Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/29b082-d6d1-4147-af1c-61b0c7ff2e4e/1/nyg8uBZG5L1wsQZor3nuUDWe6BQ.roa
File: nyg8uBZG5L1wsQZor3nuUDWe6BQ.roa (raw, json)
Hash identifier: hM7JQmUVPYc2PQwP4cjg1jCE16guIiiKH+zsErYqj+c=
Subject key identifier: 9F:28:3C:B8:16:46:E4:BD:70:B1:06:68:AF:79:EE:50:35:9E:E8:14
Certificate issuer: /CN=c82206f506c826eb1057e5c269b3710e38ab696c
Certificate serial: 0187236382C383AE21C04A4492755D2C894E
Authority key identifier: C8:22:06:F5:06:C8:26:EB:10:57:E5:C2:69:B3:71:0E:38:AB:69:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yCIG9QbIJusQV-XCabNxDjiraWw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/29b082-d6d1-4147-af1c-61b0c7ff2e4e/1/nyg8uBZG5L1wsQZor3nuUDWe6BQ.roa
Signing time: Mon 27 Mar 2023 14:05:36 +0000
ROA not before: Mon 27 Mar 2023 14:05:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198333
IP address blocks: 176.123.51.0/24 maxlen: 24
194.139.6.0/23 maxlen: 23
194.139.6.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 29 Sep 2023 07:43:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:23:63:82:c3:83:ae:21:c0:4a:44:92:75:5d:2c:89:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c82206f506c826eb1057e5c269b3710e38ab696c
Validity
Not Before: Mar 27 14:05:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9f283cb81646e4bd70b10668af79ee50359ee814
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:d3:5c:80:a8:74:a6:3e:b1:15:3e:58:29:17:
24:91:61:10:0b:b5:12:09:c3:de:55:4a:95:3e:31:
21:51:e1:f0:db:8e:26:9e:26:ba:8c:81:58:1f:ee:
24:00:93:cf:13:91:c7:4c:15:fe:6f:cf:81:b5:e6:
7e:9d:18:5b:ea:53:e9:ae:ee:27:82:15:20:9b:d5:
b7:79:43:38:21:09:ce:49:41:d6:bb:93:51:3e:8d:
64:5f:f7:25:8d:b0:56:72:97:c0:5c:1b:b5:72:c6:
bd:8b:12:25:a0:c6:0e:6b:46:b4:4f:91:6d:c1:06:
e3:53:6b:0c:16:b9:1a:60:b2:e0:6c:c0:c8:55:02:
a7:13:0d:05:0a:e3:ba:f3:b2:20:fe:4e:3f:a8:99:
55:c1:5c:0f:7d:46:e9:cc:35:4d:9a:95:70:00:b2:
86:8f:12:71:b2:fe:da:56:52:f5:48:d5:e2:b5:75:
9b:a8:e7:6e:37:87:c7:01:bd:92:71:59:93:6a:ae:
ea:ce:cd:a7:ea:c1:3d:c5:a3:87:3c:75:a7:54:e9:
1b:b3:52:f4:a4:a3:0a:aa:86:71:d1:c5:48:63:97:
1b:4d:08:5b:16:53:aa:81:ef:1e:ac:7a:08:ea:f1:
c7:35:27:36:f0:32:45:90:e9:32:4f:70:0a:bc:6e:
c4:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:28:3C:B8:16:46:E4:BD:70:B1:06:68:AF:79:EE:50:35:9E:E8:14
X509v3 Authority Key Identifier:
keyid:C8:22:06:F5:06:C8:26:EB:10:57:E5:C2:69:B3:71:0E:38:AB:69:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yCIG9QbIJusQV-XCabNxDjiraWw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/29b082-d6d1-4147-af1c-61b0c7ff2e4e/1/nyg8uBZG5L1wsQZor3nuUDWe6BQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/29b082-d6d1-4147-af1c-61b0c7ff2e4e/1/yCIG9QbIJusQV-XCabNxDjiraWw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.123.51.0/24
