Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/13a735-3b1c-4d9c-8cfa-a8ca8e4c7e77/1/NKLw2NtUUXZZvtjqElgq3BrZ3p0.roa
File: NKLw2NtUUXZZvtjqElgq3BrZ3p0.roa (raw, json)
Hash identifier: PM+JSkPl6sZmwU2LmVlMDcH8kXlVNc8nPwXmTosmERg=
Subject key identifier: 34:A2:F0:D8:DB:54:51:76:59:BE:D8:EA:12:58:2A:DC:1A:D9:DE:9D
Certificate issuer: /CN=86ee201c65d655ee9cfe251f951ea91bba154567
Certificate serial: 0188543F747BF0FFBD6B4784630CACEFCA0F
Authority key identifier: 86:EE:20:1C:65:D6:55:EE:9C:FE:25:1F:95:1E:A9:1B:BA:15:45:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hu4gHGXWVe6c_iUflR6pG7oVRWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/13a735-3b1c-4d9c-8cfa-a8ca8e4c7e77/1/NKLw2NtUUXZZvtjqElgq3BrZ3p0.roa
Signing time: Thu 25 May 2023 18:50:24 +0000
ROA not before: Thu 25 May 2023 18:50:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 185.201.19.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 25 May 2023 21:06:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:54:3f:74:7b:f0:ff:bd:6b:47:84:63:0c:ac:ef:ca:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86ee201c65d655ee9cfe251f951ea91bba154567
Validity
Not Before: May 25 18:50:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=34a2f0d8db54517659bed8ea12582adc1ad9de9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:1f:7e:e2:ad:58:28:f1:4d:31:b3:2f:65:e2:
24:68:1b:93:30:a2:8d:68:b3:91:5d:fb:7c:c8:5c:
46:46:ca:3f:05:d8:da:d1:e2:a8:e8:57:d1:c8:32:
fe:4e:1f:4a:c3:34:12:a3:66:6f:16:04:58:ef:7d:
77:01:d3:bc:25:fa:6c:10:57:cd:a9:0f:05:27:96:
4d:6a:38:67:5c:ee:11:40:df:70:61:9f:22:b6:45:
67:4f:dd:c4:72:92:cc:a2:e1:4b:9e:4c:99:9a:1f:
ae:a4:a6:86:8b:51:aa:fe:49:6c:28:b6:07:b8:79:
d8:37:25:b0:89:95:68:e4:1d:bb:96:cb:9a:3b:03:
56:44:65:96:4a:b9:5c:5d:a0:21:fa:11:12:42:6e:
cf:53:fc:e0:36:84:f7:e0:6b:ee:79:6f:e3:b5:3a:
13:ff:57:6b:76:e7:a1:f2:6c:f2:06:2f:f7:a8:2b:
de:7a:c0:7d:02:4d:20:f6:e4:53:f1:d0:b2:93:73:
9a:7f:56:7d:98:52:06:05:9f:6e:b0:7b:e6:34:62:
d6:3d:f6:75:8d:1c:f1:17:56:c3:3d:6e:fa:e5:74:
ed:03:f9:67:cd:b3:07:c4:75:dc:14:18:86:da:e2:
8d:a8:57:4c:33:55:94:f4:84:34:2c:5b:de:80:3e:
07:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:A2:F0:D8:DB:54:51:76:59:BE:D8:EA:12:58:2A:DC:1A:D9:DE:9D
X509v3 Authority Key Identifier:
keyid:86:EE:20:1C:65:D6:55:EE:9C:FE:25:1F:95:1E:A9:1B:BA:15:45:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hu4gHGXWVe6c_iUflR6pG7oVRWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/13a735-3b1c-4d9c-8cfa-a8ca8e4c7e77/1/NKLw2NtUUXZZvtjqElgq3BrZ3p0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/13a735-3b1c-4d9c-8cfa-a8ca8e4c7e77/1/hu4gHGXWVe6c_iUflR6pG7oVRWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.201.19.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:3a:8b:3f:94:90:1e:12:71:3a:54:75:82:cb:96:58:e1:ff:
fc:36:16:0b:7e:0c:74:45:f5:db:4c:cf:32:d8:af:eb:fb:59:
de:d4:49:a2:fb:c6:18:ac:89:62:6c:0d:14:b8:96:f4:58:46:
89:cf:b4:9e:8d:4b:ec:01:39:c2:62:0c:42:3c:a5:3f:c6:e7:
db:92:b5:d8:3d:d7:1d:d9:f5:b5:f3:ce:12:51:76:e3:df:60:
65:43:80:b9:09:73:85:a1:d2:24:90:51:c3:7e:f3:e0:86:3d:
dc:06:de:c2:bd:45:2b:d6:e9:ff:9b:4f:55:4a:5a:51:52:d5:
36:a7:15:51:74:f4:82:ac:85:8e:e1:a1:1c:b9:14:5c:f8:ec:
36:0c:42:c7:1a:15:c8:16:dc:f5:dc:ef:2f:1e:1a:e1:48:c3:
34:86:b8:24:c6:30:4c:c8:7b:5f:8e:c5:d3:1a:85:25:c4:74:
93:c8:50:f2:01:14:0a:be:6f:fd:45:ba:52:dc:0b:cf:11:1f:
99:53:56:38:fb:f0:31:39:d7:3b:61:2a:d9:25:75:84:1d:04:
79:51:0a:d8:b1:2a:fb:8e:05:e4:d2:2a:64:cc:fa:ec:44:a3:
79:b1:a9:69:27:57:60:b7:33:c2:7b:cf:50:cf:fa:24:1a:d9:
52:68:c3:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:32 2024 by rpki-client on console-ams.rpki-client.org