Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/fb4696-678f-4d45-a091-fd7f17bb1a5c/1/NhepMTGzC9eoZew1vSaONgzzl9c.roa
File: NhepMTGzC9eoZew1vSaONgzzl9c.roa (raw, json)
Hash identifier: kJNB6WN/OlFRaEatGZNBTgRajFIoK83qVCjy7MD0fh0=
Subject key identifier: 36:17:A9:31:31:B3:0B:D7:A8:65:EC:35:BD:26:8E:36:0C:F3:97:D7
Certificate issuer: /CN=2e1164a9b5013d62f051344f6df91f13bc7ecb0f
Certificate serial: 01867496FC761898E3F05063E21EF21D2AAA
Authority key identifier: 2E:11:64:A9:B5:01:3D:62:F0:51:34:4F:6D:F9:1F:13:BC:7E:CB:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LhFkqbUBPWLwUTRPbfkfE7x-yw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/fb4696-678f-4d45-a091-fd7f17bb1a5c/1/NhepMTGzC9eoZew1vSaONgzzl9c.roa
Signing time: Tue 21 Feb 2023 15:28:17 +0000
ROA not before: Tue 21 Feb 2023 15:28:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51508
IP address blocks: 194.34.246.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:74:96:fc:76:18:98:e3:f0:50:63:e2:1e:f2:1d:2a:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e1164a9b5013d62f051344f6df91f13bc7ecb0f
Validity
Not Before: Feb 21 15:28:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3617a93131b30bd7a865ec35bd268e360cf397d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:74:7e:be:dc:71:de:8f:5e:27:07:2d:41:d9:
ec:9e:0f:3d:e3:34:21:c5:0a:58:66:08:a6:c9:7f:
79:c1:93:4a:0e:88:da:55:fa:e7:8b:c0:35:4c:dc:
d4:2a:cd:75:fb:6e:2c:ff:00:94:26:51:c4:24:0f:
20:ab:c6:06:80:54:68:8e:6f:db:d9:23:91:ca:80:
e6:79:2d:87:7f:bc:b3:11:fe:b0:33:6f:01:ac:e4:
d4:40:bc:6d:20:bf:bc:5c:b7:31:c2:2b:7e:8a:da:
57:04:c7:3a:ef:d6:df:9b:6e:2a:ac:87:59:86:82:
a4:f7:c5:7f:b8:01:79:35:f9:f6:23:4a:fb:90:9a:
39:22:88:20:00:63:d5:46:27:e4:b0:44:0b:74:88:
1d:da:e4:a7:6c:3f:ef:d8:16:62:6c:8c:03:fc:25:
83:05:d9:7f:6b:ad:2a:62:99:84:a9:20:aa:c1:d3:
e2:e9:50:d5:62:5f:54:04:a8:14:e9:1f:6d:93:67:
3c:05:2c:3b:01:d4:67:70:b5:4e:52:63:27:f3:e4:
cf:30:b3:2b:51:10:7e:25:0c:22:da:f0:fa:57:69:
36:b8:27:49:ad:8d:ec:ba:2f:b1:3e:a1:58:b5:37:
c2:c5:1b:2f:4c:d0:bb:31:e1:f6:4c:30:bb:8d:2c:
a6:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:17:A9:31:31:B3:0B:D7:A8:65:EC:35:BD:26:8E:36:0C:F3:97:D7
X509v3 Authority Key Identifier:
keyid:2E:11:64:A9:B5:01:3D:62:F0:51:34:4F:6D:F9:1F:13:BC:7E:CB:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LhFkqbUBPWLwUTRPbfkfE7x-yw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/fb4696-678f-4d45-a091-fd7f17bb1a5c/1/NhepMTGzC9eoZew1vSaONgzzl9c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/fb4696-678f-4d45-a091-fd7f17bb1a5c/1/LhFkqbUBPWLwUTRPbfkfE7x-yw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.34.246.0/24