194.139.6.0/23
Signature Algorithm: sha256WithRSAEncryption
b0:74:84:ec:4c:b0:a4:52:c7:8a:8d:98:cd:11:4a:e7:61:54:
e2:56:c8:fb:1c:d7:43:88:8e:c6:54:72:b3:8c:04:fa:2c:c0:
3e:b5:39:99:d7:47:a5:eb:55:83:f5:7a:29:c7:21:2c:ea:eb:
bb:04:0f:39:78:f5:3e:2f:30:ea:dd:7a:6e:05:d7:3f:81:d0:
4e:2f:e3:10:c1:2e:df:28:3b:4a:7c:81:e7:23:af:47:0b:19:
a9:9a:d2:49:66:cc:be:bd:34:fd:ee:50:e6:16:c6:65:cc:71:
89:d4:95:bf:b2:d0:68:92:31:1c:a7:ce:0a:30:a2:37:39:9f:
69:f3:a2:9c:eb:fe:d0:82:5d:0a:f0:34:3e:aa:b7:ad:76:7c:
2c:f2:8d:33:ec:fb:44:8f:3f:f3:85:ce:56:a3:01:3b:fd:80:
51:e5:1c:96:a1:10:91:51:db:7f:91:ea:76:76:c1:44:23:cb:
d6:98:fd:e7:2d:ad:bb:46:76:b0:4e:48:79:fc:d6:ce:1e:39:
13:29:67:38:dd:90:e7:98:c3:af:cb:8c:4f:af:3c:51:08:48:
54:eb:0a:93:70:ab:30:b3:c7:03:49:ca:2c:2f:9d:18:2c:21:
65:2a:f0:31:b8:58:5a:ce:b7:3d:5a:bb:db:58:5c:37:86:5e:
04:fd:61:fd
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYcjY4LDg64hwEpEknVdLIlOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM4MjIwNmY1MDZjODI2ZWIxMDU3ZTVjMjY5YjM3MTBlMzhh
YjY5NmMwHhcNMjMwMzI3MTQwNTM2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZjI4M2NiODE2NDZlNGJkNzBiMTA2NjhhZjc5ZWU1MDM1OWVlODE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAktNcgKh0pj6xFT5YKRckkWEQC7US
CcPeVUqVPjEhUeHw244mnia6jIFYH+4kAJPPE5HHTBX+b8+BteZ+nRhb6lPpru4n
ghUgm9W3eUM4IQnOSUHWu5NRPo1kX/cljbBWcpfAXBu1csa9ixIloMYOa0a0T5Ft
wQbjU2sMFrkaYLLgbMDIVQKnEw0FCuO687Ig/k4/qJlVwVwPfUbpzDVNmpVwALKG
jxJxsv7aVlL1SNXitXWbqOduN4fHAb2ScVmTaq7qzs2n6sE9xaOHPHWnVOkbs1L0
pKMKqoZx0cVIY5cbTQhbFlOqge8erHoI6vHHNSc28DJFkOkyT3AKvG7EvwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFJ8oPLgWRuS9cLEGaK957lA1nugUMB8GA1UdIwQY
MBaAFMgiBvUGyCbrEFflwmmzcQ44q2lsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveUNJRzlRYklKdXNRVi1YQ2FiTnhEamlyYVd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8yOWIwODItZDZkMS00MTQ3LWFmMWMt
NjFiMGM3ZmYyZTRlLzEvbnlnOHVCWkc1TDF3c1Fab3IzbnVVRFdlNkJRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS8yOWIwODItZDZkMS00MTQ3LWFmMWMtNjFiMGM3ZmYyZTRl
LzEveUNJRzlRYklKdXNRVi1YQ2FiTnhEamlyYVd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAsHszAwQB
wosGMA0GCSqGSIb3DQEBCwUAA4IBAQCwdITsTLCkUseKjZjNEUrnYVTiVsj7HNdD
iI7GVHKzjAT6LMA+tTmZ10el61WD9XopxyEs6uu7BA85ePU+LzDq3XpuBdc/gdBO
L+MQwS7fKDtKfIHnI69HCxmpmtJJZsy+vTT97lDmFsZlzHGJ1JW/stBokjEcp84K
MKI3OZ9p86Kc6/7Qgl0K8DQ+qretdnws8o0z7PtEjz/zhc5WowE7/YBR5RyWoRCR
Udt/kep2dsFEI8vWmP3nLa27RnawTkh5/NbOHjkTKWc43ZDnmMOvy4xPrzxRCEhU
6wqTcKsws8cDScosL50YLCFlKvAxuFhazrc9WrvbWFw3hl4E/WH9
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:00 2024 by rpki-client on console-fra.rpki-client.org