Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/nvgvAFzY8uAI-I44BTMfSaFnGeo.roa
File: nvgvAFzY8uAI-I44BTMfSaFnGeo.roa (raw, json)
Hash identifier: zcVMNCtorq+tCl8eM3EyuCSfGbYRZmWgQwbrnuaAOdU=
Subject key identifier: 9E:F8:2F:00:5C:D8:F2:E0:08:F8:8E:38:05:33:1F:49:A1:67:19:EA
Certificate issuer: /CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Certificate serial: 0185707083062913286059F1B4BB512F6480
Authority key identifier: CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/nvgvAFzY8uAI-I44BTMfSaFnGeo.roa
Signing time: Mon 02 Jan 2023 03:04:59 +0000
ROA not before: Mon 02 Jan 2023 03:04:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13879
IP address blocks: 57.197.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:83:06:29:13:28:60:59:f1:b4:bb:51:2f:64:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Validity
Not Before: Jan 2 03:04:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9ef82f005cd8f2e008f88e3805331f49a16719ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:6d:41:b6:67:a4:23:fc:11:fc:1f:77:54:91:
7e:23:5e:57:d1:5b:33:93:5f:66:9a:4b:99:04:b4:
db:1c:fb:e3:7d:48:92:0f:f8:4a:62:e9:d6:39:ff:
8e:cd:51:09:b5:de:b9:a5:cb:e1:31:f2:c5:d5:eb:
4b:27:d8:eb:c0:6a:c9:9a:e1:5d:f1:60:27:79:b1:
03:56:fc:7c:97:06:ac:03:e7:0d:ee:95:c2:5c:86:
f3:67:83:40:40:df:a4:7d:d2:a2:f4:c1:9d:e2:2e:
e1:60:eb:cc:ca:cc:49:cb:5a:68:50:74:54:1d:65:
e5:ff:e5:2a:ec:12:c0:eb:a2:d1:14:c7:e8:51:6a:
99:ef:04:e4:7d:67:c0:26:6b:a3:82:9b:64:43:cb:
0a:ff:0f:71:21:80:4c:45:9e:0e:51:23:d5:c1:b8:
2b:94:b8:c5:b4:33:01:b0:59:fc:75:d4:93:f9:c9:
ec:a8:62:9c:26:8e:1d:75:b3:6d:8c:1a:b9:74:7d:
c4:ab:0c:3b:20:0c:aa:a1:b4:57:90:da:81:b4:b1:
20:02:26:fe:23:2d:d2:3d:e7:7e:d4:0e:1d:eb:16:
5d:45:fb:9d:11:db:1d:4c:aa:53:1c:06:85:a8:3b:
21:8d:54:37:67:6a:55:01:89:cc:13:aa:3b:54:ee:
81:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:F8:2F:00:5C:D8:F2:E0:08:F8:8E:38:05:33:1F:49:A1:67:19:EA
X509v3 Authority Key Identifier:
keyid:CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/nvgvAFzY8uAI-I44BTMfSaFnGeo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/zbg8_lSJg18pTQr03U2249wl8fM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
57.197.0.0/16
Signature Algorithm: sha256WithRSAEncryption
60:9a:17:fc:d5:ed:68:5f:0b:43:dd:86:7e:4f:4d:87:7c:92:
00:0a:00:fc:b2:e5:61:f9:0a:9d:cc:1f:24:fd:54:a3:aa:5b:
7a:03:37:f7:8d:bd:b0:31:03:f1:66:20:9a:ec:1e:cd:c7:52:
c2:e0:60:22:36:82:a0:3f:cf:bf:64:b5:2d:f5:68:bf:6c:74:
40:e4:63:c1:59:83:ff:c2:be:17:77:76:32:cb:30:d2:59:a5:
f4:49:ef:ac:10:6c:63:9e:64:46:9a:8a:ec:74:c4:9f:de:0a:
f5:7b:14:9f:59:73:c1:3c:48:14:5e:52:d5:35:a4:5c:37:ad:
80:92:78:f1:01:07:54:34:a3:61:02:bc:a8:0d:0b:2a:66:39:
38:d9:d9:1d:93:18:0a:90:6e:0e:bf:ae:f8:a4:40:bf:2f:c5:
35:da:50:7e:0f:c9:fd:10:74:fc:e4:78:19:a5:87:d3:8e:86:
9d:5e:8b:0e:a5:07:b7:85:7b:3b:4d:65:25:01:e3:5c:21:95:
48:1b:8e:ab:0b:db:6f:44:e1:41:2a:38:32:4d:e8:21:94:9f:
bd:95:e4:07:ab:39:ae:81:78:3f:90:60:c0:d6:ca:f4:60:19:
d9:04:5e:89:2d:ec:a8:d0:4c:35:e5:4c:83:73:eb:a2:4a:a3:
96:61:c2:c9
-----BEGIN CERTIFICATE-----
MIIE/DCCA+SgAwIBAgISAYVwcIMGKRMoYFnxtLtRL2SAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkYjgzY2ZlNTQ4OTgzNWYyOTRkMGFmNGRkNGRiNmUzZGMy
NWYxZjMwHhcNMjMwMTAyMDMwNDU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZWY4MmYwMDVjZDhmMmUwMDhmODhlMzgwNTMzMWY0OWExNjcxOWVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsm1BtmekI/wR/B93VJF+I15X0Vsz
k19mmkuZBLTbHPvjfUiSD/hKYunWOf+OzVEJtd65pcvhMfLF1etLJ9jrwGrJmuFd
8WAnebEDVvx8lwasA+cN7pXCXIbzZ4NAQN+kfdKi9MGd4i7hYOvMysxJy1poUHRU
HWXl/+Uq7BLA66LRFMfoUWqZ7wTkfWfAJmujgptkQ8sK/w9xIYBMRZ4OUSPVwbgr
lLjFtDMBsFn8ddST+cnsqGKcJo4ddbNtjBq5dH3Eqww7IAyqobRXkNqBtLEgAib+
Iy3SPed+1A4d6xZdRfudEdsdTKpTHAaFqDshjVQ3Z2pVAYnME6o7VO6BewIDAQAB
o4ICCDCCAgQwHQYDVR0OBBYEFJ74LwBc2PLgCPiOOAUzH0mhZxnqMB8GA1UdIwQY
MBaAFM24PP5UiYNfKU0K9N1NtuPcJfHzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemJnOF9sU0pnMThwVFFyMDNVMjI0OXdsOGZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS83Mzk3MTYtOWFmMi00N2Y1LWE2ZjEt
YTNiNzRmOTY0MWFjLzEvbnZndkFGelk4dUFJLUk0NEJUTWZTYUZuR2VvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS83Mzk3MTYtOWFmMi00N2Y1LWE2ZjEtYTNiNzRmOTY0MWFj
LzEvemJnOF9sU0pnMThwVFFyMDNVMjI0OXdsOGZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAOcUwDQYJ
KoZIhvcNAQELBQADggEBAGCaF/zV7WhfC0Pdhn5PTYd8kgAKAPyy5WH5Cp3MHyT9
VKOqW3oDN/eNvbAxA/FmIJrsHs3HUsLgYCI2gqA/z79ktS31aL9sdEDkY8FZg//C
vhd3djLLMNJZpfRJ76wQbGOeZEaaiux0xJ/eCvV7FJ9Zc8E8SBReUtU1pFw3rYCS
ePEBB1Q0o2ECvKgNCypmOTjZ2R2TGAqQbg6/rvikQL8vxTXaUH4Pyf0QdPzkeBml
h9OOhp1eiw6lB7eFeztNZSUB41whlUgbjqsL229E4UEqODJN6CGUn72V5AerOa6B
eD+QYMDWyvRgGdkEXokt7KjQTDXlTINz66JKo5Zhwsk=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:35 2024 by rpki-client on console-ams.rpki-client.org