Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/c3069e-5ffc-4c8c-91dc-31d197f139d8/1/nrdqEsbxQNX3ECI1-UzrxY86JiE.roa
File: nrdqEsbxQNX3ECI1-UzrxY86JiE.roa (raw, json)
Hash identifier: BHns/fGrnWUB26Olc7ig1D3yg+fix4NDPt/LxvZSxu8=
Subject key identifier: 9E:B7:6A:12:C6:F1:40:D5:F7:10:22:35:F9:4C:EB:C5:8F:3A:26:21
Certificate issuer: /CN=e875464e89816ef00b0369502018a7e59ce2d36c
Certificate serial: 0185BAB54AF2585BB17833E8F96B83718A13
Authority key identifier: E8:75:46:4E:89:81:6E:F0:0B:03:69:50:20:18:A7:E5:9C:E2:D3:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6HVGTomBbvALA2lQIBin5Zzi02w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/c3069e-5ffc-4c8c-91dc-31d197f139d8/1/nrdqEsbxQNX3ECI1-UzrxY86JiE.roa
Signing time: Mon 16 Jan 2023 13:12:01 +0000
ROA not before: Mon 16 Jan 2023 13:12:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198247
IP address blocks: 139.45.248.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ba:b5:4a:f2:58:5b:b1:78:33:e8:f9:6b:83:71:8a:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e875464e89816ef00b0369502018a7e59ce2d36c
Validity
Not Before: Jan 16 13:12:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9eb76a12c6f140d5f7102235f94cebc58f3a2621
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:6a:bb:ff:ba:8d:fe:80:1e:b2:a6:7c:a4:65:
25:e2:76:d7:d8:88:fd:5c:11:69:a7:4f:8b:40:48:
e6:da:ec:f3:d1:61:0d:f7:5a:6e:b8:54:9d:c0:78:
60:c0:25:fd:27:11:ec:2b:f0:a4:fb:04:27:1d:30:
a0:3c:18:91:e4:ef:90:6c:c8:7b:44:3c:08:93:24:
31:9c:e2:ae:d6:3e:44:22:21:b6:2f:e4:44:9f:ee:
40:d9:40:7d:fb:f5:fd:fa:fe:38:ce:66:de:f0:be:
75:6a:8b:74:bb:3f:c4:eb:08:06:b1:0e:5a:de:e8:
02:26:6b:d3:63:8c:1e:28:bf:88:22:7b:e5:dd:bc:
d0:ed:89:7f:db:2c:ba:d7:72:42:ad:2e:15:00:71:
7d:b4:61:03:87:d2:c2:41:16:2f:e2:33:6a:58:37:
12:a9:fe:2c:75:9f:9f:b8:26:d3:82:72:da:12:55:
92:27:3f:3a:04:6c:eb:1f:33:dc:67:b5:3a:a6:b0:
61:39:77:ac:c2:3d:bb:66:f7:8c:7c:e1:00:48:b6:
b9:a3:d4:6d:78:35:11:c1:3f:94:2f:fa:01:72:5b:
af:d4:e3:84:8a:85:87:5d:f5:d6:9b:d1:ee:df:c2:
7f:17:d7:79:a8:43:0e:8f:4b:e0:29:42:d1:da:3e:
13:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:B7:6A:12:C6:F1:40:D5:F7:10:22:35:F9:4C:EB:C5:8F:3A:26:21
X509v3 Authority Key Identifier:
keyid:E8:75:46:4E:89:81:6E:F0:0B:03:69:50:20:18:A7:E5:9C:E2:D3:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6HVGTomBbvALA2lQIBin5Zzi02w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/c3069e-5ffc-4c8c-91dc-31d197f139d8/1/nrdqEsbxQNX3ECI1-UzrxY86JiE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/c3069e-5ffc-4c8c-91dc-31d197f139d8/1/6HVGTomBbvALA2lQIBin5Zzi02w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.45.248.0/21
Signature Algorithm: sha256WithRSAEncryption
ad:65:32:ca:b5:60:d0:59:b1:86:39:19:26:d0:3b:6e:7e:c9:
bc:c2:64:b1:b1:d4:d3:81:48:fe:92:85:31:3d:ab:50:74:90:
71:06:a4:36:35:11:05:c7:28:40:9a:b5:0f:66:db:2b:69:68:
e5:3d:66:8f:45:c1:92:ca:d7:c0:08:ca:68:01:75:c6:1f:ca:
4d:4c:6e:fa:46:63:e0:74:00:75:ad:54:25:4a:c4:cc:06:a3:
2e:03:6a:c0:31:ae:3c:77:4d:0e:ae:7c:aa:3f:aa:66:16:ff:
4b:6c:86:52:6c:7c:cf:2d:94:6e:f1:0f:4e:08:a9:4f:6c:18:
69:a0:59:2b:3f:1f:2b:57:0c:e4:71:a0:98:df:59:e7:a5:14:
e4:69:da:e7:9f:8c:56:38:3f:da:3b:0e:3a:ff:95:41:f5:37:
7d:f0:a2:ea:c8:dd:90:ae:aa:7e:f0:08:b3:d5:d6:cb:18:fc:
b3:00:7f:c9:a2:f2:42:31:da:01:cf:32:a8:96:7e:ad:f8:2a:
4a:3a:bd:ee:a5:3a:44:90:9b:ec:3a:61:d9:92:e5:a6:e6:1e:
c9:cb:ac:e8:46:a5:00:18:ec:94:d1:97:f6:db:b7:fb:f5:8b:
70:44:f9:18:15:1e:6e:85:5c:04:74:37:f4:bc:76:6c:e0:48:
7e:41:11:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:37 2023 by rpki-client on console-fra.rpki-client.org