Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/0f6470-e7f4-4151-8ad9-d3b27a0225b0/1/NavUETNxuWvL-4kmkPqNflRAVNk.roa
File: NavUETNxuWvL-4kmkPqNflRAVNk.roa (raw, json)
Hash identifier: KjBbtnjux2MzXV5ZazIHdUa0Sgwq7kRfpgFCdSricgk=
Subject key identifier: 35:AB:D4:11:33:71:B9:6B:CB:FB:89:26:90:FA:8D:7E:54:40:54:D9
Certificate issuer: /CN=d73e83146a43869f657451e76d0a305f15a7aee9
Certificate serial: 018CC725F44127A84D0E13CD3B8EB30451CB
Authority key identifier: D7:3E:83:14:6A:43:86:9F:65:74:51:E7:6D:0A:30:5F:15:A7:AE:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1z6DFGpDhp9ldFHnbQowXxWnruk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/0f6470-e7f4-4151-8ad9-d3b27a0225b0/1/NavUETNxuWvL-4kmkPqNflRAVNk.roa
Signing time: Mon 01 Jan 2024 22:30:02 +0000
ROA not before: Mon 01 Jan 2024 22:30:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43905
IP address blocks: 80.77.184.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 07:49:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:25:f4:41:27:a8:4d:0e:13:cd:3b:8e:b3:04:51:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d73e83146a43869f657451e76d0a305f15a7aee9
Validity
Not Before: Jan 1 22:30:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=35abd4113371b96bcbfb892690fa8d7e544054d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:78:29:60:23:01:06:0a:b6:43:79:22:ad:a5:
ee:9c:9a:0d:0b:c7:74:73:19:1d:2c:92:cb:bf:83:
ac:1e:2f:fb:3a:0d:ea:c7:63:0a:b4:3f:78:61:15:
8e:bf:43:41:3e:40:f8:2a:b0:0c:c5:5d:ba:f0:ba:
22:45:37:e0:bd:48:36:86:aa:3f:8e:2c:9b:1b:3c:
c6:2e:2d:75:a0:55:17:60:07:2b:75:17:f2:3d:40:
14:7b:3c:10:9c:05:3d:81:17:98:c2:8b:06:44:40:
ea:ef:a4:ab:54:fb:a7:76:57:d9:70:e9:47:da:c3:
9b:89:ae:f9:c9:58:9b:ba:88:b3:e0:56:39:01:e2:
ed:de:df:4c:a8:7b:8e:68:9d:4e:e1:77:f3:cc:8e:
35:b3:e0:1d:a7:1a:bf:f9:00:fd:6d:c9:38:02:64:
93:2b:d3:fa:69:a6:3e:51:95:47:f7:be:93:c0:42:
dc:18:47:b9:70:e0:d2:b6:46:83:7c:f3:dd:f6:e6:
d1:14:e0:fb:43:29:3a:de:ea:88:30:80:1f:08:42:
ef:94:a5:b3:65:c4:1e:de:f3:7f:dc:cf:55:65:23:
0a:81:bb:8d:ae:e6:b5:a4:97:f6:6f:f5:46:ec:2d:
8b:0d:53:b3:e1:5f:ec:13:e2:8c:de:32:b9:c5:1a:
3d:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:AB:D4:11:33:71:B9:6B:CB:FB:89:26:90:FA:8D:7E:54:40:54:D9
X509v3 Authority Key Identifier:
keyid:D7:3E:83:14:6A:43:86:9F:65:74:51:E7:6D:0A:30:5F:15:A7:AE:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1z6DFGpDhp9ldFHnbQowXxWnruk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/0f6470-e7f4-4151-8ad9-d3b27a0225b0/1/NavUETNxuWvL-4kmkPqNflRAVNk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/0f6470-e7f4-4151-8ad9-d3b27a0225b0/1/1z6DFGpDhp9ldFHnbQowXxWnruk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.77.184.0/24