Signature Algorithm: sha256WithRSAEncryption
66:cb:eb:aa:a5:24:51:22:8a:cd:fa:04:4e:bd:48:63:e7:d6:
a0:9f:c0:e8:e1:28:c3:2a:3c:4f:08:31:8a:39:5e:e5:74:98:
50:64:ea:ba:cc:df:c6:45:4d:a4:7a:ac:60:f1:bb:dd:42:1c:
b2:4d:5d:c1:8c:56:b5:e4:1b:ab:96:94:2f:4e:c7:38:9d:78:
48:56:d0:55:b7:3b:ef:ff:5e:6a:95:11:7b:c4:87:13:b8:4d:
2b:3e:65:b9:9a:66:46:5d:3d:b3:19:bb:25:d3:32:a2:50:73:
17:f4:6c:9f:14:b3:8f:9f:51:9b:48:cf:17:37:c8:de:73:60:
8b:7c:75:b7:c6:70:3b:c2:2c:c5:78:38:bd:76:59:25:d6:d9:
19:a3:5c:ee:1d:23:c4:80:44:25:9d:99:6c:fd:1f:f4:f0:bf:
8b:fe:ec:a9:70:02:07:49:14:c8:7f:df:82:7a:97:c1:7d:fd:
38:81:77:ab:2e:42:81:ef:ba:9c:d7:60:3b:9d:a3:a2:68:e1:
a6:fc:58:64:c6:d0:1e:9e:92:dc:a1:7a:16:f0:b5:92:76:9e:
10:d3:1d:79:44:c3:8c:28:9d:91:78:db:f9:3c:30:6f:6b:3f:
71:f7:e0:1f:25:b5:a5:72:9d:62:63:44:ca:a4:3a:8d:d7:c5:
84:b4:9f:44
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYZ0lvx2GJjj8FBj4h7yHSqqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJlMTE2NGE5YjUwMTNkNjJmMDUxMzQ0ZjZkZjkxZjEzYmM3
ZWNiMGYwHhcNMjMwMjIxMTUyODE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNjE3YTkzMTMxYjMwYmQ3YTg2NWVjMzViZDI2OGUzNjBjZjM5N2Q3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApnR+vtxx3o9eJwctQdnsng894zQh
xQpYZgimyX95wZNKDojaVfrni8A1TNzUKs11+24s/wCUJlHEJA8gq8YGgFRojm/b
2SORyoDmeS2Hf7yzEf6wM28BrOTUQLxtIL+8XLcxwit+itpXBMc679bfm24qrIdZ
hoKk98V/uAF5Nfn2I0r7kJo5IoggAGPVRifksEQLdIgd2uSnbD/v2BZibIwD/CWD
Bdl/a60qYpmEqSCqwdPi6VDVYl9UBKgU6R9tk2c8BSw7AdRncLVOUmMn8+TPMLMr
URB+JQwi2vD6V2k2uCdJrY3sui+xPqFYtTfCxRsvTNC7MeH2TDC7jSymvwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDYXqTExswvXqGXsNb0mjjYM85fXMB8GA1UdIwQY
MBaAFC4RZKm1AT1i8FE0T235HxO8fssPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTGhGa3FiVUJQV0x3VVRSUGJma2ZFN3gteXc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC9mYjQ2OTYtNjc4Zi00ZDQ1LWEwOTEt
ZmQ3ZjE3YmIxYTVjLzEvTmhlcE1UR3pDOWVvWmV3MXZTYU9OZ3p6bDljLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC9mYjQ2OTYtNjc4Zi00ZDQ1LWEwOTEtZmQ3ZjE3YmIxYTVj
LzEvTGhGa3FiVUJQV0x3VVRSUGJma2ZFN3gteXc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwiL2MA0G
CSqGSIb3DQEBCwUAA4IBAQBmy+uqpSRRIorN+gROvUhj59agn8Do4SjDKjxPCDGK
OV7ldJhQZOq6zN/GRU2keqxg8bvdQhyyTV3BjFa15BurlpQvTsc4nXhIVtBVtzvv
/15qlRF7xIcTuE0rPmW5mmZGXT2zGbsl0zKiUHMX9GyfFLOPn1GbSM8XN8jec2CL
fHW3xnA7wizFeDi9dlkl1tkZo1zuHSPEgEQlnZls/R/08L+L/uypcAIHSRTIf9+C
epfBff04gXerLkKB77qc12A7naOiaOGm/FhkxtAenpLcoXoW8LWSdp4Q0x15RMOM
KJ2ReNv5PDBvaz9x9+AfJbWlcp1iY0TKpDqN18WEtJ9E
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:06 2024 by rpki-client on console-fra.rpki-client.org