Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/nLzHvbA94QdZ2AWeiVy-wO90CPY.roa
File: nLzHvbA94QdZ2AWeiVy-wO90CPY.roa (raw, json)
Hash identifier: 9mD5S/E5K7OlPC++VjJT8dX31PiVSEJX6H4D/lEy9PU=
Subject key identifier: 9C:BC:C7:BD:B0:3D:E1:07:59:D8:05:9E:89:5C:BE:C0:EF:74:08:F6
Certificate issuer: /CN=b0a4fc2af38af5b4f5861e27fd007e624b5f9b02
Certificate serial: 018CC6B77C2D195D789CF5BEC0AC50BEC661
Authority key identifier: B0:A4:FC:2A:F3:8A:F5:B4:F5:86:1E:27:FD:00:7E:62:4B:5F:9B:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sKT8KvOK9bT1hh4n_QB-YktfmwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/nLzHvbA94QdZ2AWeiVy-wO90CPY.roa
Signing time: Mon 01 Jan 2024 20:29:22 +0000
ROA not before: Mon 01 Jan 2024 20:29:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200445
IP address blocks: 176.222.60.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 28 May 2024 14:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b7:7c:2d:19:5d:78:9c:f5:be:c0:ac:50:be:c6:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0a4fc2af38af5b4f5861e27fd007e624b5f9b02
Validity
Not Before: Jan 1 20:29:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9cbcc7bdb03de10759d8059e895cbec0ef7408f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:a8:55:ed:3e:52:e7:d2:52:7e:b4:6f:66:31:
5e:a5:a2:b5:cb:8a:61:8f:5c:91:0d:7a:16:bd:aa:
e3:d6:01:f8:ee:73:16:00:d6:90:19:8d:7f:b7:82:
74:14:09:42:05:d0:be:3a:18:39:07:c1:11:b0:f2:
2f:a7:f1:69:92:7a:c3:25:31:31:be:e7:c7:fe:1a:
82:83:93:ae:d6:f1:d4:b8:61:76:19:13:36:67:20:
ef:fd:37:01:39:dd:c9:f4:6e:ba:49:f4:77:90:63:
e7:a3:e8:47:5d:3a:1b:15:d4:16:b0:4a:0a:0d:66:
7f:e7:12:8d:45:36:18:82:47:0b:38:be:ed:fe:8b:
d4:fc:ec:8b:0e:22:93:5c:b5:16:62:1c:05:fc:81:
6b:21:08:3d:28:60:e1:3f:59:65:71:f3:46:36:c2:
d5:c5:da:f6:a5:5d:c1:1c:79:9c:37:ad:ff:98:b1:
b1:90:8c:6f:58:99:83:20:50:3c:ff:87:f9:cf:04:
0f:6f:67:d3:e3:71:88:e7:d5:c6:c5:5b:f5:c1:b5:
e7:d5:48:6e:b6:f8:b6:39:d0:f3:ad:27:ba:10:85:
49:84:f9:51:b8:5f:75:0a:ba:44:d7:3a:ad:d7:32:
74:ee:44:22:12:16:e5:ab:aa:e5:08:2c:3f:7d:dc:
20:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:BC:C7:BD:B0:3D:E1:07:59:D8:05:9E:89:5C:BE:C0:EF:74:08:F6
X509v3 Authority Key Identifier:
keyid:B0:A4:FC:2A:F3:8A:F5:B4:F5:86:1E:27:FD:00:7E:62:4B:5F:9B:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sKT8KvOK9bT1hh4n_QB-YktfmwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/nLzHvbA94QdZ2AWeiVy-wO90CPY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.222.60.0/24
Signature Algorithm: sha256WithRSAEncryption
