Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/f4b8e9-686d-41be-9891-df1e95d7edd9/1/nih9MuFhKREfsrLllnqs0BL-25s.roa
File: nih9MuFhKREfsrLllnqs0BL-25s.roa (raw, json)
Hash identifier: e73SgScfaQS8Kt52sPy1BI4NrEVf9n6oDSZB2zR/aCE=
Subject key identifier: 9E:28:7D:32:E1:61:29:11:1F:B2:B2:E5:96:7A:AC:D0:12:FE:DB:9B
Certificate issuer: /CN=0b5caf262fdbfcc5ff30e28a5104646e27a89262
Certificate serial: 0185728C89436656FBE73B183B10B47599CD
Authority key identifier: 0B:5C:AF:26:2F:DB:FC:C5:FF:30:E2:8A:51:04:64:6E:27:A8:92:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C1yvJi_b_MX_MOKKUQRkbieokmI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/f4b8e9-686d-41be-9891-df1e95d7edd9/1/nih9MuFhKREfsrLllnqs0BL-25s.roa
Signing time: Mon 02 Jan 2023 12:54:50 +0000
ROA not before: Mon 02 Jan 2023 12:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39686
IP address blocks: 193.247.198.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:8c:89:43:66:56:fb:e7:3b:18:3b:10:b4:75:99:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b5caf262fdbfcc5ff30e28a5104646e27a89262
Validity
Not Before: Jan 2 12:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9e287d32e16129111fb2b2e5967aacd012fedb9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:29:a3:46:ab:e8:1f:1b:f9:3e:d3:1f:84:14:
4b:88:a6:a0:4d:22:2b:99:bb:c0:57:cb:38:ce:85:
d9:a9:62:7d:c0:12:c6:d2:58:30:62:81:9f:e6:f9:
2c:d3:ca:c1:85:8c:c5:10:2a:64:35:3f:9b:08:d3:
e4:09:31:4f:6b:75:63:84:d9:f9:f0:a1:d3:88:e6:
9f:87:c8:65:22:12:10:5d:87:7b:72:d4:68:59:4e:
8f:f3:67:49:32:16:28:ef:5a:d5:0d:2f:62:94:86:
4f:28:96:0e:18:66:d1:59:c4:99:85:dd:7d:02:5e:
9c:e0:ae:32:c4:0e:69:09:5b:09:4f:16:42:ca:fa:
92:60:c6:ea:4a:2e:cc:c7:e4:9a:c2:dd:f6:9a:44:
19:29:7d:ee:80:c4:c7:07:d5:45:27:d5:af:52:2f:
9c:3d:45:6d:48:7f:9e:0e:aa:75:4e:7d:6d:7e:07:
44:e3:4c:71:5d:8b:d9:29:e4:8b:51:ef:38:9d:d0:
91:13:b2:ef:76:0a:42:c0:24:90:0e:60:4c:7e:cc:
44:b7:cf:af:6f:ef:e6:b8:ff:09:a5:89:48:78:9c:
9b:2d:21:55:85:cf:45:bf:ae:2a:dd:fd:1a:d2:dd:
fe:3d:7c:73:2f:a1:70:75:2b:f5:cc:f1:4d:d2:a7:
65:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:28:7D:32:E1:61:29:11:1F:B2:B2:E5:96:7A:AC:D0:12:FE:DB:9B
X509v3 Authority Key Identifier:
keyid:0B:5C:AF:26:2F:DB:FC:C5:FF:30:E2:8A:51:04:64:6E:27:A8:92:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C1yvJi_b_MX_MOKKUQRkbieokmI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/f4b8e9-686d-41be-9891-df1e95d7edd9/1/nih9MuFhKREfsrLllnqs0BL-25s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/f4b8e9-686d-41be-9891-df1e95d7edd9/1/C1yvJi_b_MX_MOKKUQRkbieokmI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.247.198.0/24
