Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/7f41f1-05aa-4cae-b091-2b156fdf7243/1/naHKciIlbOtrlTERdLOGgaWHN2g.roa
File: naHKciIlbOtrlTERdLOGgaWHN2g.roa (raw, json)
Hash identifier: vPoQMP6T5T6Kqc9I6aUI7Tdn4l98pUYbq2hZhDq7e8I=
Subject key identifier: 9D:A1:CA:72:22:25:6C:EB:6B:95:31:11:74:B3:86:81:A5:87:37:68
Certificate issuer: /CN=336b69e2dd29bbe48946c4d58ac60eb23dff95c5
Certificate serial: 018C3F1ED774300A442AD043936CC74D31B5
Authority key identifier: 33:6B:69:E2:DD:29:BB:E4:89:46:C4:D5:8A:C6:0E:B2:3D:FF:95:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M2tp4t0pu-SJRsTVisYOsj3_lcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/7f41f1-05aa-4cae-b091-2b156fdf7243/1/naHKciIlbOtrlTERdLOGgaWHN2g.roa
Signing time: Wed 06 Dec 2023 12:33:54 +0000
ROA not before: Wed 06 Dec 2023 12:33:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 94.124.96.0/22 maxlen: 32
2a06:a780::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:3f:1e:d7:74:30:0a:44:2a:d0:43:93:6c:c7:4d:31:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=336b69e2dd29bbe48946c4d58ac60eb23dff95c5
Validity
Not Before: Dec 6 12:33:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9da1ca7222256ceb6b95311174b38681a5873768
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:4b:7e:17:f6:e6:29:a9:a9:96:aa:3c:25:ee:
14:65:65:40:57:f1:01:39:72:60:c3:90:f7:ea:32:
96:19:fc:4c:f2:65:4f:ad:6a:4d:db:c6:30:f3:21:
3d:67:a3:6f:0b:66:86:ed:d8:b8:87:4a:68:70:a4:
61:b1:e7:19:9a:1a:40:97:44:de:ae:83:a2:bc:8f:
e7:b0:b2:b0:31:bc:4f:c5:a9:37:15:0a:01:61:1f:
6f:3a:ef:ce:f9:72:fc:c8:ab:60:b0:f1:64:57:7a:
7e:e1:a6:c2:f6:e3:06:dd:18:46:0c:fe:95:df:15:
a4:f7:66:0b:e7:93:6c:9f:97:ef:48:e7:7e:db:98:
2c:5b:5d:9d:4d:96:fa:e9:54:b1:67:5e:df:df:35:
46:63:35:d0:af:1e:0c:37:82:d9:85:50:59:97:80:
19:5c:23:cf:dc:52:2d:c5:b8:ba:55:fe:45:d3:07:
4b:67:40:74:be:a4:af:a6:e0:1e:e6:1e:b2:f1:11:
1d:2d:f1:a4:ed:26:5c:6d:6b:c5:99:3c:2f:12:85:
9e:be:49:c5:95:1b:02:a8:26:36:b4:42:cc:77:fc:
df:a9:ac:27:68:24:0d:4a:fd:89:2c:25:e5:4c:90:
9a:fc:0d:f7:f1:1c:cf:89:e8:93:27:66:8b:96:55:
c8:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:A1:CA:72:22:25:6C:EB:6B:95:31:11:74:B3:86:81:A5:87:37:68
X509v3 Authority Key Identifier:
keyid:33:6B:69:E2:DD:29:BB:E4:89:46:C4:D5:8A:C6:0E:B2:3D:FF:95:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M2tp4t0pu-SJRsTVisYOsj3_lcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/7f41f1-05aa-4cae-b091-2b156fdf7243/1/naHKciIlbOtrlTERdLOGgaWHN2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/7f41f1-05aa-4cae-b091-2b156fdf7243/1/M2tp4t0pu-SJRsTVisYOsj3_lcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.124.96.0/22
IPv6:
2a06:a780::/29
Signature Algorithm: sha256WithRSAEncryption
b2:35:ee:b8:2a:e8:56:cb:03:db:bc:91:84:2e:d0:ff:17:e7:
e3:ce:07:f6:2d:46:c0:eb:eb:b4:4f:97:32:75:48:36:5c:3a:
9b:dc:3f:64:8c:67:8a:91:20:af:f6:f7:4d:65:8e:b6:76:fe:
cd:16:9f:38:a1:69:7e:2f:bf:4a:3f:ff:c6:ad:7f:0e:ea:cd:
7d:dc:93:7c:0f:b1:c9:5c:d0:ed:0f:40:f1:b6:60:c6:06:f3:
02:16:c1:67:90:ca:83:5d:24:52:cf:13:51:81:bf:f9:6d:35:
66:dc:50:ed:27:3b:18:10:5d:ac:37:f2:3f:f2:61:d2:92:bf:
32:d7:3f:a6:cb:ef:5b:9a:35:94:33:52:28:fb:0c:5b:da:f2:
c6:1c:43:69:47:a5:a1:1b:9f:f5:31:ab:2a:95:8c:3a:0e:e8:
1f:c0:ed:84:40:a3:0a:0d:c8:de:17:1c:c7:e7:a0:26:f2:fe:
ca:59:b4:0d:4c:bc:2a:e6:b4:c2:dd:15:f0:98:fa:51:4a:50:
16:d0:c9:47:20:9d:30:fe:5b:51:b9:df:ad:f7:c2:48:53:de:
0c:16:ba:66:8d:2d:74:9d:71:04:81:25:e9:22:5a:12:34:8f:
cc:9a:91:3f:8b:24:ed:1a:e3:46:b8:0b:09:bc:a8:2b:85:25:
14:d4:da:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 14:11:16 2024 by rpki-client on console.sobornost.net