Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/npb2SEjUMtDe5NDekMXcCBuoq1o.roa
File: npb2SEjUMtDe5NDekMXcCBuoq1o.roa (raw, json)
Hash identifier: /isYONO8N2CJlqzcGJw5tVfz2U0aCYmjfFrAkShqb38=
Subject key identifier: 9E:96:F6:48:48:D4:32:D0:DE:E4:D0:DE:90:C5:DC:08:1B:A8:AB:5A
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 0189CEEF56197F1608349C0A8F230D79673B
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/npb2SEjUMtDe5NDekMXcCBuoq1o.roa
Signing time: Mon 07 Aug 2023 07:38:58 +0000
ROA not before: Mon 07 Aug 2023 07:38:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1653
IP address blocks: 194.14.45.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ce:ef:56:19:7f:16:08:34:9c:0a:8f:23:0d:79:67:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Aug 7 07:38:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9e96f64848d432d0dee4d0de90c5dc081ba8ab5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:04:96:79:98:6e:b3:d4:17:f6:52:4c:c4:5d:
3e:85:6b:cf:00:83:ed:9a:21:67:2f:02:f4:ef:6d:
59:4b:6c:89:a5:2d:ea:d5:e2:3e:22:49:de:4b:14:
80:65:4e:89:c2:43:50:ab:f5:15:ed:e1:e3:3d:b4:
3f:6e:86:07:43:83:a8:3c:85:96:3c:41:ef:68:f9:
57:ed:d6:16:56:9d:29:8e:60:87:c0:30:c0:73:85:
0f:38:30:91:f1:b6:86:a4:7d:4a:74:c0:5b:1d:f9:
83:cd:94:9c:c1:c5:2f:f8:9a:29:72:54:d3:33:dd:
59:ce:c0:3e:b3:74:70:d2:88:29:90:3d:da:b1:c7:
97:72:56:51:3a:de:54:75:27:5c:be:db:24:52:da:
d7:a9:f0:09:4f:19:ad:46:0d:0a:96:24:d3:a3:06:
5e:bb:53:d4:1b:9e:9a:17:ec:c8:d9:96:82:d5:77:
5d:f1:1c:9f:43:fd:84:4f:71:69:f7:6d:27:b5:bd:
26:4d:cc:3d:06:52:4d:2c:6d:7b:fb:05:80:a1:7b:
e1:7d:d5:b8:ac:fa:db:1f:3c:2d:f4:42:6f:ea:5d:
24:f3:7b:43:65:65:58:8a:21:b5:66:08:3e:81:78:
50:6a:91:d3:00:d6:4e:b4:4d:72:0a:63:88:c4:9d:
ac:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:96:F6:48:48:D4:32:D0:DE:E4:D0:DE:90:C5:DC:08:1B:A8:AB:5A
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/npb2SEjUMtDe5NDekMXcCBuoq1o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.14.45.0/24
Signature Algorithm: sha256WithRSAEncryption
56:2a:fc:c7:cd:d9:db:33:8d:20:9b:e5:df:b6:26:b1:3b:57:
30:c7:f2:9d:72:11:8a:f9:fd:66:2a:8e:92:81:9b:93:e8:4b:
38:92:12:5c:35:c8:c2:d3:d1:2d:24:fc:ca:c6:8b:fc:34:ef:
77:0f:a1:af:de:d6:b8:33:25:6c:09:57:08:57:bf:e6:69:01:
9c:eb:e1:c9:ec:d9:c7:3e:42:8a:59:97:3b:cb:4c:09:f7:fc:
00:10:c5:04:77:5e:30:0d:63:96:80:8d:8c:b2:c8:c3:48:36:
c6:1d:28:93:78:a2:ee:3e:a4:69:e7:a3:70:43:28:44:41:f2:
92:88:cb:2b:b8:37:3c:b9:9c:f3:ef:f1:52:33:a0:fe:3e:2d:
3c:23:1c:ae:76:de:75:d5:27:8a:49:9a:f6:b3:ea:e3:cb:81:
62:d9:57:a8:e8:65:43:f9:2b:b8:75:2f:cb:8c:e4:fa:cc:e2:
56:ac:65:f4:1d:3a:ee:38:ac:1c:17:55:8a:45:65:2c:bb:8b:
e3:41:94:b1:08:63:68:cc:7d:06:ae:40:4f:fb:cf:d0:34:ad:
b4:2e:50:45:27:53:ee:f8:2f:b5:2f:f3:dc:58:7f:ea:18:a9:
89:e6:ed:b5:23:b1:f8:6f:c7:b3:d4:49:1d:68:1f:f1:9f:28:
39:9e:28:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:33:20 2024 by rpki-client on console-ams.rpki-client.org