Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/nHleX8W8dbspR-sNqwPuyCZRnwI.roa
File: nHleX8W8dbspR-sNqwPuyCZRnwI.roa (raw, json)
Hash identifier: Yy2ZGY82nLdqwjdNn3FS5FH5T9fjONlIxiuVXI3QChs=
Subject key identifier: 9C:79:5E:5F:C5:BC:75:BB:29:47:EB:0D:AB:03:EE:C8:26:51:9F:02
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 018572BA758DBF8C3025E01E328DD1AC1436
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/nHleX8W8dbspR-sNqwPuyCZRnwI.roa
Signing time: Mon 02 Jan 2023 13:45:00 +0000
ROA not before: Mon 02 Jan 2023 13:45:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24748
IP address blocks: 193.111.36.0/24 maxlen: 24
77.79.192.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:75:8d:bf:8c:30:25:e0:1e:32:8d:d1:ac:14:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 2 13:45:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9c795e5fc5bc75bb2947eb0dab03eec826519f02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:7f:0f:9e:c4:d1:1f:f3:cd:b4:6f:6b:50:ff:
8d:f2:fe:e2:a6:1c:f7:13:f8:2e:f5:00:56:ff:24:
84:75:30:21:8b:9a:fd:ec:67:47:0e:ba:57:7b:d2:
dc:b5:22:29:c0:99:dd:d9:e2:84:53:25:65:05:c4:
d4:b6:af:f6:a3:b8:f2:d7:ea:2d:f9:60:6b:ef:6c:
55:61:ba:1a:6b:0d:0c:59:5d:55:6e:11:7f:86:2b:
93:c0:b1:78:7a:ba:b8:e1:26:1b:7c:d2:59:02:d2:
c0:4f:c7:c5:b5:23:1f:b7:f8:0e:43:55:5c:ec:0a:
4f:fc:ff:94:d7:40:ce:99:c2:42:cc:8e:dd:ea:1c:
3a:07:87:26:ae:26:a8:ce:8d:83:20:5b:ed:f6:13:
1a:da:7a:a7:06:aa:01:a6:0e:7a:aa:22:f9:ff:6d:
7c:89:a7:dd:16:33:a1:b7:dd:e2:d6:4d:04:2c:25:
6a:cb:b5:3d:3e:cf:e5:c5:a6:1a:61:c3:7e:f1:78:
fb:9f:4a:9f:4c:2b:86:79:46:73:e8:47:5b:13:e9:
33:e1:45:dc:8e:f8:72:5b:e1:3d:f5:80:77:b4:5d:
1c:09:0a:dd:2a:ea:3b:3b:8e:79:7e:c4:0a:ca:07:
d4:6c:36:19:8d:00:18:e0:7c:2d:7c:61:02:dc:6d:
2e:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:79:5E:5F:C5:BC:75:BB:29:47:EB:0D:AB:03:EE:C8:26:51:9F:02
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/nHleX8W8dbspR-sNqwPuyCZRnwI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.79.192.0/24
193.111.36.0/24
Signature Algorithm: sha256WithRSAEncryption
46:ca:fd:c5:44:65:6a:30:ac:27:80:00:67:ce:44:5a:e4:fd:
5c:b0:8a:63:e0:53:b0:05:51:c4:de:d9:46:53:29:71:7a:a4:
e3:7c:d2:58:38:5c:52:8b:82:c7:22:d5:60:24:78:a9:c4:97:
0a:60:89:7b:08:46:e9:ee:6e:7f:5f:63:8f:62:6c:c3:d1:6a:
4b:c5:17:21:64:fc:a1:45:81:ff:f2:bb:4d:bc:e8:16:11:d3:
00:79:ec:2e:6e:bd:9a:9b:87:e3:cf:19:31:78:53:5e:ff:32:
64:33:61:80:95:db:53:65:e0:7e:41:f9:d3:80:9b:41:4c:45:
5e:ba:e4:c5:ed:ae:46:9c:25:92:72:95:ea:d9:2a:c2:f3:36:
04:29:bc:c8:b3:3a:49:14:83:c4:51:a9:21:57:a8:02:8b:e7:
2d:12:87:99:72:96:93:2f:6c:a0:98:48:8a:95:e2:6e:87:3a:
00:40:79:7e:1a:84:57:aa:52:f2:fe:cf:cc:21:e5:ee:7a:8e:
34:c6:70:8d:d3:f9:92:c9:e1:13:35:9a:35:26:57:c3:71:88:
23:bd:d3:c0:82:27:49:55:f8:e6:aa:e2:26:e2:5e:44:d6:0b:
4c:d0:06:7b:1c:62:d1:77:77:55:0b:f1:70:53:79:ff:cd:da:
ff:52:fc:c3
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVyunWNv4wwJeAeMo3RrBQ2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4YzUxMGZjOWI4NjVkOTZlM2FmYzdjNTYwNTZlZmFkOWEz
MzBjNWIwHhcNMjMwMTAyMTM0NTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5Yzc5NWU1ZmM1YmM3NWJiMjk0N2ViMGRhYjAzZWVjODI2NTE5ZjAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjn8PnsTRH/PNtG9rUP+N8v7iphz3
E/gu9QBW/ySEdTAhi5r97GdHDrpXe9LctSIpwJnd2eKEUyVlBcTUtq/2o7jy1+ot
+WBr72xVYboaaw0MWV1VbhF/hiuTwLF4erq44SYbfNJZAtLAT8fFtSMft/gOQ1Vc
7ApP/P+U10DOmcJCzI7d6hw6B4cmriaozo2DIFvt9hMa2nqnBqoBpg56qiL5/218
iafdFjOht93i1k0ELCVqy7U9Ps/lxaYaYcN+8Xj7n0qfTCuGeUZz6EdbE+kz4UXc
jvhyW+E99YB3tF0cCQrdKuo7O455fsQKygfUbDYZjQAY4HwtfGEC3G0u+QIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFJx5Xl/FvHW7KUfrDasD7sgmUZ8CMB8GA1UdIwQY
MBaAFGjFEPybhl2W46/HxWBW762aMwxbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYU1VUV9KdUdYWmJqcjhmRllGYnZyWm96REZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC9lMGYyZjYtM2E4YS00ZGFhLTgyNzEt
NWQ2NjVlOTk4ZjZhLzEvbkhsZVg4VzhkYnNwUi1zTnF3UHV5Q1pSbndJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC9lMGYyZjYtM2E4YS00ZGFhLTgyNzEtNWQ2NjVlOTk4ZjZh
LzEvYU1VUV9KdUdYWmJqcjhmRllGYnZyWm96REZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQATU/AAwQA
wW8kMA0GCSqGSIb3DQEBCwUAA4IBAQBGyv3FRGVqMKwngABnzkRa5P1csIpj4FOw
BVHE3tlGUylxeqTjfNJYOFxSi4LHItVgJHipxJcKYIl7CEbp7m5/X2OPYmzD0WpL
xRchZPyhRYH/8rtNvOgWEdMAeewubr2am4fjzxkxeFNe/zJkM2GAldtTZeB+QfnT
gJtBTEVeuuTF7a5GnCWScpXq2SrC8zYEKbzIszpJFIPEUakhV6gCi+ctEoeZcpaT
L2ygmEiKleJuhzoAQHl+GoRXqlLy/s/MIeXueo40xnCN0/mSyeETNZo1JlfDcYgj
vdPAgidJVfjmquIm4l5E1gtM0AZ7HGLRd3dVC/FwU3n/zdr/UvzD
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:52 2024 by rpki-client on console-ams.rpki-client.org