Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/NLOLixuxnAlvlsilxpVIIyGPAy8.roa
File: NLOLixuxnAlvlsilxpVIIyGPAy8.roa (raw, json)
Hash identifier: xw8XUZFlCBhRbFRoBGDqpyrsHxhBAd16Jo7UaOSp1gA=
Subject key identifier: 34:B3:8B:8B:1B:B1:9C:09:6F:96:C8:A5:C6:95:48:23:21:8F:03:2F
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01905B4445F3F766DEDD901FDF3647EDC5FB
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/NLOLixuxnAlvlsilxpVIIyGPAy8.roa
Signing time: Thu 27 Jun 2024 19:55:19 +0000
ROA not before: Thu 27 Jun 2024 19:55:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214998
IP address blocks: 193.163.85.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 30 Jun 2024 08:19:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:5b:44:45:f3:f7:66:de:dd:90:1f:df:36:47:ed:c5:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jun 27 19:55:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=34b38b8b1bb19c096f96c8a5c6954823218f032f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:8c:ed:4d:5d:50:6c:e5:ee:83:13:7d:c1:cf:
96:47:c7:16:e6:6a:e6:1b:bc:c7:57:57:4e:3c:91:
30:4f:7d:f0:a6:bf:7c:4c:00:71:ab:aa:fc:0d:5d:
c8:6e:36:d0:46:71:64:25:6a:f1:0a:5c:b0:5c:9d:
23:eb:7e:30:fe:05:ab:b0:73:5d:19:3e:77:73:35:
00:62:fd:81:5e:e0:db:83:8b:b2:fe:37:8d:dd:a1:
e3:78:d9:89:86:01:0b:64:d3:88:f8:06:d5:cd:ae:
69:fc:0d:1b:08:72:47:7f:08:b6:97:fc:81:d9:c4:
c3:fe:29:07:da:e8:f5:9d:95:f5:34:ae:18:59:75:
d2:63:98:d2:72:42:b0:b7:d3:06:4c:79:90:e6:73:
0c:6d:b9:64:ea:c6:4c:94:bc:57:c9:70:fe:ce:d9:
2d:a8:d3:7d:e4:83:d8:5b:2f:f3:a8:57:e9:ac:9d:
71:1b:ca:0d:66:e2:7d:fc:fb:4a:cf:35:e1:e0:bc:
3b:26:47:5e:2e:cd:c9:f1:f7:25:a0:9d:63:05:a1:
de:1d:3f:62:a0:77:34:7d:77:af:c4:b4:49:3b:54:
a9:c0:c6:48:80:f7:d3:34:87:ad:14:96:2b:83:73:
0b:92:2f:f7:91:eb:e3:04:5b:88:d9:59:c3:b7:b0:
d2:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:B3:8B:8B:1B:B1:9C:09:6F:96:C8:A5:C6:95:48:23:21:8F:03:2F
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/NLOLixuxnAlvlsilxpVIIyGPAy8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.85.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:d3:6d:b2:35:4e:fe:ba:bf:15:bd:6d:98:18:c1:2d:f5:83:
8a:5e:ca:a5:6d:65:36:48:9a:ad:23:98:18:84:92:83:ea:4d:
37:3b:8b:2c:4e:35:25:48:9e:b0:d1:0b:8b:ca:51:db:8e:2d:
c6:1e:de:ed:e3:21:c5:ea:e4:f4:92:7c:f1:71:45:f4:cf:1c:
56:87:09:79:2f:88:d7:8a:76:cc:2d:ba:02:47:eb:a9:c4:3f:
f3:57:49:37:d9:3d:37:4c:52:55:e1:41:65:9e:6b:4a:aa:1c:
36:83:45:45:5e:ac:87:4a:37:10:bd:9c:fd:ec:4a:ae:89:1c:
05:b2:d2:d8:d0:bf:8b:75:9d:23:03:c1:6c:e2:7b:c4:c8:96:
27:7b:d2:31:8f:d3:ff:23:ee:d3:4a:07:7a:07:1a:4e:f9:ce:
3c:b5:49:ca:0b:5c:d4:19:e7:7c:85:a0:48:52:92:b7:43:77:
81:e8:38:29:cc:49:cd:9e:ba:52:01:83:83:c1:ec:55:64:6b:
cf:75:86:64:89:e9:d0:25:5e:26:1e:2c:e9:e8:06:84:69:62:
fe:12:1b:aa:c7:ba:2d:c8:bc:76:da:db:68:88:aa:b1:a0:0d:
57:63:b0:53:1e:a7:91:33:41:d0:08:c3:b3:e4:43:c8:03:ee:
8d:76:cd:88
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZBbREXz92be3ZAf3zZH7cX7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjQwNjI3MTk1NTE5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNGIzOGI4YjFiYjE5YzA5NmY5NmM4YTVjNjk1NDgyMzIxOGYwMzJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0IztTV1QbOXugxN9wc+WR8cW5mrm
G7zHV1dOPJEwT33wpr98TABxq6r8DV3IbjbQRnFkJWrxClywXJ0j634w/gWrsHNd
GT53czUAYv2BXuDbg4uy/jeN3aHjeNmJhgELZNOI+AbVza5p/A0bCHJHfwi2l/yB
2cTD/ikH2uj1nZX1NK4YWXXSY5jSckKwt9MGTHmQ5nMMbblk6sZMlLxXyXD+ztkt
qNN95IPYWy/zqFfprJ1xG8oNZuJ9/PtKzzXh4Lw7JkdeLs3J8fcloJ1jBaHeHT9i
oHc0fXevxLRJO1SpwMZIgPfTNIetFJYrg3MLki/3kevjBFuI2VnDt7DSbQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDSzi4sbsZwJb5bIpcaVSCMhjwMvMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvTkxPTGl4dXhuQWx2bHNpbHhwVklJeUdQQXk4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwaNVMA0G
CSqGSIb3DQEBCwUAA4IBAQA7022yNU7+ur8VvW2YGMEt9YOKXsqlbWU2SJqtI5gY
hJKD6k03O4ssTjUlSJ6w0QuLylHbji3GHt7t4yHF6uT0knzxcUX0zxxWhwl5L4jX
inbMLboCR+upxD/zV0k32T03TFJV4UFlnmtKqhw2g0VFXqyHSjcQvZz97EquiRwF
stLY0L+LdZ0jA8Fs4nvEyJYne9Ixj9P/I+7TSgd6BxpO+c48tUnKC1zUGed8haBI
UpK3Q3eB6DgpzEnNnrpSAYODwexVZGvPdYZkienQJV4mHizp6AaEaWL+Ehuqx7ot
yLx22ttoiKqxoA1XY7BTHqeRM0HQCMOz5EPIA+6Nds2I
-----END CERTIFICATE-----
Generated at Sun Jun 30 14:05:45 2024 by rpki-client on console-fra.rpki-client.org