Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/4ffcb0-bc57-4602-ad3d-524d144301ff/1/9eH-kn7ME1u36JHmVRyOVCFjObk.roa
File: 9eH-kn7ME1u36JHmVRyOVCFjObk.roa (raw, json)
Hash identifier: W2wws1ELSbL6Y8Yj9eBPzRf4cCS9EN7JfhuvHyVFHa8=
Subject key identifier: F5:E1:FE:92:7E:CC:13:5B:B7:E8:91:E6:55:1C:8E:54:21:63:39:B9
Certificate issuer: /CN=9edc3ff166155e6988be8095fcb420001d8be21d
Certificate serial: 01856DC1B2EC1C8620E652ADDFAFC86528E1
Authority key identifier: 9E:DC:3F:F1:66:15:5E:69:88:BE:80:95:FC:B4:20:00:1D:8B:E2:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ntw_8WYVXmmIvoCV_LQgAB2L4h0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/4ffcb0-bc57-4602-ad3d-524d144301ff/1/9eH-kn7ME1u36JHmVRyOVCFjObk.roa
Signing time: Sun 01 Jan 2023 14:34:48 +0000
ROA not before: Sun 01 Jan 2023 14:34:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209491
IP address blocks: 171.22.20.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:c1:b2:ec:1c:86:20:e6:52:ad:df:af:c8:65:28:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9edc3ff166155e6988be8095fcb420001d8be21d
Validity
Not Before: Jan 1 14:34:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f5e1fe927ecc135bb7e891e6551c8e54216339b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:99:4e:2d:de:0a:bd:56:32:1e:60:94:c6:1b:
3b:68:a4:1c:1e:2e:be:b5:35:f4:ee:02:1a:ca:aa:
ab:a9:ed:2c:eb:db:e8:0e:04:97:c6:b0:eb:e0:ad:
6c:67:3b:af:53:bd:95:73:77:91:5d:a4:53:32:0a:
34:fb:6f:96:b9:b0:63:ea:ae:3d:73:dc:68:22:ae:
f0:ac:cc:ad:2b:e0:e9:94:93:0b:c7:45:66:4b:db:
b4:ad:33:6d:3e:c6:e9:9f:8e:09:28:13:81:cf:a2:
90:18:76:45:ad:83:11:b5:a8:b1:e2:20:5c:94:6b:
06:cb:2a:77:2d:4f:3c:19:90:da:8a:cb:18:05:b6:
16:e8:df:73:d6:e6:c4:ed:2d:6a:0c:86:19:37:09:
9b:d6:e9:d5:99:ea:56:61:89:d5:60:3c:5b:ab:4a:
02:5d:46:ca:68:4f:b1:60:82:94:98:15:d0:39:42:
dd:94:d4:a2:e4:c5:41:77:8e:98:ea:50:6b:11:f8:
bb:fb:f6:86:3c:f9:fa:df:3c:2b:77:2a:b5:c0:fe:
30:b3:d2:52:28:60:7d:1f:d3:b8:64:65:7a:7a:6c:
73:2a:6b:e0:fd:c6:1b:1d:0e:86:d7:c5:74:9a:48:
14:85:13:77:b0:0e:1f:b6:58:fd:40:63:1f:34:15:
ad:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:E1:FE:92:7E:CC:13:5B:B7:E8:91:E6:55:1C:8E:54:21:63:39:B9
X509v3 Authority Key Identifier:
keyid:9E:DC:3F:F1:66:15:5E:69:88:BE:80:95:FC:B4:20:00:1D:8B:E2:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ntw_8WYVXmmIvoCV_LQgAB2L4h0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/4ffcb0-bc57-4602-ad3d-524d144301ff/1/9eH-kn7ME1u36JHmVRyOVCFjObk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/4ffcb0-bc57-4602-ad3d-524d144301ff/1/ntw_8WYVXmmIvoCV_LQgAB2L4h0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
171.22.20.0/22
Signature Algorithm: sha256WithRSAEncryption
64:26:6d:a6:23:39:ec:85:e2:06:90:18:98:26:f9:01:b0:4c:
77:7a:9e:94:55:96:19:8e:72:f8:26:ab:4e:7e:3b:da:3f:39:
a2:d6:90:54:4d:b6:9e:af:fc:41:ef:bb:85:aa:68:75:eb:24:
2e:7b:c8:c8:f7:fc:6f:6a:d4:eb:88:29:90:f4:8d:f8:a4:e0:
b1:18:c1:7a:7c:d8:61:af:0f:80:8a:05:8f:8d:af:37:96:47:
4e:46:63:58:40:eb:57:14:b4:4c:85:0a:77:31:a5:35:a6:39:
09:76:48:62:9c:7d:23:49:36:ec:c5:a8:89:29:07:65:99:54:
7f:4b:d2:d1:34:76:2d:46:3e:55:95:c5:b2:e9:55:83:b9:b5:
11:c6:40:62:6f:94:96:2a:b8:ec:1f:a5:a8:5b:6a:1a:58:fe:
58:34:d4:15:c3:b2:3a:1a:b0:86:64:02:11:a7:91:7e:80:d9:
e9:d0:01:87:93:b6:85:16:ce:53:7d:7b:32:e6:e8:6f:3f:9f:
f4:0c:9f:e6:f3:ac:90:88:4a:8c:14:40:b1:a9:d8:5f:1f:47:
55:ae:b2:70:b5:10:c3:fa:a6:45:8c:6b:04:0b:ab:d3:c5:e2:
62:c4:51:07:9b:4b:73:ac:24:f3:e3:cc:c0:c2:18:54:af:e7:
ed:15:8c:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:10 2024 by rpki-client on console-ams.rpki-client.org