Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/d38360-4d1f-422e-90ae-08b9e1101aa7/1/NxMrHrY-IHXrPaCJoPhukmz-OLg.roa
File: NxMrHrY-IHXrPaCJoPhukmz-OLg.roa (raw, json)
Hash identifier: hyuqlqrCWC/O0EEyWlWmfJOZUoiDmyZvsh86wrKpFF0=
Subject key identifier: 37:13:2B:1E:B6:3E:20:75:EB:3D:A0:89:A0:F8:6E:92:6C:FE:38:B8
Certificate issuer: /CN=ccb0ca2291276d7d2a2f8a7050f4ba827fe910a1
Certificate serial: 0187BF308727418A1EB3DE9F9015E84E6C45
Authority key identifier: CC:B0:CA:22:91:27:6D:7D:2A:2F:8A:70:50:F4:BA:82:7F:E9:10:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zLDKIpEnbX0qL4pwUPS6gn_pEKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/d38360-4d1f-422e-90ae-08b9e1101aa7/1/NxMrHrY-IHXrPaCJoPhukmz-OLg.roa
Signing time: Wed 26 Apr 2023 20:10:41 +0000
ROA not before: Wed 26 Apr 2023 20:10:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211753
IP address blocks: 87.254.36.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:bf:30:87:27:41:8a:1e:b3:de:9f:90:15:e8:4e:6c:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccb0ca2291276d7d2a2f8a7050f4ba827fe910a1
Validity
Not Before: Apr 26 20:10:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=37132b1eb63e2075eb3da089a0f86e926cfe38b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:81:12:29:6d:81:85:9e:1b:04:cb:1d:03:24:
54:54:7d:fa:2e:cd:86:e8:65:ad:d0:d1:e1:f2:2e:
df:fa:98:e8:ff:5e:78:9f:f2:03:b1:e4:6f:ee:eb:
0e:a1:f4:a3:2d:b5:22:4d:52:e1:b5:e6:f0:87:6b:
6c:3c:ca:e4:ad:e5:16:5f:dd:fd:6e:e6:1c:f9:a0:
04:07:01:93:b3:56:85:34:71:f4:56:16:69:34:1b:
06:39:6f:4e:8b:86:7b:b1:00:0f:69:71:71:e9:a9:
2f:2f:d9:54:02:b2:68:ce:e1:c9:c1:54:89:92:6b:
1d:36:f1:b3:e4:33:04:72:5a:54:41:4a:4a:e2:0d:
9a:c1:44:d7:37:23:bf:3c:bb:5b:97:0c:eb:ba:8a:
e7:07:54:20:f4:e5:a7:35:23:3a:63:e7:ea:1c:36:
58:b0:07:2b:20:14:58:26:22:bd:e4:32:ab:49:21:
f7:88:b0:e7:5c:76:1c:3b:fc:c9:fe:77:ee:b6:bb:
da:25:63:a9:4f:2b:4e:8f:2b:e4:10:e0:9a:e7:8b:
43:b4:fb:e7:ca:0a:b5:ef:d4:14:3c:90:2b:5a:6a:
cc:77:2a:8d:90:b9:35:39:af:09:e5:c9:52:13:10:
7f:54:f9:1a:42:19:5b:f7:59:03:07:0f:ba:0c:48:
5d:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:13:2B:1E:B6:3E:20:75:EB:3D:A0:89:A0:F8:6E:92:6C:FE:38:B8
X509v3 Authority Key Identifier:
keyid:CC:B0:CA:22:91:27:6D:7D:2A:2F:8A:70:50:F4:BA:82:7F:E9:10:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zLDKIpEnbX0qL4pwUPS6gn_pEKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/d38360-4d1f-422e-90ae-08b9e1101aa7/1/NxMrHrY-IHXrPaCJoPhukmz-OLg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/d38360-4d1f-422e-90ae-08b9e1101aa7/1/zLDKIpEnbX0qL4pwUPS6gn_pEKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.254.36.0/24
Signature Algorithm: sha256WithRSAEncryption
61:fe:12:80:61:c3:56:51:fe:3b:2a:d2:f0:cb:f4:0e:7d:f9:
de:bd:98:7e:df:0e:07:77:c5:5c:f0:85:66:15:01:2f:b2:03:
da:e6:cf:f4:8b:d8:39:79:0f:ad:e8:4e:c5:0e:b3:31:ec:1e:
30:37:f3:a6:fc:3f:39:79:01:1e:67:86:51:d2:e4:40:a2:c8:
8f:ea:17:16:d3:8b:9b:16:1e:71:8c:6c:1b:1d:71:c3:71:e9:
1d:93:1c:6b:06:34:17:b4:36:e1:8c:14:ec:d0:f0:16:9f:3a:
d2:3d:11:21:a5:d6:12:ca:43:3a:7b:66:76:52:19:8a:86:08:
db:be:10:67:0a:85:c9:4b:e7:2c:09:d3:10:ef:cd:b5:50:27:
1a:37:42:62:a0:32:28:c6:cd:92:31:eb:05:5e:63:7f:20:5a:
a9:3d:c2:1f:81:c4:7f:1b:87:0d:f1:5f:07:2f:5c:23:7b:36:
61:2a:c8:fd:49:f0:36:ab:9b:c7:a0:80:54:e3:05:ad:14:e6:
15:70:11:71:b3:a2:4a:99:2f:46:dd:9f:b2:13:94:73:39:23:
95:02:4b:f0:6f:d1:95:93:fd:78:2f:7e:a3:5d:c8:9a:d4:a0:
1d:ef:2e:12:36:42:0a:95:1c:e0:9a:4e:11:4a:99:68:e2:32:
93:95:59:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:14:55 2024 by rpki-client on console-ams.rpki-client.org