Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/62584a-47ce-4aa8-8992-5ba756e78869/1/nuwn2KS07wFALdtkpKqbsi8YA8k.roa
File: nuwn2KS07wFALdtkpKqbsi8YA8k.roa (raw, json)
Hash identifier: oGj6D5IptrPaRnBvFH8EZTBY8dfwZXueUQ0ZnQI3Glc=
Subject key identifier: 9E:EC:27:D8:A4:B4:EF:01:40:2D:DB:64:A4:AA:9B:B2:2F:18:03:C9
Certificate issuer: /CN=7367c490447f5045c02367db8d21b4e08749fa76
Certificate serial: 01924C83A502D4D66B4A4CA3B6AFF8695F4C
Authority key identifier: 73:67:C4:90:44:7F:50:45:C0:23:67:DB:8D:21:B4:E0:87:49:FA:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c2fEkER_UEXAI2fbjSG04IdJ-nY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/62584a-47ce-4aa8-8992-5ba756e78869/1/nuwn2KS07wFALdtkpKqbsi8YA8k.roa
Signing time: Wed 02 Oct 2024 09:15:48 +0000
ROA not before: Wed 02 Oct 2024 09:15:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57827
IP address blocks: 176.108.182.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 03 Oct 2024 21:45:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:4c:83:a5:02:d4:d6:6b:4a:4c:a3:b6:af:f8:69:5f:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7367c490447f5045c02367db8d21b4e08749fa76
Validity
Not Before: Oct 2 09:15:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9eec27d8a4b4ef01402ddb64a4aa9bb22f1803c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:e0:5a:cf:f6:0d:ef:4c:f0:43:c0:4f:d1:1e:
b9:cc:e0:9c:cb:01:26:0d:67:b2:0f:d1:82:99:90:
26:7c:bf:d7:21:f7:da:74:16:3d:50:11:49:40:42:
1b:d5:13:86:5a:74:e7:3e:65:33:ab:2f:c5:c2:4e:
82:53:25:c2:63:34:d2:5e:f5:8b:ca:eb:d5:53:4d:
fa:2f:5b:43:17:b7:3d:04:ec:aa:d7:a5:1b:2c:61:
d8:f2:b8:c3:86:05:56:98:88:37:8e:a6:52:36:9c:
a8:5e:98:36:96:1f:fa:e3:6d:9f:f1:d6:c1:e8:e7:
e4:18:e5:01:67:82:1b:01:20:22:d8:64:b7:a7:d5:
3a:11:11:d6:fa:46:11:90:b9:77:21:f1:d8:82:c4:
25:a5:ff:e6:c1:b5:53:5e:34:c8:d3:81:95:8b:36:
68:c2:d7:4a:39:dc:6d:86:cf:11:6f:86:20:6f:d8:
36:48:22:b4:b7:3f:fa:cd:f9:51:41:08:38:c0:43:
af:06:79:04:fb:5d:06:99:59:2d:83:08:67:d5:f3:
57:8a:59:b2:af:c6:ae:64:f3:af:0f:bb:77:d7:30:
05:89:48:d1:f9:9b:39:24:8c:50:91:b7:5d:0b:43:
19:b0:89:2d:a9:fb:ab:3d:28:81:63:0b:07:2e:de:
20:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:EC:27:D8:A4:B4:EF:01:40:2D:DB:64:A4:AA:9B:B2:2F:18:03:C9
X509v3 Authority Key Identifier:
keyid:73:67:C4:90:44:7F:50:45:C0:23:67:DB:8D:21:B4:E0:87:49:FA:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2fEkER_UEXAI2fbjSG04IdJ-nY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/62584a-47ce-4aa8-8992-5ba756e78869/1/nuwn2KS07wFALdtkpKqbsi8YA8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/62584a-47ce-4aa8-8992-5ba756e78869/1/c2fEkER_UEXAI2fbjSG04IdJ-nY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.108.182.0/23