Signature Algorithm: sha256WithRSAEncryption
48:40:68:95:cd:09:91:32:71:39:5e:d1:50:b8:4b:0f:22:b4:
f9:23:f3:40:da:7f:fc:7a:26:9f:7a:5d:16:a1:aa:c7:59:71:
6c:3e:45:6c:e3:a1:a1:78:49:3c:d2:ab:e3:11:05:d4:86:88:
f7:79:71:73:c2:ad:f5:ad:1e:9e:e2:7d:6c:3a:39:81:34:c6:
d7:27:e5:da:5a:ad:6d:8e:17:11:b0:6b:78:d7:d4:70:d7:8b:
85:e9:f7:11:68:d4:69:3f:93:af:7f:7a:08:be:a2:d3:be:4a:
ea:0b:2a:2d:38:08:67:59:8e:0f:dc:0e:7f:da:0d:b7:97:07:
61:86:e9:c7:76:70:09:5e:be:0a:0c:d8:2d:c4:4c:65:ae:e6:
fb:8f:c1:d0:5f:51:ea:99:dc:29:36:2f:f2:3c:aa:b0:63:87:
26:de:1e:91:c2:92:81:0a:c6:10:18:7a:86:17:6d:a7:0b:dc:
41:6f:a0:4c:07:02:9e:3f:ee:0a:72:cd:32:c9:8d:21:93:47:
30:4c:0c:da:ce:88:04:4d:c6:ba:65:4b:63:f1:f4:5e:d3:2a:
80:c6:da:91:02:09:e0:f8:6f:e3:ef:e4:4e:b9:b0:04:ab:5c:
4a:5a:43:36:01:ae:d9:5f:c1:5c:02:33:28:fc:e9:a0:4a:a0:
72:6e:c1:81
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyjIlDZlb75zsYOxC0dZnNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBiNWNhZjI2MmZkYmZjYzVmZjMwZTI4YTUxMDQ2NDZlMjdh
ODkyNjIwHhcNMjMwMTAyMTI1NDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZTI4N2QzMmUxNjEyOTExMWZiMmIyZTU5NjdhYWNkMDEyZmVkYjliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxCmjRqvoHxv5PtMfhBRLiKagTSIr
mbvAV8s4zoXZqWJ9wBLG0lgwYoGf5vks08rBhYzFECpkNT+bCNPkCTFPa3VjhNn5
8KHTiOafh8hlIhIQXYd7ctRoWU6P82dJMhYo71rVDS9ilIZPKJYOGGbRWcSZhd19
Al6c4K4yxA5pCVsJTxZCyvqSYMbqSi7Mx+Sawt32mkQZKX3ugMTHB9VFJ9WvUi+c
PUVtSH+eDqp1Tn1tfgdE40xxXYvZKeSLUe84ndCRE7LvdgpCwCSQDmBMfsxEt8+v
b+/muP8JpYlIeJybLSFVhc9Fv64q3f0a0t3+PXxzL6FwdSv1zPFN0qdlYQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJ4ofTLhYSkRH7Ky5ZZ6rNAS/tubMB8GA1UdIwQY
MBaAFAtcryYv2/zF/zDiilEEZG4nqJJiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQzF5dkppX2JfTVhfTU9LS1VRUmtiaWVva21JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9mNGI4ZTktNjg2ZC00MWJlLTk4OTEt
ZGYxZTk1ZDdlZGQ5LzEvbmloOU11RmhLUkVmc3JMbGxucXMwQkwtMjVzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS9mNGI4ZTktNjg2ZC00MWJlLTk4OTEtZGYxZTk1ZDdlZGQ5
LzEvQzF5dkppX2JfTVhfTU9LS1VRUmtiaWVva21JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwffGMA0G
CSqGSIb3DQEBCwUAA4IBAQBIQGiVzQmRMnE5XtFQuEsPIrT5I/NA2n/8eiafel0W
oarHWXFsPkVs46GheEk80qvjEQXUhoj3eXFzwq31rR6e4n1sOjmBNMbXJ+XaWq1t
jhcRsGt419Rw14uF6fcRaNRpP5Ovf3oIvqLTvkrqCyotOAhnWY4P3A5/2g23lwdh
hunHdnAJXr4KDNgtxExlrub7j8HQX1HqmdwpNi/yPKqwY4cm3h6RwpKBCsYQGHqG
F22nC9xBb6BMBwKeP+4Kcs0yyY0hk0cwTAzazogETca6ZUtj8fRe0yqAxtqRAgng
+G/j7+ROubAEq1xKWkM2Aa7ZX8FcAjMo/OmgSqBybsGB
-----END CERTIFICATE-----
Generated at Tue Jan 2 15:21:03 2024 by rpki-client on console-ams.rpki-client.org