Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/nRf1RCOBaXaLvmlhQmuxj2og6gM.roa
File: nRf1RCOBaXaLvmlhQmuxj2og6gM.roa (raw, json)
Hash identifier: 3VBAIoAiuchO/MnNqZZ8zYaFm8bWgFEYocW4+ymG3qQ=
Subject key identifier: 9D:17:F5:44:23:81:69:76:8B:BE:69:61:42:6B:B1:8F:6A:20:EA:03
Certificate issuer: /CN=04cbe5b4623dab42f15a905002db7ce62e854f29
Certificate serial: 0186DFF60387FEA36C4467C7859C12F644CC
Authority key identifier: 04:CB:E5:B4:62:3D:AB:42:F1:5A:90:50:02:DB:7C:E6:2E:85:4F:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BMvltGI9q0LxWpBQAtt85i6FTyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/nRf1RCOBaXaLvmlhQmuxj2og6gM.roa
Signing time: Tue 14 Mar 2023 11:51:27 +0000
ROA not before: Tue 14 Mar 2023 11:51:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47531
IP address blocks: 37.202.8.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:df:f6:03:87:fe:a3:6c:44:67:c7:85:9c:12:f6:44:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04cbe5b4623dab42f15a905002db7ce62e854f29
Validity
Not Before: Mar 14 11:51:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9d17f544238169768bbe6961426bb18f6a20ea03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:c2:f7:bb:48:61:71:82:dc:05:a2:f5:05:db:
14:ab:e0:35:bc:a6:59:b1:4f:f2:88:8f:f2:bc:da:
6d:6c:4a:42:00:4c:c6:df:73:5b:f9:dc:83:17:84:
bf:b4:1d:dd:43:b8:86:1c:7c:93:c7:39:86:e7:f2:
eb:8f:bc:b8:25:c2:32:17:2e:ca:92:3a:9c:03:54:
5b:b7:f6:3d:8b:af:b8:9d:ad:3c:67:20:b2:d3:09:
47:d8:7d:f3:a4:28:46:6e:0f:c7:a6:84:02:92:16:
ea:47:57:a5:89:bc:b1:32:d6:01:9a:dd:42:1c:b8:
ee:e4:60:8e:01:8c:a2:75:d1:45:e5:79:7c:47:08:
94:7f:0f:18:62:30:9f:53:03:8d:c8:35:9d:a8:22:
1b:77:4a:01:a7:98:69:8e:b5:3a:fe:da:f9:3f:8d:
a4:40:b4:f3:1e:a0:15:b3:37:65:3d:99:d0:c8:f4:
66:af:d5:fe:6b:85:45:dd:fc:0d:23:87:12:fa:36:
86:b7:dc:b5:8f:0e:f6:e6:96:96:2d:a3:8a:2d:ca:
14:bf:b9:5f:1d:54:f4:eb:39:ed:bc:75:77:3f:47:
a3:c3:d6:48:16:36:53:3e:83:e7:c2:22:2e:d0:d4:
7c:7b:d5:b9:f1:b8:15:2d:b5:97:8e:6f:53:38:32:
5a:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:17:F5:44:23:81:69:76:8B:BE:69:61:42:6B:B1:8F:6A:20:EA:03
X509v3 Authority Key Identifier:
keyid:04:CB:E5:B4:62:3D:AB:42:F1:5A:90:50:02:DB:7C:E6:2E:85:4F:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BMvltGI9q0LxWpBQAtt85i6FTyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/nRf1RCOBaXaLvmlhQmuxj2og6gM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/BMvltGI9q0LxWpBQAtt85i6FTyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.202.8.0/22
Signature Algorithm: sha256WithRSAEncryption
