Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/NPPTJUC2GbkQ3dqP6UzgiahIx3I.roa
File: NPPTJUC2GbkQ3dqP6UzgiahIx3I.roa (raw, json)
Hash identifier: MXiLO1f5Y6m3Fl29NykJnzu8HAEUlhC+g5rFZWNwsRA=
Subject key identifier: 34:F3:D3:25:40:B6:19:B9:10:DD:DA:8F:E9:4C:E0:89:A8:48:C7:72
Certificate issuer: /CN=08a5c3aba421b78a7d5d09b75b4ce3be5273caac
Certificate serial: 018570E765BEF4F084E912B4C231032551A2
Authority key identifier: 08:A5:C3:AB:A4:21:B7:8A:7D:5D:09:B7:5B:4C:E3:BE:52:73:CA:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CKXDq6Qht4p9XQm3W0zjvlJzyqw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/NPPTJUC2GbkQ3dqP6UzgiahIx3I.roa
Signing time: Mon 02 Jan 2023 05:14:51 +0000
ROA not before: Mon 02 Jan 2023 05:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204897
IP address blocks: 185.236.144.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:65:be:f4:f0:84:e9:12:b4:c2:31:03:25:51:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08a5c3aba421b78a7d5d09b75b4ce3be5273caac
Validity
Not Before: Jan 2 05:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=34f3d32540b619b910ddda8fe94ce089a848c772
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ea:ff:4e:cc:dd:02:1a:77:fe:1c:88:59:12:
fa:66:13:60:e0:71:ca:86:8a:fb:cb:4c:4b:3d:0a:
34:a2:d5:95:a1:96:b7:03:7e:ab:ab:b0:03:db:90:
55:c7:62:25:e1:f2:ec:b6:8f:65:f3:49:fc:c5:04:
62:de:7d:42:78:cc:54:b3:c7:70:65:78:af:a4:4e:
e2:ce:56:33:f9:11:9d:a9:da:97:9b:d4:91:78:b5:
cc:70:82:2b:74:47:60:e8:aa:65:da:e6:19:e2:66:
bd:db:e9:38:e9:3e:7e:46:1d:56:f4:52:4e:1e:26:
21:28:ac:61:dd:38:d1:f8:7d:33:60:51:a8:5a:ff:
57:fe:14:20:7e:d7:5a:ff:5a:25:e2:be:ab:45:6e:
19:1d:85:f0:32:a9:dd:8e:d2:9e:95:51:f1:8e:6d:
8a:c7:a8:d4:b6:47:53:e0:8f:40:91:95:ff:2f:89:
5a:05:35:54:cb:95:13:9c:dd:47:4f:13:e5:59:f2:
43:9d:be:2d:9e:dd:af:e2:f2:7c:db:b3:33:e1:5f:
53:fe:72:84:f9:bf:2d:c5:d0:a6:ec:f2:ff:9d:7e:
66:c7:a2:fe:79:38:c1:18:cc:49:f2:0a:b2:2c:65:
1d:30:fe:1f:c7:1c:2c:62:e9:f5:73:60:32:9a:85:
fc:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:F3:D3:25:40:B6:19:B9:10:DD:DA:8F:E9:4C:E0:89:A8:48:C7:72
X509v3 Authority Key Identifier:
keyid:08:A5:C3:AB:A4:21:B7:8A:7D:5D:09:B7:5B:4C:E3:BE:52:73:CA:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CKXDq6Qht4p9XQm3W0zjvlJzyqw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/NPPTJUC2GbkQ3dqP6UzgiahIx3I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.236.144.0/22
Signature Algorithm: sha256WithRSAEncryption
67:25:47:a3:16:15:85:70:a5:01:99:eb:78:61:07:87:b2:d9:
