Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/NNTRPA_KPv3QbSpDv6PAG-7B-Jg.roa
File: NNTRPA_KPv3QbSpDv6PAG-7B-Jg.roa (raw, json)
Hash identifier: 89rZQKf+ofMCEFc/S6TYIR4HssquPAg1wUWrY2+u3FU=
Subject key identifier: 34:D4:D1:3C:0F:CA:3E:FD:D0:6D:2A:43:BF:A3:C0:1B:EE:C1:F8:98
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 018571E7ADC5E30670AEB3049F0B4378EFA0
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/NNTRPA_KPv3QbSpDv6PAG-7B-Jg.roa
Signing time: Mon 02 Jan 2023 09:54:46 +0000
ROA not before: Mon 02 Jan 2023 09:54:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207107
IP address blocks: 92.52.222.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:e7:ad:c5:e3:06:70:ae:b3:04:9f:0b:43:78:ef:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jan 2 09:54:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=34d4d13c0fca3efdd06d2a43bfa3c01beec1f898
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:9a:6a:3a:ed:49:de:c5:50:18:6d:62:09:7c:
33:a5:ed:4d:75:0a:df:cc:0e:16:da:f6:63:b4:9b:
3c:b2:a8:31:37:55:85:c9:14:77:90:7f:bc:da:f8:
0c:d9:a8:21:91:76:d0:35:5f:b9:d5:2d:eb:2b:09:
7f:25:bd:21:95:42:e6:ba:ca:7a:fd:56:0c:a0:e2:
74:03:02:90:6b:a7:df:34:56:90:11:4f:18:56:66:
b0:17:47:af:69:f1:2d:7d:6d:a5:10:21:dc:2e:cc:
d4:a0:e7:29:6b:f8:93:0c:58:ba:76:b8:c5:af:e1:
d8:02:14:44:36:ce:81:6b:d1:39:6f:6a:f7:01:5b:
7b:b2:32:6a:cf:e7:a5:44:d7:03:95:04:8f:13:f2:
88:6e:4a:f9:0f:05:dd:78:59:48:f6:92:1e:00:09:
59:f2:a5:c5:14:6a:30:80:96:74:71:90:fb:a5:62:
29:52:b8:31:ce:71:b7:7f:f1:bc:91:c5:31:50:44:
aa:48:de:9f:93:e9:fb:d7:39:31:ee:e4:08:52:8a:
91:c3:ae:7d:e9:70:20:26:9f:f7:44:56:c0:ec:a6:
46:e1:c8:3c:5e:b3:76:41:10:ef:d5:02:bc:6a:f4:
63:62:b0:4e:42:a0:ab:33:ab:0d:a7:04:31:00:1f:
7a:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:D4:D1:3C:0F:CA:3E:FD:D0:6D:2A:43:BF:A3:C0:1B:EE:C1:F8:98
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/NNTRPA_KPv3QbSpDv6PAG-7B-Jg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.52.222.0/24
Signature Algorithm: sha256WithRSAEncryption
75:2f:c6:de:d4:60:99:25:b3:4a:20:74:07:e6:47:f2:a8:03:
48:0b:ca:12:b7:9a:26:ff:3e:33:87:50:68:11:aa:3e:8d:19:
8d:e0:27:35:fc:16:bd:f9:8f:a4:d3:21:e7:5d:e6:d7:e2:11:
cd:51:6b:63:98:df:de:48:2a:59:0a:75:6c:51:0b:21:56:95:
33:f0:57:84:e9:22:f4:71:05:f3:23:f1:b4:cf:b8:dd:aa:44:
79:67:82:b6:4e:84:a7:1a:a7:32:85:ac:75:e8:a3:01:5f:a0:
63:94:85:91:7f:c3:aa:10:5a:79:53:ef:52:c4:30:e0:d6:d9:
38:43:ae:d6:4b:8a:ba:60:1d:65:91:cf:c4:1d:d8:2b:ab:3e:
97:f7:cd:d6:71:80:3c:74:7c:c9:d5:91:f9:3b:89:96:2d:f0:
90:1b:90:76:dd:ff:45:ca:95:98:0b:a7:7a:a6:87:88:06:9c:
46:3a:bc:93:79:9f:ec:fa:9a:0e:89:c1:8c:1f:af:00:c9:48:
10:5b:f6:47:bf:07:76:bc:05:72:d5:a7:36:c3:08:ca:a3:19:
3b:8d:c6:0f:7d:05:97:88:e8:8a:72:b2:93:83:5b:95:41:d1:
d5:68:2c:50:1a:f6:d2:23:3f:c5:d0:40:84:23:e3:78:4c:12:
93:ba:5c:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 08:10:20 2024 by rpki-client on console-fra.rpki-client.org