Signature Algorithm: sha256WithRSAEncryption
16:6d:01:4d:81:38:5b:99:ae:be:1f:f4:b5:1d:66:a1:38:bc:
03:ed:d9:ab:47:7f:84:d9:3d:33:d4:a1:6c:fc:56:bb:39:f9:
2a:b8:9c:f8:72:05:51:d4:83:74:b8:c5:0f:c4:74:fa:e7:ca:
78:d5:1b:e7:6a:8c:a8:73:23:a9:47:93:dc:f8:80:9d:d1:ed:
14:3d:2a:99:ad:e1:58:d9:24:47:ad:74:38:f0:88:d7:f9:52:
e2:15:39:96:5b:e4:0b:a7:1f:1b:42:bc:1b:95:3d:99:13:d5:
86:da:18:8f:d5:46:10:ec:66:d7:82:96:fc:cf:4d:c9:4c:c4:
82:3c:8f:3c:24:72:28:cb:cf:3f:0e:dc:26:89:9c:4d:2b:70:
83:de:de:7f:a2:70:8b:ed:9a:39:a1:c4:2a:00:96:6a:e1:c0:
ba:bf:08:a3:5c:a0:85:2f:6b:6c:77:b5:1e:7c:c3:8d:1d:20:
2d:6d:5b:7a:97:80:64:64:e9:62:a5:7b:2f:93:05:8f:75:50:
62:ea:0c:50:be:7d:60:61:fc:e2:fd:a4:d0:53:fd:c3:ef:fb:
ff:9e:40:38:db:d0:f9:7c:7b:38:f5:da:f3:4f:7e:09:e4:ee:
d4:44:76:3b:99:86:47:e0:35:af:5f:bb:8d:59:85:34:7b:be:
1f:18:db:85
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZJMg6UC1NZrSkyjtq/4aV9MMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczNjdjNDkwNDQ3ZjUwNDVjMDIzNjdkYjhkMjFiNGUwODc0
OWZhNzYwHhcNMjQxMDAyMDkxNTQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZWVjMjdkOGE0YjRlZjAxNDAyZGRiNjRhNGFhOWJiMjJmMTgwM2M5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5eBaz/YN70zwQ8BP0R65zOCcywEm
DWeyD9GCmZAmfL/XIffadBY9UBFJQEIb1ROGWnTnPmUzqy/Fwk6CUyXCYzTSXvWL
yuvVU036L1tDF7c9BOyq16UbLGHY8rjDhgVWmIg3jqZSNpyoXpg2lh/6422f8dbB
6OfkGOUBZ4IbASAi2GS3p9U6ERHW+kYRkLl3IfHYgsQlpf/mwbVTXjTI04GVizZo
wtdKOdxths8Rb4Ygb9g2SCK0tz/6zflRQQg4wEOvBnkE+10GmVktgwhn1fNXilmy
r8auZPOvD7t31zAFiUjR+Zs5JIxQkbddC0MZsIktqfurPSiBYwsHLt4ghQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJ7sJ9iktO8BQC3bZKSqm7IvGAPJMB8GA1UdIwQY
MBaAFHNnxJBEf1BFwCNn240htOCHSfp2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYzJmRWtFUl9VRVhBSTJmYmpTRzA0SWRKLW5ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS82MjU4NGEtNDdjZS00YWE4LTg5OTIt
NWJhNzU2ZTc4ODY5LzEvbnV3bjJLUzA3d0ZBTGR0a3BLcWJzaThZQThrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS82MjU4NGEtNDdjZS00YWE4LTg5OTItNWJhNzU2ZTc4ODY5
LzEvYzJmRWtFUl9VRVhBSTJmYmpTRzA0SWRKLW5ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBsGy2MA0G
CSqGSIb3DQEBCwUAA4IBAQAWbQFNgThbma6+H/S1HWahOLwD7dmrR3+E2T0z1KFs
/Fa7OfkquJz4cgVR1IN0uMUPxHT658p41RvnaoyocyOpR5Pc+ICd0e0UPSqZreFY
2SRHrXQ48IjX+VLiFTmWW+QLpx8bQrwblT2ZE9WG2hiP1UYQ7GbXgpb8z03JTMSC
PI88JHIoy88/DtwmiZxNK3CD3t5/onCL7Zo5ocQqAJZq4cC6vwijXKCFL2tsd7Ue
fMONHSAtbVt6l4BkZOlipXsvkwWPdVBi6gxQvn1gYfzi/aTQU/3D7/v/nkA429D5
fHs49drzT34J5O7URHY7mYZH4DWvX7uNWYU0e74fGNuF
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:35:03 2025 by rpki-client