54:0a:11:f1:f4:3e:ee:90:7d:25:8d:c6:e4:df:3a:bc:8a:76:
81:af:32:0f:63:7b:7d:f0:22:49:35:ba:6d:86:07:a4:f4:7c:
8d:15:2e:79:3c:06:72:bc:d7:6c:aa:d5:10:aa:69:42:26:c2:
9e:22:e2:82:e4:24:c4:98:19:9f:67:c1:df:46:a5:87:a9:36:
42:fc:66:44:75:63:f2:7a:67:30:02:6e:b3:5f:67:15:46:75:
cd:20:df:0d:06:08:b1:82:73:37:78:96:0a:da:62:41:13:72:
45:a3:6a:a6:04:bb:31:31:3d:06:39:81:83:39:52:07:b3:33:
0e:e9:a5:a3:27:1a:69:3c:02:51:87:ed:a0:01:c2:a4:fa:22:
ac:ef:77:43:dd:68:61:53:d9:4b:aa:b3:f2:67:d3:ce:d1:47:
5b:b7:e7:82:aa:1b:45:1c:91:21:4d:3d:71:8a:bd:3b:cb:27:
dd:19:b7:32:2b:47:14:2e:d5:72:a8:c9:70:76:a9:be:a5:34:
83:0e:39:fb:1d:59:0d:5e:61:7d:56:e6:26:7e:00:fd:c6:5f:
7c:65:02:4a:81:83:7c:b5:b3:c7:bb:bc:73:17:12:64:76:af:
86:a8:fd:0a:dc:fc:18:4c:43:83:f2:fa:e2:d1:0c:60:01:aa:
7e:5f:4f:dc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzGt3wtGV14nPW+wKxQvsZhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIwYTRmYzJhZjM4YWY1YjRmNTg2MWUyN2ZkMDA3ZTYyNGI1
ZjliMDIwHhcNMjQwMTAxMjAyOTIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5Y2JjYzdiZGIwM2RlMTA3NTlkODA1OWU4OTVjYmVjMGVmNzQwOGY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnqhV7T5S59JSfrRvZjFepaK1y4ph
j1yRDXoWvarj1gH47nMWANaQGY1/t4J0FAlCBdC+Ohg5B8ERsPIvp/FpknrDJTEx
vufH/hqCg5Ou1vHUuGF2GRM2ZyDv/TcBOd3J9G66SfR3kGPno+hHXTobFdQWsEoK
DWZ/5xKNRTYYgkcLOL7t/ovU/OyLDiKTXLUWYhwF/IFrIQg9KGDhP1llcfNGNsLV
xdr2pV3BHHmcN63/mLGxkIxvWJmDIFA8/4f5zwQPb2fT43GI59XGxVv1wbXn1Uhu
tvi2OdDzrSe6EIVJhPlRuF91CrpE1zqt1zJ07kQiEhblq6rlCCw/fdwgYQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJy8x72wPeEHWdgFnolcvsDvdAj2MB8GA1UdIwQY
MBaAFLCk/CrzivW09YYeJ/0AfmJLX5sCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc0tUOEt2T0s5YlQxaGg0bl9RQi1Za3RmbXdJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9hODBkYmYtNWNiNC00ZTI2LWFkYWYt
NjhmZTA4NjIyNjE0LzEvbkx6SHZiQTk0UWRaMkFXZWlWeS13TzkwQ1BZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS9hODBkYmYtNWNiNC00ZTI2LWFkYWYtNjhmZTA4NjIyNjE0
LzEvc0tUOEt2T0s5YlQxaGg0bl9RQi1Za3RmbXdJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsN48MA0G
CSqGSIb3DQEBCwUAA4IBAQBUChHx9D7ukH0ljcbk3zq8inaBrzIPY3t98CJJNbpt
hgek9HyNFS55PAZyvNdsqtUQqmlCJsKeIuKC5CTEmBmfZ8HfRqWHqTZC/GZEdWPy
emcwAm6zX2cVRnXNIN8NBgixgnM3eJYK2mJBE3JFo2qmBLsxMT0GOYGDOVIHszMO
6aWjJxppPAJRh+2gAcKk+iKs73dD3WhhU9lLqrPyZ9PO0Udbt+eCqhtFHJEhTT1x
ir07yyfdGbcyK0cULtVyqMlwdqm+pTSDDjn7HVkNXmF9VuYmfgD9xl98ZQJKgYN8
tbPHu7xzFxJkdq+GqP0K3PwYTEOD8vri0QxgAap+X0/c
-----END CERTIFICATE-----
Generated at Tue May 28 17:10:52 2024 by rpki-client on console-fra.rpki-client.org