:AE:66:05:00:91:E9:A5:3C:71:BF:7A:97:25
Certificate issuer: /CN=cfcead390625edba1408108df57cea47160d70e5
Certificate serial: 0189C1B6A0CBA66DFD38FBACFD73C04F9B0B
Authority key identifier: CF:CE:AD:39:06:25:ED:BA:14:08:10:8D:F5:7C:EA:47:16:0D:70:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z86tOQYl7boUCBCN9XzqRxYNcOU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/nMp3BtheB65mBQCR6aU8cb96lyU.roa
Signing time: Fri 04 Aug 2023 18:01:58 +0000
ROA not before: Fri 04 Aug 2023 18:01:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59538
IP address blocks: 185.0.34.0/24 maxlen: 24
2a0f:7800::/31 maxlen: 48
2a0f:7800:600::/40 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:c1:b6:a0:cb:a6:6d:fd:38:fb:ac:fd:73:c0:4f:9b:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfcead390625edba1408108df57cea47160d70e5
Validity
Not Before: Aug 4 18:01:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9cca7706d85e07ae66050091e9a53c71bf7a9725
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:ad:d0:c8:4e:9d:86:f4:a1:c1:37:2c:f0:97:
7f:cf:10:9f:46:a3:55:c6:41:86:53:7f:79:14:fb:
72:3e:db:34:d8:e6:18:0b:8b:5a:dd:eb:9e:8d:18:
43:21:8a:40:06:5b:c9:05:26:66:1f:5f:d4:95:cb:
9d:9a:7b:40:0d:57:f5:16:30:26:1c:31:69:5b:b5:
2a:94:7e:b9:96:05:78:84:a4:90:2a:25:e9:36:e9:
ee:37:3a:7d:40:b8:e3:8f:01:e8:85:50:e6:38:aa:
f5:41:42:69:9c:24:c3:4d:c7:5e:6f:81:6d:c5:bb:
14:ed:e4:1f:d7:fb:0c:16:64:cc:70:c8:9f:a9:95:
9b:57:4d:1a:3f:f6:7a:17:ed:7f:2d:5c:4a:af:2a:
d4:df:b8:80:59:02:bb:b6:e7:3c:68:a7:ac:72:80:
cc:71:cc:8c:c7:aa:b0:47:6a:21:2a:1c:14:91:da:
c0:60:3b:10:d7:ae:e5:55:14:7c:20:31:76:12:aa:
68:69:c9:09:1e:65:26:be:9c:e7:3c:71:77:0c:af:
90:71:bf:7c:81:ae:1f:72:db:0f:82:88:aa:83:43:
f2:76:1d:cc:79:7d:c7:d1:22:6e:17:6b:7f:a5:c5:
21:82:2c:36:fe:a8:84:90:33:48:1b:83:b4:23:b1:
56:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:CA:77:06:D8:5E:07:AE:66:05:00:91:E9:A5:3C:71:BF:7A:97:25
X509v3 Authority Key Identifier:
keyid:CF:CE:AD:39:06:25:ED:BA:14:08:10:8D:F5:7C:EA:47:16:0D:70:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z86tOQYl7boUCBCN9XzqRxYNcOU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/nMp3BtheB65mBQCR6aU8cb96lyU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/z86tOQYl7boUCBCN9XzqRxYNcOU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.0.34.0/24
IPv6:
2a0f:7800::/31
Signature Algorithm: sha256WithRSAEncryption
44:30:49:44:9b:d4:93:8b:52:92:06:76:1d:7f:03:8e:fe:42:
87:09:52:05:5e:c1:3a:c1:55:21:c9:e5:8a:2c:c0:4b:c9:ff:
a9:86:bc:a9:1f:77:2d:d5:0d:94:14:ac:2f:dc:67:05:81:67:
4a:0c:bc:5b:ba:a3:7a:43:70:9a:64:bd:da:1b:d4:db:2f:ca:
9c:73:90:31:fa:a9:4e:e0:dc:31:b4:be:e3:66:b3:35:6c:aa:
d1:cb:47:92:8e:fd:5b:dc:0e:f6:56:78:9d:1f:1c:1a:08:56:
5d:f2:b6:f7:39:76:b2:75:8d:b4:88:eb:d7:a6:a4:04:9d:3e:
6c:36:e1:31:a8:d2:59:76:b2:5f:50:d6:49:de:05:37:1f:94:
6e:1a:17:da:f4:1f:e3:43:2d:4a:c6:04:16:83:2b:97:b1:7a:
55:a4:01:f5:7b:c4:39:34:f6:2f:dc:a1:39:43:5e:cc:3e:9e:
27:6e:16:1b:cc:86:fe:8b:23:8e:20:7a:91:2c:76:5e:e6:13:
6e:53:ca:2e:dc:6b:c1:e1:ad:86:22:d4:d7:66:90:de:7a:87:
7e:83:61:7b:7d:ac:f9:c2:ec:de:b1:f8:79:3f:9b:af:1f:8d:
20:9b:0d:72:07:79:90:42:89:28:90:44:b9:9f:26:51:a8:87:
d2:7b:d0:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:32 2024 by rpki-client on console-ams.rpki-client.org