Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/cc37cf-b056-41d9-b57b-1dd5dab36f9f/1/nImm5VBba8HNunH1aEWXzDkPQ_k.roa
File: nImm5VBba8HNunH1aEWXzDkPQ_k.roa (raw, json)
Hash identifier: 0Un8LgqyfeDxzJPwlrlTzP+RNB0O26atKdQKPXSYpZc=
Subject key identifier: 9C:89:A6:E5:50:5B:6B:C1:CD:BA:71:F5:68:45:97:CC:39:0F:43:F9
Certificate issuer: /CN=2983841bc09f1fd4fe3de991016c0b7126fba52e
Certificate serial: 018917D84893935C0513EAA58A06F5BC9154
Authority key identifier: 29:83:84:1B:C0:9F:1F:D4:FE:3D:E9:91:01:6C:0B:71:26:FB:A5:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYOEG8CfH9T-PemRAWwLcSb7pS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/cc37cf-b056-41d9-b57b-1dd5dab36f9f/1/nImm5VBba8HNunH1aEWXzDkPQ_k.roa
Signing time: Sun 02 Jul 2023 18:23:17 +0000
ROA not before: Sun 02 Jul 2023 18:23:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 79.110.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 11 Aug 2023 21:23:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:17:d8:48:93:93:5c:05:13:ea:a5:8a:06:f5:bc:91:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2983841bc09f1fd4fe3de991016c0b7126fba52e
Validity
Not Before: Jul 2 18:23:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9c89a6e5505b6bc1cdba71f5684597cc390f43f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:18:ca:61:93:02:f4:1a:8a:2c:0c:67:9b:dc:
7d:89:c6:e8:a0:40:f8:c6:db:58:50:dd:94:bf:71:
ee:22:ce:f7:b1:7c:9d:c1:1e:91:3f:21:59:00:8d:
3e:55:b1:07:f8:6d:e6:13:95:db:5e:8a:72:11:97:
7a:e3:fa:09:d8:a8:29:69:24:00:f2:f1:0b:b4:4b:
b4:ab:48:34:d8:01:12:01:bf:4c:1c:ac:c7:f6:09:
ad:2f:dd:1f:19:4b:f6:3d:8b:92:1e:4e:c7:09:64:
15:38:73:2e:cc:ab:2b:89:f2:28:69:ec:b0:59:66:
88:e5:ab:d8:10:01:69:0f:4c:82:4f:70:0d:27:8d:
2f:2a:3c:5c:02:d3:b7:32:a0:11:e8:7c:28:15:4c:
e7:2b:3b:62:7d:88:c9:ad:b0:a2:03:0f:f2:61:b7:
29:5b:ee:b3:ba:56:19:fc:91:6f:ff:3e:b5:a3:57:
44:70:f4:51:30:10:13:df:8b:6e:f8:a2:24:2b:7d:
d5:7c:da:ed:bf:83:a7:ff:5f:ea:75:64:87:db:7b:
c3:00:6f:e4:ec:ed:60:ae:c7:49:8c:b5:dd:18:cb:
e4:91:f0:66:3e:8e:51:57:c0:1f:c7:75:f7:f5:ab:
08:84:3c:f9:ec:d4:ba:3e:15:b3:33:9b:c0:00:31:
34:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:89:A6:E5:50:5B:6B:C1:CD:BA:71:F5:68:45:97:CC:39:0F:43:F9
X509v3 Authority Key Identifier:
keyid:29:83:84:1B:C0:9F:1F:D4:FE:3D:E9:91:01:6C:0B:71:26:FB:A5:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYOEG8CfH9T-PemRAWwLcSb7pS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/cc37cf-b056-41d9-b57b-1dd5dab36f9f/1/nImm5VBba8HNunH1aEWXzDkPQ_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/cc37cf-b056-41d9-b57b-1dd5dab36f9f/1/KYOEG8CfH9T-PemRAWwLcSb7pS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.110.166.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:09:d4:3f:e0:15:dc:38:45:5b:79:ea:26:29:e7:22:d3:83:
39:a3:2d:93:eb:bf:13:08:b6:4f:25:1c:c9:fa:3c:23:59:c9:
fe:25:8b:3e:2a:55:9a:9c:c9:b8:d3:da:22:a3:11:a5:2d:6f:
69:59:99:e5:7d:79:49:f0:fc:e5:98:bf:fc:70:1c:50:d2:4b:
8f:1d:9c:63:9f:24:63:db:d9:55:67:29:5d:07:90:ec:79:aa:
16:17:f2:62:0f:2f:b4:81:d6:ba:8b:50:a2:1e:2e:73:bf:f2:
12:cf:94:e1:63:9e:42:a4:fa:87:b5:a0:2c:c6:3b:79:19:42:
f1:92:76:2b:f4:dd:de:66:e5:6e:c2:5d:02:ee:ad:b3:f6:55:
9d:5c:3e:5c:54:9f:d3:e5:c2:48:b5:87:91:a2:af:61:05:fb:
09:64:3c:20:81:d7:5e:f7:08:7c:5e:65:ec:80:ad:9e:ae:e6:
46:9e:63:90:30:3c:cb:c9:c0:81:fb:0e:10:55:d6:45:a1:36:
19:7e:58:b5:40:32:15:2e:0b:93:b9:59:f5:69:6a:93:b2:1b:
7b:39:3f:9d:34:4d:e3:c0:9f:38:50:39:b4:f9:ae:67:73:b9:
d9:12:4e:4f:39:6e:49:c1:c2:fd:5c:07:13:6e:e4:85:12:b9:
7e:3b:6e:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:44 2024 by rpki-client on console-ams.rpki-client.org