Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/nxVf6RPMPRUSx1hybjYtCZB2MuI.roa
File: nxVf6RPMPRUSx1hybjYtCZB2MuI.roa (raw, json)
Hash identifier: etYVPHC54Lc3QLw0PDAnwuC4s/nfMozb3XEWTjm+YKE=
Subject key identifier: 9F:15:5F:E9:13:CC:3D:15:12:C7:58:72:6E:36:2D:09:90:76:32:E2
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 018571BA13FC934FDF51971BDBF3E3BB3DF9
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/nxVf6RPMPRUSx1hybjYtCZB2MuI.roa
Signing time: Mon 02 Jan 2023 09:04:58 +0000
ROA not before: Mon 02 Jan 2023 09:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207459
IP address blocks: 188.191.96.0/24 maxlen: 24
91.225.225.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 13 Apr 2023 18:44:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:ba:13:fc:93:4f:df:51:97:1b:db:f3:e3:bb:3d:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Jan 2 09:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9f155fe913cc3d1512c758726e362d09907632e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b4:a8:0c:fd:9a:27:65:87:60:c0:45:91:ed:
af:f6:01:82:3e:1c:b2:18:15:1e:84:bb:d8:8a:0f:
b3:3c:71:65:b4:0b:c5:7a:1d:b8:0e:fe:1e:37:fd:
5d:4f:74:09:35:cf:1c:ad:78:a4:7a:1b:f5:06:d4:
24:a5:0b:6d:44:ee:88:1a:b2:13:24:6d:e3:3d:1a:
dc:3b:12:77:65:fc:c2:b7:99:7f:73:88:1f:04:82:
e9:cb:ad:c8:35:da:e8:d5:c3:bf:7e:5d:b0:46:f5:
ca:2f:dc:cf:29:27:a3:b7:99:7d:24:8c:9f:a8:74:
06:12:0f:83:68:36:5d:51:67:3b:77:0f:e0:e4:0d:
90:ca:9e:ad:1d:c9:61:fb:ff:b0:f8:3c:e3:81:ef:
e5:38:e7:09:a3:f1:11:4e:e3:f9:31:de:e1:1a:6f:
9b:95:f5:26:3e:11:d5:d3:f3:89:f6:32:20:8f:53:
3c:a4:b7:b0:48:4e:cb:2e:79:92:33:bb:a7:11:6e:
43:a8:dc:08:ec:4f:c3:b1:07:7e:f1:24:f4:ee:73:
ac:38:d1:55:e8:8a:27:71:7f:b4:b1:bd:fa:76:f9:
34:dc:50:b7:f0:b0:a5:7b:80:82:37:1a:b3:3a:39:
a4:54:23:26:49:e2:62:f1:ec:b2:d1:71:3c:cf:b3:
b6:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:15:5F:E9:13:CC:3D:15:12:C7:58:72:6E:36:2D:09:90:76:32:E2
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/nxVf6RPMPRUSx1hybjYtCZB2MuI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.225.225.0/24
188.191.96.0/24
Signature Algorithm: sha256WithRSAEncryption
10:e0:b1:e5:2c:a2:6d:75:b0:7b:91:95:21:82:db:8f:56:0a:
ea:68:03:d3:1d:ba:71:7c:23:36:9f:1f:f1:21:9a:79:ab:cf:
06:03:75:9f:a1:99:9a:8b:50:51:cf:3e:8c:62:a8:97:01:b6:
3f:98:e9:6a:f2:35:43:3a:f7:98:aa:05:0e:ef:9e:2d:5c:86:
8f:7a:f4:90:d0:4e:cd:d0:ff:d8:b9:78:99:03:05:8b:f9:84:
99:2f:0f:20:62:7a:0d:ca:bc:41:59:32:25:2f:a5:15:a3:77:
7a:d2:f4:db:dd:c3:ec:17:aa:34:cc:77:f8:80:39:ba:8e:47:
74:4e:50:fe:4f:c2:a9:c3:d6:2f:80:18:2e:03:32:f8:c6:cf:
3e:31:9c:2d:0b:9f:4c:9b:53:20:06:e3:bf:23:9a:10:4c:71:
59:c2:1e:51:d7:1c:0d:43:7a:e8:3e:42:70:82:36:9c:9a:f3:
37:c9:b4:3d:cf:65:88:17:fb:5e:9a:46:12:96:90:19:0a:42:
c0:1f:b8:4e:93:c0:d5:1f:07:43:d3:ef:1b:24:e6:4c:09:95:
46:fc:8b:64:6c:99:64:86:c2:18:b3:53:9a:bc:b4:96:65:66:
99:39:9d:bd:47:5a:df:7e:12:91:8d:1f:1d:71:c3:02:67:36:
97:45:5d:a9
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVxuhP8k0/fUZcb2/Pjuz35MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhkMWFjODNlZTNhM2Y5NjhkNjZhZDJmZGY0NjE2ZTdiYjFl
NGQxZDcwHhcNMjMwMTAyMDkwNDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZjE1NWZlOTEzY2MzZDE1MTJjNzU4NzI2ZTM2MmQwOTkwNzYzMmUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx7SoDP2aJ2WHYMBFke2v9gGCPhyy
GBUehLvYig+zPHFltAvFeh24Dv4eN/1dT3QJNc8crXikehv1BtQkpQttRO6IGrIT
JG3jPRrcOxJ3ZfzCt5l/c4gfBILpy63INdro1cO/fl2wRvXKL9zPKSejt5l9JIyf
qHQGEg+DaDZdUWc7dw/g5A2Qyp6tHclh+/+w+Dzjge/lOOcJo/ERTuP5Md7hGm+b
lfUmPhHV0/OJ9jIgj1M8pLewSE7LLnmSM7unEW5DqNwI7E/DsQd+8ST07nOsONFV
6IoncX+0sb36dvk03FC38LCle4CCNxqzOjmkVCMmSeJi8eyy0XE8z7O2tQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFJ8VX+kTzD0VEsdYcm42LQmQdjLiMB8GA1UdIwQY
MBaAFI0ayD7jo/lo1mrS/fRhbnux5NHXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvalJySVB1T2otV2pXYXRMOTlHRnVlN0hrMGRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi80YWJmM2YtMTU4Zi00ZjYyLWE5ZWIt
ZGRmNTY3ZWRlZDAzLzEvbnhWZjZSUE1QUlVTeDFoeWJqWXRDWkIyTXVJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi80YWJmM2YtMTU4Zi00ZjYyLWE5ZWItZGRmNTY3ZWRlZDAz
LzEvalJySVB1T2otV2pXYXRMOTlHRnVlN0hrMGRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAW+HhAwQA
vL9gMA0GCSqGSIb3DQEBCwUAA4IBAQAQ4LHlLKJtdbB7kZUhgtuPVgrqaAPTHbpx
fCM2nx/xIZp5q88GA3WfoZmai1BRzz6MYqiXAbY/mOlq8jVDOveYqgUO754tXIaP
evSQ0E7N0P/YuXiZAwWL+YSZLw8gYnoNyrxBWTIlL6UVo3d60vTb3cPsF6o0zHf4
gDm6jkd0TlD+T8Kpw9YvgBguAzL4xs8+MZwtC59Mm1MgBuO/I5oQTHFZwh5R1xwN
Q3roPkJwgjacmvM3ybQ9z2WIF/temkYSlpAZCkLAH7hOk8DVHwdD0+8bJOZMCZVG
/ItkbJlkhsIYs1OavLSWZWaZOZ29R1rffhKRjR8dccMCZzaXRV2p
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:49 2024 by rpki-client on console-ams.rpki-client.org