87:91:c9:8c:80:a2:4b:6c:48:06:71:38:a2:46:b8:a9:51:bb:
e8:22:6a:f7:ec:5a:44:67:a0:0c:2a:cc:54:ea:8e:b2:56:28:
a1:25:01:df:20:c1:4e:78:dc:08:db:1d:83:ad:2a:40:41:d6:
c9:e9:f1:1d:a4:fe:6b:cc:c3:11:49:55:21:d5:61:30:75:b1:
83:f7:e0:0f:8c:7e:5a:0e:a4:0a:87:1b:70:f4:21:b1:50:bd:
0f:d9:f1:13:f4:e3:f6:c7:70:57:d0:b1:87:51:c8:2d:5e:5b:
b2:da:06:05:e2:c1:a3:4e:d1:8a:f6:2f:f3:18:a9:f9:a4:da:
93:8d:dc:b4:fc:b4:d9:f6:2d:47:30:91:ff:53:0c:33:55:dd:
8b:20:b9:42:d5:ad:dc:b2:a8:18:a2:0e:01:09:ff:fd:9b:02:
21:d4:7c:ee:55:34:1b:bd:e4:cf:74:42:87:b6:cb:06:45:58:
79:c1:16:5e:c5:c8:2a:3d:52:e7:0d:04:f1:01:94:1a:b8:98:
d1:34:9c:d4:c6:e8:a8:10:34:c7:fb:b2:61:6a:f7:c1:15:5f:
c2:e9:82:51:9c:42:be:31:da:d2:33:8c:7b:35:d9:81:8a:6e:
d5:f6:93:78
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVw52W+9PCE6RK0wjEDJVGiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4YTVjM2FiYTQyMWI3OGE3ZDVkMDliNzViNGNlM2JlNTI3
M2NhYWMwHhcNMjMwMTAyMDUxNDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNGYzZDMyNTQwYjYxOWI5MTBkZGRhOGZlOTRjZTA4OWE4NDhjNzcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwOr/TszdAhp3/hyIWRL6ZhNg4HHK
hor7y0xLPQo0otWVoZa3A36rq7AD25BVx2Il4fLsto9l80n8xQRi3n1CeMxUs8dw
ZXivpE7izlYz+RGdqdqXm9SReLXMcIIrdEdg6Kpl2uYZ4ma92+k46T5+Rh1W9FJO
HiYhKKxh3TjR+H0zYFGoWv9X/hQgftda/1ol4r6rRW4ZHYXwMqndjtKelVHxjm2K
x6jUtkdT4I9AkZX/L4laBTVUy5UTnN1HTxPlWfJDnb4tnt2v4vJ827Mz4V9T/nKE
+b8txdCm7PL/nX5mx6L+eTjBGMxJ8gqyLGUdMP4fxxwsYun1c2AymoX8owIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDTz0yVAthm5EN3aj+lM4ImoSMdyMB8GA1UdIwQY
MBaAFAilw6ukIbeKfV0Jt1tM475Sc8qsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ0tYRHE2UWh0NHA5WFFtM1cwemp2bEp6eXF3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My83YmQ4Y2YtMmE2MS00Yjc0LTg2MGQt
MzY0ZmFlN2M3MmM0LzEvTlBQVEpVQzJHYmtRM2RxUDZVemdpYWhJeDNJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My83YmQ4Y2YtMmE2MS00Yjc0LTg2MGQtMzY0ZmFlN2M3MmM0
LzEvQ0tYRHE2UWh0NHA5WFFtM1cwemp2bEp6eXF3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCueyQMA0G
CSqGSIb3DQEBCwUAA4IBAQBnJUejFhWFcKUBmet4YQeHstmHkcmMgKJLbEgGcTii
RripUbvoImr37FpEZ6AMKsxU6o6yViihJQHfIMFOeNwI2x2DrSpAQdbJ6fEdpP5r
zMMRSVUh1WEwdbGD9+APjH5aDqQKhxtw9CGxUL0P2fET9OP2x3BX0LGHUcgtXluy
2gYF4sGjTtGK9i/zGKn5pNqTjdy0/LTZ9i1HMJH/UwwzVd2LILlC1a3csqgYog4B
Cf/9mwIh1HzuVTQbveTPdEKHtssGRVh5wRZexcgqPVLnDQTxAZQauJjRNJzUxuio
EDTH+7JhavfBFV/C6YJRnEK+MdrSM4x7NdmBim7V9pN4
-----END CERTIFICATE-----
Generated at Wed Oct 4 10:07:43 2023 by rpki-client on console-fra.rpki-client.org