Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/372d29-075e-47fa-9c8f-8f4b0645d604/1/nfR-3n_Ycy0D9zIrUyQZ3lLAteM.roa
File: nfR-3n_Ycy0D9zIrUyQZ3lLAteM.roa (raw, json)
Hash identifier: rnq6TDfxxspgf7r2GVIhjJgrUlTnYQkTjSU80071860=
Subject key identifier: 9D:F4:7E:DE:7F:D8:73:2D:03:F7:32:2B:53:24:19:DE:52:C0:B5:E3
Certificate issuer: /CN=fcfc95f1b88011e6dc33d041b98b3130776c428f
Certificate serial: 018C579B3D7F2C6F3817A409D14DFEE42CAB
Authority key identifier: FC:FC:95:F1:B8:80:11:E6:DC:33:D0:41:B9:8B:31:30:77:6C:42:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_PyV8biAEebcM9BBuYsxMHdsQo8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/372d29-075e-47fa-9c8f-8f4b0645d604/1/nfR-3n_Ycy0D9zIrUyQZ3lLAteM.roa
Signing time: Mon 11 Dec 2023 06:40:40 +0000
ROA not before: Mon 11 Dec 2023 06:40:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20676
IP address blocks: 91.208.47.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:57:9b:3d:7f:2c:6f:38:17:a4:09:d1:4d:fe:e4:2c:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fcfc95f1b88011e6dc33d041b98b3130776c428f
Validity
Not Before: Dec 11 06:40:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9df47ede7fd8732d03f7322b532419de52c0b5e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:ae:bc:51:a5:1b:de:48:6d:da:2a:b5:b7:cb:
b7:99:ca:2e:a6:49:46:8a:08:74:2e:87:c4:79:34:
26:db:58:1e:17:e1:9a:89:0e:13:b7:ee:20:13:12:
33:12:7a:a6:19:2b:17:5d:67:35:59:76:26:a4:95:
72:ad:33:04:58:41:bb:90:9f:2e:2a:09:b0:15:2b:
ba:44:29:31:a4:b9:55:09:2b:a0:57:02:47:4c:17:
29:3b:6d:93:47:e6:28:0c:26:04:2d:aa:85:9d:64:
52:2a:b0:b0:1c:d2:de:6f:c1:11:fe:26:ef:9d:f2:
60:a2:5d:8c:59:fa:f7:46:7d:9c:9c:47:bb:c3:53:
6e:79:6a:b1:08:54:a0:77:88:99:1a:bd:cd:7e:9d:
a2:b5:81:98:1f:5b:bf:f9:db:7a:9b:5a:66:11:b2:
13:25:a0:9d:4d:66:a5:2a:63:97:aa:0c:47:a0:d9:
57:76:68:64:bc:19:63:06:4a:4e:ec:c0:92:11:40:
2d:b2:86:e1:fa:40:f4:b2:9f:66:0e:f3:97:81:3e:
7d:80:ba:68:0e:2a:0e:cc:79:1b:24:c2:38:48:a2:
ba:c3:45:14:c9:41:69:74:27:fc:fe:ae:d3:a7:1a:
4d:49:59:00:0c:29:be:5c:d8:78:c8:fe:1f:9f:ac:
cc:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:F4:7E:DE:7F:D8:73:2D:03:F7:32:2B:53:24:19:DE:52:C0:B5:E3
X509v3 Authority Key Identifier:
keyid:FC:FC:95:F1:B8:80:11:E6:DC:33:D0:41:B9:8B:31:30:77:6C:42:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_PyV8biAEebcM9BBuYsxMHdsQo8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/372d29-075e-47fa-9c8f-8f4b0645d604/1/nfR-3n_Ycy0D9zIrUyQZ3lLAteM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/372d29-075e-47fa-9c8f-8f4b0645d604/1/_PyV8biAEebcM9BBuYsxMHdsQo8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.47.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:fd:8d:82:6b:04:d8:9a:f5:05:7d:ab:d2:4b:ca:f2:74:06:
39:7e:a7:55:29:2c:8b:dc:7f:bd:5d:50:b6:d8:b9:b8:0b:1a:
e5:f8:4f:ef:db:83:bb:5c:cb:3b:8d:e0:73:16:94:41:da:70:
0c:b4:47:27:37:22:c8:63:02:32:72:13:ed:0b:0d:d4:62:5a:
c0:57:b4:78:eb:88:92:db:77:f4:22:a9:13:6b:59:43:17:1c:
8c:5c:78:c7:33:5f:0f:ec:d0:f1:43:2e:84:29:cc:11:39:86:
d6:22:8c:2c:26:48:92:2d:88:47:a4:2d:a1:03:b7:45:89:75:
98:a4:45:a4:99:c8:ff:11:a0:34:79:6a:56:9a:e8:bb:04:53:
56:fa:0c:fb:8a:75:c0:c2:4a:37:2f:76:7e:19:1b:1d:8d:8f:
58:fd:d7:fb:fa:01:3f:bb:26:88:25:86:cb:64:35:c8:08:31:
d6:71:81:de:f7:6d:21:04:3e:e7:7e:33:bb:c3:1d:75:23:d4:
56:e4:0c:11:68:cf:2c:ee:ba:61:cd:c2:fb:e3:05:b5:4b:53:
ea:c5:8b:0b:b5:33:00:8f:5d:65:f9:42:17:67:54:b9:56:53:
48:e6:17:d7:5c:a0:47:fe:16:95:12:18:ac:09:e4:d6:f1:d1:
0a:6d:4b:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:06 2024 by rpki-client on console-fra.rpki-client.org