Signature Algorithm: sha256WithRSAEncryption
52:ba:50:ec:21:8b:fb:c2:3e:27:4f:55:bd:ac:f2:6d:2e:32:
f4:b1:99:0f:dc:9c:0d:ac:ce:7b:53:eb:e3:2b:f4:be:8e:52:
48:aa:ae:a5:8f:52:db:1c:da:c3:0d:37:f0:5d:2f:ee:d2:29:
12:67:8b:a9:5a:57:41:0f:15:70:27:c9:00:eb:fe:d1:67:0f:
7c:cb:fc:f1:92:1e:cd:fd:c5:b4:5a:d0:ea:39:81:ea:a1:0f:
55:64:ee:64:a3:a0:b0:f4:22:54:8b:2e:ab:3e:c7:b8:3f:5f:
53:6a:58:61:00:3c:1b:1d:d0:8b:80:6f:d2:f4:d1:33:49:aa:
07:f4:f0:45:92:be:f5:0e:46:54:8a:09:a7:75:80:f6:c9:05:
35:85:c5:ff:1d:2b:38:4f:67:d7:de:82:1e:4c:a3:0d:26:e0:
4f:59:a7:20:cd:8d:69:87:ab:e5:9c:b2:74:97:be:b0:cb:24:
87:53:43:c3:d6:5c:a4:31:21:61:f1:33:94:64:c8:99:d5:86:
15:d8:03:34:7d:54:e8:ec:72:e6:b6:46:d9:3d:ed:93:13:88:
69:dd:dc:de:94:ea:7c:db:c3:6c:91:98:4a:fa:87:c6:9d:2e:
30:b8:8a:77:08:30:80:ce:70:28:90:34:ca:d3:ad:fd:ae:38:
4e:5d:e6:0d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzHJfRBJ6hNDhPNO46zBFHLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3M2U4MzE0NmE0Mzg2OWY2NTc0NTFlNzZkMGEzMDVmMTVh
N2FlZTkwHhcNMjQwMTAxMjIzMDAyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNWFiZDQxMTMzNzFiOTZiY2JmYjg5MjY5MGZhOGQ3ZTU0NDA1NGQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAingpYCMBBgq2Q3kiraXunJoNC8d0
cxkdLJLLv4OsHi/7Og3qx2MKtD94YRWOv0NBPkD4KrAMxV268LoiRTfgvUg2hqo/
jiybGzzGLi11oFUXYAcrdRfyPUAUezwQnAU9gReYwosGREDq76SrVPundlfZcOlH
2sObia75yVibuoiz4FY5AeLt3t9MqHuOaJ1O4XfzzI41s+Adpxq/+QD9bck4AmST
K9P6aaY+UZVH976TwELcGEe5cODStkaDfPPd9ubRFOD7Qyk63uqIMIAfCELvlKWz
ZcQe3vN/3M9VZSMKgbuNrua1pJf2b/VG7C2LDVOz4V/sE+KM3jK5xRo93wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDWr1BEzcblry/uJJpD6jX5UQFTZMB8GA1UdIwQY
MBaAFNc+gxRqQ4afZXRR520KMF8Vp67pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMXo2REZHcERocDlsZEZIbmJRb3dYeFducnVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS8wZjY0NzAtZTdmNC00MTUxLThhZDkt
ZDNiMjdhMDIyNWIwLzEvTmF2VUVUTnh1V3ZMLTRrbWtQcU5mbFJBVk5rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS8wZjY0NzAtZTdmNC00MTUxLThhZDktZDNiMjdhMDIyNWIw
LzEvMXo2REZHcERocDlsZEZIbmJRb3dYeFducnVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUE24MA0G
CSqGSIb3DQEBCwUAA4IBAQBSulDsIYv7wj4nT1W9rPJtLjL0sZkP3JwNrM57U+vj
K/S+jlJIqq6lj1LbHNrDDTfwXS/u0ikSZ4upWldBDxVwJ8kA6/7RZw98y/zxkh7N
/cW0WtDqOYHqoQ9VZO5ko6Cw9CJUiy6rPse4P19TalhhADwbHdCLgG/S9NEzSaoH
9PBFkr71DkZUigmndYD2yQU1hcX/HSs4T2fX3oIeTKMNJuBPWacgzY1ph6vlnLJ0
l76wyySHU0PD1lykMSFh8TOUZMiZ1YYV2AM0fVTo7HLmtkbZPe2TE4hp3dzelOp8
28NskZhK+ofGnS4wuIp3CDCAznAokDTK0639rjhOXeYN
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:16:11 2025 by rpki-client