Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/7766bb-bb48-49be-b21f-0a35b7ed63c7/1/NKRGsUz6S0D_ll29erlijyJ9X6U.roa
File: NKRGsUz6S0D_ll29erlijyJ9X6U.roa (raw, json)
Hash identifier: l0HpGOPYEqQb8n0/VQoyQ2EvfiJR19re6pQIMF5chNY=
Subject key identifier: 34:A4:46:B1:4C:FA:4B:40:FF:96:5D:BD:7A:B9:62:8F:22:7D:5F:A5
Certificate issuer: /CN=70f2b41fd36614835e33fc0881db24638b3a787b
Certificate serial: 018571F0FDB2698EA43A1F27542D3D16EBEA
Authority key identifier: 70:F2:B4:1F:D3:66:14:83:5E:33:FC:08:81:DB:24:63:8B:3A:78:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPK0H9NmFINeM_wIgdskY4s6eHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/7766bb-bb48-49be-b21f-0a35b7ed63c7/1/NKRGsUz6S0D_ll29erlijyJ9X6U.roa
Signing time: Mon 02 Jan 2023 10:04:57 +0000
ROA not before: Mon 02 Jan 2023 10:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8793
IP address blocks: 193.109.222.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:f0:fd:b2:69:8e:a4:3a:1f:27:54:2d:3d:16:eb:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f2b41fd36614835e33fc0881db24638b3a787b
Validity
Not Before: Jan 2 10:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=34a446b14cfa4b40ff965dbd7ab9628f227d5fa5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:af:4f:5c:d9:65:a0:fd:d1:ad:c2:91:c0:d8:
5a:94:3a:83:35:c5:e8:fd:50:ba:b5:52:75:50:29:
1b:42:a7:d5:80:fd:ed:b0:47:96:99:53:11:59:4d:
82:54:9e:7d:ad:20:c4:f2:a0:ab:fb:89:89:0a:d8:
aa:d4:a9:88:5b:b4:f0:91:bc:63:c8:d1:42:81:4c:
3f:cf:71:25:1c:5b:87:11:07:51:99:01:52:01:15:
26:26:75:12:94:8f:1d:01:d9:de:3e:ae:e1:20:04:
bb:ca:13:65:80:4c:1b:4f:53:ef:d1:72:13:23:c7:
51:52:04:ab:c5:f4:3d:c5:6c:6a:80:5e:65:cd:02:
54:12:df:95:1a:88:74:b8:36:ee:42:81:34:45:96:
90:c5:00:c8:ad:8f:09:81:54:c0:fe:bf:bb:38:31:
82:13:1b:ef:64:fd:bb:98:5a:5f:c8:cf:b1:85:82:
16:a6:4a:df:5b:3a:aa:c3:15:57:9d:84:f0:06:c1:
1b:57:0f:ea:2c:36:7e:44:63:4b:21:c5:32:19:07:
3a:27:12:06:7f:49:1b:f4:14:48:bb:fc:1b:80:fc:
d6:8e:e4:98:6b:e4:c6:ad:9b:fa:5c:8d:55:d1:07:
5e:95:3d:ef:6e:db:9a:95:41:10:a3:95:f2:89:90:
a8:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:A4:46:B1:4C:FA:4B:40:FF:96:5D:BD:7A:B9:62:8F:22:7D:5F:A5
X509v3 Authority Key Identifier:
keyid:70:F2:B4:1F:D3:66:14:83:5E:33:FC:08:81:DB:24:63:8B:3A:78:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPK0H9NmFINeM_wIgdskY4s6eHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/7766bb-bb48-49be-b21f-0a35b7ed63c7/1/NKRGsUz6S0D_ll29erlijyJ9X6U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/7766bb-bb48-49be-b21f-0a35b7ed63c7/1/cPK0H9NmFINeM_wIgdskY4s6eHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.109.222.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:c1:54:4d:6e:5d:17:db:31:71:a2:06:fc:7c:72:f0:44:1f:
4f:a0:1e:ea:25:18:26:ca:7d:8d:20:45:bb:14:ac:ed:9b:6d:
bd:91:a5:40:e2:17:c2:42:1c:6b:97:94:94:48:44:e7:5e:64:
58:f4:b8:f5:1d:d4:9f:b0:52:d1:c8:46:3e:0b:3a:ed:e5:a5:
54:d6:83:84:1d:d4:d7:44:2d:09:aa:e9:32:86:ab:1b:ef:c6:
e3:7a:1d:95:eb:6f:81:97:a1:ac:74:57:85:df:3b:60:1d:b3:
50:c3:73:18:a2:29:28:93:2c:22:58:a6:2c:76:cf:24:28:b5:
f6:eb:c4:df:9e:4f:f1:b5:ac:d1:c2:ce:3c:67:55:73:e1:5e:
4c:80:95:a1:86:a0:08:dd:28:92:f0:83:c6:91:0b:ca:21:d8:
ac:3b:96:ec:ff:f3:7e:7e:00:9f:28:dd:ad:cd:14:05:73:1f:
16:24:35:a6:fd:c6:0d:05:20:9d:b6:36:96:50:4c:8b:fa:1a:
dc:d9:3b:8f:48:46:c7:ae:94:38:6e:b6:bf:69:2c:e1:ef:14:
d5:cd:42:19:36:ec:f7:fe:78:f0:41:81:04:23:99:97:fe:08:
19:15:de:5e:f0:2b:1e:30:4b:43:6e:95:ff:04:6c:9c:b4:ee:
84:ee:4b:b8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVx8P2yaY6kOh8nVC09FuvqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwZjJiNDFmZDM2NjE0ODM1ZTMzZmMwODgxZGIyNDYzOGIz
YTc4N2IwHhcNMjMwMTAyMTAwNDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNGE0NDZiMTRjZmE0YjQwZmY5NjVkYmQ3YWI5NjI4ZjIyN2Q1ZmE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoa9PXNlloP3RrcKRwNhalDqDNcXo
/VC6tVJ1UCkbQqfVgP3tsEeWmVMRWU2CVJ59rSDE8qCr+4mJCtiq1KmIW7Twkbxj
yNFCgUw/z3ElHFuHEQdRmQFSARUmJnUSlI8dAdnePq7hIAS7yhNlgEwbT1Pv0XIT
I8dRUgSrxfQ9xWxqgF5lzQJUEt+VGoh0uDbuQoE0RZaQxQDIrY8JgVTA/r+7ODGC
ExvvZP27mFpfyM+xhYIWpkrfWzqqwxVXnYTwBsEbVw/qLDZ+RGNLIcUyGQc6JxIG
f0kb9BRIu/wbgPzWjuSYa+TGrZv6XI1V0QdelT3vbtualUEQo5XyiZCoEwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDSkRrFM+ktA/5ZdvXq5Yo8ifV+lMB8GA1UdIwQY
MBaAFHDytB/TZhSDXjP8CIHbJGOLOnh7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY1BLMEg5Tm1GSU5lTV93SWdkc2tZNHM2ZUhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi83NzY2YmItYmI0OC00OWJlLWIyMWYt
MGEzNWI3ZWQ2M2M3LzEvTktSR3NVejZTMERfbGwyOWVybGlqeUo5WDZVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYi83NzY2YmItYmI0OC00OWJlLWIyMWYtMGEzNWI3ZWQ2M2M3
LzEvY1BLMEg5Tm1GSU5lTV93SWdkc2tZNHM2ZUhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwW3eMA0G
CSqGSIb3DQEBCwUAA4IBAQChwVRNbl0X2zFxogb8fHLwRB9PoB7qJRgmyn2NIEW7
FKztm229kaVA4hfCQhxrl5SUSETnXmRY9Lj1HdSfsFLRyEY+Czrt5aVU1oOEHdTX
RC0Jqukyhqsb78bjeh2V62+Bl6GsdFeF3ztgHbNQw3MYoikokywiWKYsds8kKLX2
68Tfnk/xtazRws48Z1Vz4V5MgJWhhqAI3SiS8IPGkQvKIdisO5bs//N+fgCfKN2t
zRQFcx8WJDWm/cYNBSCdtjaWUEyL+hrc2TuPSEbHrpQ4bra/aSzh7xTVzUIZNuz3
/njwQYEEI5mX/ggZFd5e8CseMEtDbpX/BGyctO6E7ku4
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:24 2024 by rpki-client on console-fra.rpki-client.org