10:85:d8:8e:02:7c:5f:2e:47:28:53:77:de:c0:4c:79:8f:92:
25:cd:a6:da:86:53:97:34:53:cd:71:02:7c:b0:b9:89:0c:e0:
d8:cb:b1:58:f8:82:7c:92:17:86:26:2b:93:46:02:16:13:54:
b8:45:b4:5e:d1:37:d0:21:74:20:57:69:46:8a:16:9e:06:b9:
c8:e3:b7:03:3f:bc:f3:a1:40:ba:a3:a5:ab:13:01:c7:91:03:
1a:9d:84:89:10:fe:cc:27:4b:d7:a3:66:a0:85:89:3e:4c:16:
dc:f1:7a:77:6d:03:89:9e:74:d8:f4:d8:65:a3:48:da:c5:97:
bb:24:42:3f:8a:e4:93:49:a4:49:a3:bb:dd:c2:fe:e3:60:33:
41:90:e5:4c:5f:b5:c8:b3:6e:20:6b:d5:4f:5a:5d:b7:87:85:
3c:60:26:97:fa:68:db:a6:37:41:e6:5f:2e:43:3f:63:aa:39:
e5:f6:12:6f:61:de:4a:11:94:c7:5e:6c:34:c5:43:2f:e7:a8:
9d:ea:15:45:8f:7c:44:b9:ec:70:ec:83:91:ae:c1:c7:b8:84:
52:2e:3b:2e:65:ab:72:51:e8:b1:74:5a:f6:b6:cb:08:f7:ca:
33:0d:22:29:b2:45:5a:d9:0d:f1:0f:d1:96:43:11:04:e4:d2:
5c:00:51:dd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYbf9gOH/qNsRGfHhZwS9kTMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA0Y2JlNWI0NjIzZGFiNDJmMTVhOTA1MDAyZGI3Y2U2MmU4
NTRmMjkwHhcNMjMwMzE0MTE1MTI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZDE3ZjU0NDIzODE2OTc2OGJiZTY5NjE0MjZiYjE4ZjZhMjBlYTAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnML3u0hhcYLcBaL1BdsUq+A1vKZZ
sU/yiI/yvNptbEpCAEzG33Nb+dyDF4S/tB3dQ7iGHHyTxzmG5/Lrj7y4JcIyFy7K
kjqcA1Rbt/Y9i6+4na08ZyCy0wlH2H3zpChGbg/HpoQCkhbqR1elibyxMtYBmt1C
HLju5GCOAYyiddFF5Xl8RwiUfw8YYjCfUwONyDWdqCIbd0oBp5hpjrU6/tr5P42k
QLTzHqAVszdlPZnQyPRmr9X+a4VF3fwNI4cS+jaGt9y1jw725paWLaOKLcoUv7lf
HVT06zntvHV3P0ejw9ZIFjZTPoPnwiIu0NR8e9W58bgVLbWXjm9TODJaHwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJ0X9UQjgWl2i75pYUJrsY9qIOoDMB8GA1UdIwQY
MBaAFATL5bRiPatC8VqQUALbfOYuhU8pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQk12bHRHSTlxMEx4V3BCUUF0dDg1aTZGVHlrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS8zZDNhMmQtYTAzOS00NmY0LTg2ODct
MDU3ODE3YmE5ZmI3LzEvblJmMVJDT0JhWGFMdm1saFFtdXhqMm9nNmdNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMS8zZDNhMmQtYTAzOS00NmY0LTg2ODctMDU3ODE3YmE5ZmI3
LzEvQk12bHRHSTlxMEx4V3BCUUF0dDg1aTZGVHlrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCJcoIMA0G
CSqGSIb3DQEBCwUAA4IBAQAQhdiOAnxfLkcoU3fewEx5j5IlzabahlOXNFPNcQJ8
sLmJDODYy7FY+IJ8kheGJiuTRgIWE1S4RbRe0TfQIXQgV2lGihaeBrnI47cDP7zz
oUC6o6WrEwHHkQManYSJEP7MJ0vXo2aghYk+TBbc8Xp3bQOJnnTY9Nhlo0jaxZe7
JEI/iuSTSaRJo7vdwv7jYDNBkOVMX7XIs24ga9VPWl23h4U8YCaX+mjbpjdB5l8u
Qz9jqjnl9hJvYd5KEZTHXmw0xUMv56id6hVFj3xEuexw7IORrsHHuIRSLjsuZaty
UeixdFr2tssI98ozDSIpskVa2Q3xD9GWQxEE5NJcAFHd
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:33 2024 by rpki-client on console-fra.rpki-client.org