Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/NdJeRNgayMzqrYwkV3EaEy52O7M.roa
File: NdJeRNgayMzqrYwkV3EaEy52O7M.roa (raw, json)
Hash identifier: xX1vtf/hxgnFKqA3SZexDge11d0N9OkNO7K3q3yDrnI=
Subject key identifier: 35:D2:5E:44:D8:1A:C8:CC:EA:AD:8C:24:57:71:1A:13:2E:76:3B:B3
Certificate issuer: /CN=4ecf53007c79cc5e2f2d7356ba9121a78c0c7714
Certificate serial: 018A27F2376A4A9D9FB6CDFD42A4216ECF5D
Authority key identifier: 4E:CF:53:00:7C:79:CC:5E:2F:2D:73:56:BA:91:21:A7:8C:0C:77:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ts9TAHx5zF4vLXNWupEhp4wMdxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/NdJeRNgayMzqrYwkV3EaEy52O7M.roa
Signing time: Thu 24 Aug 2023 14:28:19 +0000
ROA not before: Thu 24 Aug 2023 14:28:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43447
IP address blocks: 37.47.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:27:f2:37:6a:4a:9d:9f:b6:cd:fd:42:a4:21:6e:cf:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ecf53007c79cc5e2f2d7356ba9121a78c0c7714
Validity
Not Before: Aug 24 14:28:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=35d25e44d81ac8cceaad8c2457711a132e763bb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:80:4f:65:03:29:78:b0:5b:15:2e:6d:d6:d4:
6b:8d:8e:63:14:d9:51:20:69:53:24:ec:23:c9:8f:
ba:b1:23:75:b4:e0:d7:1d:4e:21:eb:ee:51:aa:9d:
d0:0b:29:27:d3:39:15:ca:75:5a:be:37:26:01:22:
d4:99:91:a0:ad:9d:54:83:16:b0:27:d8:4c:b4:10:
6e:04:ed:b1:6b:5b:9b:71:3b:87:72:ae:89:d5:f9:
36:ed:1d:80:98:d2:0c:0f:e8:3e:d9:b8:00:f3:2d:
77:68:e9:d6:24:2f:40:0a:fc:d1:e3:27:76:1b:06:
70:c2:e2:e8:ee:a4:ff:88:6b:67:a2:c0:5d:c9:88:
13:48:ce:dd:97:da:e1:ff:ea:fd:83:ca:ce:00:eb:
39:24:9b:8e:ba:d1:39:d7:5d:29:d1:1a:2b:dd:a3:
97:3d:73:05:23:a8:5f:5c:25:11:8d:2b:12:9c:0a:
ff:29:c4:bb:51:17:a4:46:8f:d7:fa:f6:38:7f:59:
89:5d:7d:0b:15:de:25:6e:63:52:5f:0c:4e:79:26:
e6:56:75:80:31:ca:c5:ca:f3:46:94:5a:6c:41:5b:
00:e3:21:69:d3:f2:1d:7e:b0:35:a8:99:7e:07:31:
c8:81:84:59:ff:99:78:74:f4:b6:4d:c2:74:4f:15:
66:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:D2:5E:44:D8:1A:C8:CC:EA:AD:8C:24:57:71:1A:13:2E:76:3B:B3
X509v3 Authority Key Identifier:
keyid:4E:CF:53:00:7C:79:CC:5E:2F:2D:73:56:BA:91:21:A7:8C:0C:77:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ts9TAHx5zF4vLXNWupEhp4wMdxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/NdJeRNgayMzqrYwkV3EaEy52O7M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/Ts9TAHx5zF4vLXNWupEhp4wMdxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.47.0.0/16
Signature Algorithm: sha256WithRSAEncryption
56:d8:12:6c:be:2c:69:94:3c:4f:6c:be:5e:ae:5b:f9:5f:71:
c4:19:f9:da:e0:e8:54:dc:64:4e:6e:99:e8:0b:88:77:e7:8f:
4e:d9:46:5f:24:51:23:be:c4:b5:05:94:d8:09:a6:8c:f1:79:
ff:3a:31:ff:27:47:e6:bc:c7:ae:52:24:c3:79:b2:7a:08:69:
c8:56:3c:5d:81:2c:cc:0f:0a:f7:36:76:c9:ea:07:9d:58:d1:
47:c2:c5:f9:b4:65:fa:dd:8b:3a:3f:51:84:36:27:9c:b7:d7:
ee:7f:c0:0f:3f:0e:a1:0e:a5:37:1c:f5:2e:23:b8:32:ae:78:
82:74:2a:dc:14:81:6a:c8:7f:78:2d:ff:ba:cf:dd:c6:37:51:
ee:d2:57:e9:38:44:8d:db:8d:0b:a5:44:ed:f4:b5:0d:3b:89:
a1:e1:bd:f3:9a:50:59:cd:0b:73:6e:9f:94:59:7f:b0:0f:b4:
7e:94:69:59:1d:9b:75:3d:ff:a9:1d:cc:d6:87:06:7c:d4:0d:
1e:24:7a:60:1c:59:5e:5a:31:24:60:3e:b5:87:79:32:77:48:
2f:16:03:9e:3d:7a:eb:3e:d3:85:06:d6:bd:bb:f1:4b:b3:57:
59:ed:db:b7:c1:4c:24:93:8f:20:87:c4:b2:b0:07:4d:d3:05:
c7:9a:29:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:23 2024 by rpki-client on console-fra.rpki-client.org