Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/NLXNbyTiwC7-JxS8rq6v1Q0HtLw.roa
File: NLXNbyTiwC7-JxS8rq6v1Q0HtLw.roa (raw, json)
Hash identifier: efsQnBRXVZ2LhlAOtRTY+/OJdJlWywXA1wQVfN2NwS4=
Subject key identifier: 34:B5:CD:6F:24:E2:C0:2E:FE:27:14:BC:AE:AE:AF:D5:0D:07:B4:BC
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018B86D9B38D81AAB99C3A2DF353D74BD886
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/NLXNbyTiwC7-JxS8rq6v1Q0HtLw.roa
Signing time: Tue 31 Oct 2023 17:48:15 +0000
ROA not before: Tue 31 Oct 2023 17:48:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216076
IP address blocks: 188.132.160.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:86:d9:b3:8d:81:aa:b9:9c:3a:2d:f3:53:d7:4b:d8:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Oct 31 17:48:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=34b5cd6f24e2c02efe2714bcaeaeafd50d07b4bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:8c:20:d4:4e:cc:0d:e1:70:08:78:b2:2c:10:
6e:6f:b0:8d:0b:cf:ad:f0:69:ef:8b:f2:68:06:42:
71:7b:16:11:7d:72:d5:34:c0:5c:61:00:4c:9e:7b:
63:7e:55:9c:1d:ab:34:35:6e:9f:33:88:86:25:b9:
9a:81:2f:33:26:15:ac:1a:6b:fe:6c:d2:ad:a3:25:
ad:74:02:7e:c5:3d:ad:dc:3f:ca:b1:2c:6c:ca:88:
6c:8b:90:d3:7f:bc:bc:42:e1:39:70:24:a9:a2:53:
43:a3:cb:f9:e7:56:3b:23:56:5e:14:cd:a6:cb:fa:
b3:5a:bd:ae:72:d0:bf:a4:0d:95:c7:3f:18:2d:66:
52:c8:e2:b0:80:5b:1d:c7:d0:3d:ec:97:ca:ae:4d:
79:e6:e6:7c:0d:d7:f0:5d:5a:9b:82:d8:a7:ed:0a:
e3:4a:79:e4:e0:18:8e:b5:8b:f2:85:0c:53:18:92:
dc:a5:ef:31:6e:8b:72:ee:f5:40:24:56:bb:93:d9:
e6:6d:3e:48:92:f0:23:0a:34:65:0a:ff:d5:b8:96:
1a:1a:cd:67:01:15:e3:0e:5d:5f:a1:38:55:b2:eb:
68:0f:3c:49:1d:d9:0e:4f:dc:b3:f9:85:0d:a6:a9:
f9:22:c4:da:f6:99:a4:29:16:38:ce:0b:e1:cd:6f:
1a:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:B5:CD:6F:24:E2:C0:2E:FE:27:14:BC:AE:AE:AF:D5:0D:07:B4:BC
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/NLXNbyTiwC7-JxS8rq6v1Q0HtLw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.132.160.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:10:92:97:86:ef:e6:ea:0e:87:d2:83:99:7e:65:ee:b5:b2:
df:55:ad:e1:01:03:d2:25:39:e4:5e:18:9c:33:c6:a5:f9:50:
e5:28:a4:bc:d9:38:0e:17:43:26:c5:e9:60:73:14:06:bd:3e:
2e:88:7c:43:77:65:7c:7f:28:1f:a9:2c:9d:58:69:61:c8:e2:
fe:0a:34:d3:1d:9f:ca:94:19:a4:e2:01:4a:2f:78:e3:40:ff:
87:7f:75:58:1c:1e:24:93:a7:94:10:1c:52:36:b2:e2:87:cf:
b8:ff:3e:97:e1:1f:aa:55:c2:85:f1:af:e4:b0:0d:98:26:50:
82:74:87:cd:29:16:49:aa:5f:62:ec:74:69:18:a2:13:36:bc:
4d:04:33:9d:f1:02:3c:0e:30:cf:8e:66:35:b7:7b:06:0c:07:
3c:a7:11:51:fe:1d:c2:00:b6:36:fc:4a:74:87:ed:7a:f1:f4:
8c:54:57:f0:51:c0:56:f8:5b:30:8e:b4:64:4f:21:77:ba:1d:
f0:64:97:6c:5f:16:f6:c4:bb:c7:eb:ae:c0:4f:71:d6:44:b4:
19:24:44:01:5f:5c:40:04:19:4c:36:ce:e7:ee:67:10:83:75:
05:a3:5b:c2:b2:57:f3:a8:47:78:8b:ca:d5:42:08:f2:9c:71:
42:91:44:e3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYuG2bONgaq5nDot81PXS9iGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5ZDU3NDQ3ZTM0MjBiODUzODc1YjZmYTQwMzcyYWFkZTMx
OTJjYTIwHhcNMjMxMDMxMTc0ODE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNGI1Y2Q2ZjI0ZTJjMDJlZmUyNzE0YmNhZWFlYWZkNTBkMDdiNGJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh4wg1E7MDeFwCHiyLBBub7CNC8+t
8Gnvi/JoBkJxexYRfXLVNMBcYQBMnntjflWcHas0NW6fM4iGJbmagS8zJhWsGmv+
bNKtoyWtdAJ+xT2t3D/KsSxsyohsi5DTf7y8QuE5cCSpolNDo8v551Y7I1ZeFM2m
y/qzWr2uctC/pA2Vxz8YLWZSyOKwgFsdx9A97JfKrk155uZ8DdfwXVqbgtin7Qrj
Snnk4BiOtYvyhQxTGJLcpe8xboty7vVAJFa7k9nmbT5IkvAjCjRlCv/VuJYaGs1n
ARXjDl1foThVsutoDzxJHdkOT9yz+YUNpqn5IsTa9pmkKRY4zgvhzW8aZwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDS1zW8k4sAu/icUvK6ur9UNB7S8MB8GA1UdIwQY
MBaAFMnVdEfjQguFOHW2+kA3Kq3jGSyiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTkt
NGUxOThmMGE2MDEzLzEvTkxYTmJ5VGl3QzctSnhTOHJxNnYxUTBIdEx3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTktNGUxOThmMGE2MDEz
LzEveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvISgMA0G
CSqGSIb3DQEBCwUAA4IBAQBfEJKXhu/m6g6H0oOZfmXutbLfVa3hAQPSJTnkXhic
M8al+VDlKKS82TgOF0MmxelgcxQGvT4uiHxDd2V8fygfqSydWGlhyOL+CjTTHZ/K
lBmk4gFKL3jjQP+Hf3VYHB4kk6eUEBxSNrLih8+4/z6X4R+qVcKF8a/ksA2YJlCC
dIfNKRZJql9i7HRpGKITNrxNBDOd8QI8DjDPjmY1t3sGDAc8pxFR/h3CALY2/Ep0
h+168fSMVFfwUcBW+FswjrRkTyF3uh3wZJdsXxb2xLvH667AT3HWRLQZJEQBX1xA
BBlMNs7n7mcQg3UFo1vCslfzqEd4i8rVQgjynHFCkUTj
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:58 2024 by rpki-client on console-ams.rpki-client.org