Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/NG7-9GXWNxB_CKsxxuEMUK_TVuo.roa
File: NG7-9GXWNxB_CKsxxuEMUK_TVuo.roa (raw, json)
Hash identifier: 9Xk4fF+C+C0I9lwVkBAxBQDYTfX/0KGgw9dOut7gQnI=
Subject key identifier: 34:6E:FE:F4:65:D6:37:10:7F:08:AB:31:C6:E1:0C:50:AF:D3:56:EA
Certificate issuer: /CN=874bf8070cee4305d1a389e910fb5102bbcc1941
Certificate serial: 018A41AA742247A1167BE6DFCEACF07DACB0
Authority key identifier: 87:4B:F8:07:0C:EE:43:05:D1:A3:89:E9:10:FB:51:02:BB:CC:19:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h0v4BwzuQwXRo4npEPtRArvMGUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/NG7-9GXWNxB_CKsxxuEMUK_TVuo.roa
Signing time: Tue 29 Aug 2023 14:20:04 +0000
ROA not before: Tue 29 Aug 2023 14:20:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399073
IP address blocks: 85.237.72.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 29 Sep 2023 05:08:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:41:aa:74:22:47:a1:16:7b:e6:df:ce:ac:f0:7d:ac:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=874bf8070cee4305d1a389e910fb5102bbcc1941
Validity
Not Before: Aug 29 14:20:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=346efef465d637107f08ab31c6e10c50afd356ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:3a:ac:43:e1:3d:d5:8e:ff:ab:4f:a8:b2:73:
8c:7e:9d:54:a2:72:68:67:ac:a5:7c:39:08:61:49:
8d:84:03:1e:f5:0a:db:17:b0:9e:97:a1:a0:dc:59:
b6:a6:fc:87:2a:79:e6:4a:42:1a:ca:d1:af:ff:3d:
41:b0:6f:98:6c:53:45:b4:93:01:be:a8:58:51:ca:
9a:6b:22:92:75:3d:82:1c:fd:27:f2:a6:73:06:6c:
1b:21:06:22:f7:4e:6e:bc:20:f2:1a:df:bc:6b:19:
26:74:4f:e8:3d:b7:9a:99:46:e5:34:cd:ae:d6:5c:
29:c0:7c:5a:86:65:8b:a4:89:ac:b5:4d:94:e2:36:
19:36:10:75:85:92:f8:5e:74:32:30:be:86:1c:7e:
96:4b:f0:90:44:01:af:fd:6c:44:82:bb:42:b2:12:
8b:14:34:cf:6e:56:27:60:7c:59:49:e7:3a:4e:a6:
90:50:78:55:af:9c:ee:e5:98:ba:62:8c:37:76:38:
fc:7f:9e:4f:ea:d4:25:ff:39:a6:d7:55:06:83:8f:
a7:89:ef:3b:fe:b8:fa:48:97:49:98:06:d2:2c:df:
ab:ac:73:0c:e5:7a:96:d8:00:9c:6d:e0:f5:54:c7:
6a:a4:34:84:12:d9:6b:2b:36:cc:2f:28:39:73:13:
cd:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:6E:FE:F4:65:D6:37:10:7F:08:AB:31:C6:E1:0C:50:AF:D3:56:EA
X509v3 Authority Key Identifier:
keyid:87:4B:F8:07:0C:EE:43:05:D1:A3:89:E9:10:FB:51:02:BB:CC:19:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h0v4BwzuQwXRo4npEPtRArvMGUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/NG7-9GXWNxB_CKsxxuEMUK_TVuo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/h0v4BwzuQwXRo4npEPtRArvMGUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.72.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:5b:59:47:1d:1c:6f:86:e9:b5:a3:04:8a:18:98:4e:f6:34:
2e:c2:2b:e2:19:d4:29:6b:3a:48:f7:f6:e0:ae:9b:d0:fc:0f:
43:6f:a0:36:60:cb:a7:95:b1:37:43:ac:ef:ec:4b:70:d1:e4:
3d:e7:2e:dd:94:5e:d2:cc:70:38:a0:8d:0d:ff:95:11:ec:e5:
93:cc:cb:10:ea:2e:ab:e8:24:64:3e:94:94:f1:cb:97:e4:5b:
46:f0:8a:ba:e9:40:b5:6c:fd:c6:40:05:b6:81:59:61:6e:c4:
42:f3:36:17:2c:ae:7d:ee:d2:51:1c:da:4d:fc:34:cd:9f:de:
59:c6:90:7e:32:e6:6b:a8:cc:a8:a8:9c:e6:de:15:14:25:05:
8d:f5:73:0a:a6:51:81:40:85:3c:4d:30:ff:af:4d:91:a2:4e:
be:61:0f:6b:e7:3d:0f:0a:32:59:f3:5b:2e:08:5b:e3:9c:46:
30:05:52:bf:78:a5:3b:31:56:67:4e:02:7d:1f:37:18:c9:09:
62:f4:4e:ca:99:8a:17:9e:37:f7:4c:87:df:a4:92:6a:2f:f2:
1f:8d:82:97:28:5a:28:4e:1e:c6:3c:df:c2:bc:90:bb:2c:08:
38:cf:96:bb:b4:21:71:5f:ba:0b:e8:b8:77:d1:27:99:a1:36:
4e:d9:3f:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:00 2024 by rpki-client on console-ams.rpki-client.org