Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/ab8070-4f58-4634-9a44-387536d03a71/1/NqfeN7l1P4-GdYB7FgyM8LK3GoQ.roa
File: NqfeN7l1P4-GdYB7FgyM8LK3GoQ.roa (raw, json)
Hash identifier: a1SmYssJ8AaaTsxTnpdxdU3JaUYzW2f8xFTVKwiKWzY=
Subject key identifier: 36:A7:DE:37:B9:75:3F:8F:86:75:80:7B:16:0C:8C:F0:B2:B7:1A:84
Certificate issuer: /CN=e22d7eae21d8baee9de6940d8ce6b29d92a9031e
Certificate serial: 018E38D8549D6C97309F633A4363233A8E92
Authority key identifier: E2:2D:7E:AE:21:D8:BA:EE:9D:E6:94:0D:8C:E6:B2:9D:92:A9:03:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4i1-riHYuu6d5pQNjOaynZKpAx4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/ab8070-4f58-4634-9a44-387536d03a71/1/NqfeN7l1P4-GdYB7FgyM8LK3GoQ.roa
Signing time: Wed 13 Mar 2024 17:24:45 +0000
ROA not before: Wed 13 Mar 2024 17:24:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 185.138.146.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Mar 2024 17:40:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:38:d8:54:9d:6c:97:30:9f:63:3a:43:63:23:3a:8e:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e22d7eae21d8baee9de6940d8ce6b29d92a9031e
Validity
Not Before: Mar 13 17:24:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=36a7de37b9753f8f8675807b160c8cf0b2b71a84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:6a:5a:fc:22:d5:33:b8:c6:20:65:fa:54:06:
a8:81:10:e0:d0:bb:3d:1d:d1:a9:1b:33:80:a3:bf:
b4:a9:2f:43:dd:14:be:6c:bd:52:63:91:24:af:69:
40:41:3b:06:c3:9b:05:a9:4b:4b:fa:6f:42:8d:53:
93:58:2d:0a:11:af:61:8f:d0:38:4c:75:41:a2:e7:
5c:3b:8c:cf:0a:4c:aa:38:bc:cf:90:ca:66:83:b1:
07:d5:3e:f7:c9:dd:ff:a4:58:48:ef:42:90:c6:0f:
b9:a6:a3:73:f3:bb:16:d2:97:b7:a4:cb:16:d8:be:
99:72:0a:a0:ec:bb:72:f9:7e:61:fc:54:bf:36:09:
51:ed:25:d5:5b:7a:4a:74:86:8d:44:67:7f:d9:cf:
f4:83:77:37:94:24:7a:70:f0:ad:84:e9:ef:3c:6e:
eb:1f:bc:37:aa:e5:4e:ee:ac:8c:88:e7:06:44:92:
32:b0:e1:ed:5b:a5:41:68:c2:3f:c3:77:4a:2b:51:
55:7f:d6:7b:a5:ff:f2:b2:f9:ad:28:db:b4:a4:7f:
2d:56:59:5a:44:49:47:e4:1a:18:75:65:e4:76:bf:
01:c6:e2:58:86:22:8f:3d:35:80:cf:7d:41:87:1a:
c8:37:54:f5:09:34:39:36:44:f5:7f:bb:5c:30:a4:
45:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:A7:DE:37:B9:75:3F:8F:86:75:80:7B:16:0C:8C:F0:B2:B7:1A:84
X509v3 Authority Key Identifier:
keyid:E2:2D:7E:AE:21:D8:BA:EE:9D:E6:94:0D:8C:E6:B2:9D:92:A9:03:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4i1-riHYuu6d5pQNjOaynZKpAx4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/ab8070-4f58-4634-9a44-387536d03a71/1/NqfeN7l1P4-GdYB7FgyM8LK3GoQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/ab8070-4f58-4634-9a44-387536d03a71/1/4i1-riHYuu6d5pQNjOaynZKpAx4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.138.146.0/24
Signature Algorithm: sha256WithRSAEncryption
11:a0:c6:6f:0d:ea:1c:bf:57:24:96:a9:30:55:87:b4:aa:b9:
14:a9:a4:ff:20:da:b1:7d:e6:33:ae:c4:2b:02:c0:e1:43:4d:
53:2c:a9:70:e3:c8:78:e5:ef:47:20:b5:b0:60:61:e7:bf:de:
a8:9e:5c:59:4e:b0:a7:58:f7:a3:c6:9d:b9:05:5a:ad:35:06:
f8:f6:f0:ec:c4:a9:1f:a8:cf:d6:f0:2f:97:b6:d1:86:e9:1e:
48:4f:a0:5d:b6:7e:6e:68:34:af:d9:ed:49:88:60:79:a5:ab:
20:8c:d0:40:c4:3c:30:7c:de:fa:b5:a0:7c:4c:68:c9:47:2b:
bc:9e:75:e7:7a:f7:7f:2f:e9:c6:94:16:97:32:4b:48:a9:ca:
f3:75:47:70:d5:7a:c9:4f:3f:d8:09:bd:9c:39:33:98:80:31:
31:9f:2b:32:4d:97:4a:43:22:e8:99:a0:01:08:8c:37:d0:db:
df:d3:c4:78:12:15:1c:7f:f6:de:84:90:47:7e:43:30:f0:63:
bd:60:bb:a5:60:6a:91:b9:22:7a:6d:06:b8:7f:7e:d5:bf:e9:
7b:f5:7c:e4:4b:b1:5f:d9:1e:d0:31:62:e8:5b:3b:87:0c:7f:
ca:e1:fa:6c:06:1e:d6:79:d4:ea:dc:7c:9d:a9:7f:51:84:ba:
e7:92:ac:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 14 01:13:15 2024 by rpki-client on console.sobornost.net