Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/NnajRyKK1NyqZdF7-yti_rroO9g.roa
File: NnajRyKK1NyqZdF7-yti_rroO9g.roa (raw, json)
Hash identifier: cISL+bFO8rNxX765bMjjDPlFzyevDVzGk2DeZ+xzIeM=
Subject key identifier: 36:76:A3:47:22:8A:D4:DC:AA:65:D1:7B:FB:2B:62:FE:BA:E8:3B:D8
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 01885834F31A5A36A29AEDEE3B19AF7B02A8
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/NnajRyKK1NyqZdF7-yti_rroO9g.roa
Signing time: Fri 26 May 2023 13:17:25 +0000
ROA not before: Fri 26 May 2023 13:17:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 395839
IP address blocks: 81.29.144.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:58:34:f3:1a:5a:36:a2:9a:ed:ee:3b:19:af:7b:02:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: May 26 13:17:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3676a347228ad4dcaa65d17bfb2b62febae83bd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:1b:24:7a:2a:71:50:80:54:9d:fb:00:56:0a:
94:b2:1a:d9:fc:70:59:7e:f9:d7:32:87:a3:fa:2f:
3c:ad:9e:17:1c:a9:18:bb:8c:41:1a:8f:b3:01:f7:
f3:18:3b:d8:f8:e6:9a:d0:bc:3c:ef:b7:ef:73:38:
16:6e:e4:21:05:4e:72:96:14:8a:21:94:6b:68:db:
fd:5c:20:64:39:6e:64:22:56:dd:fe:c0:97:fc:7b:
ac:79:88:8f:84:58:3a:0d:f2:46:b3:5a:b3:64:e9:
0e:e2:92:ca:43:fc:07:cd:fe:9f:06:8b:88:9d:d5:
83:b8:62:97:cc:b8:90:f4:68:7c:3e:f8:c9:33:a6:
7f:94:f3:e8:09:94:47:b0:be:e6:c6:c7:71:b1:b0:
ad:5b:f7:5f:d9:df:ba:c6:16:8a:34:a9:4a:05:c7:
b5:ba:14:a8:a7:fb:8f:ff:4f:99:98:a5:82:c6:87:
06:1f:eb:5f:c5:aa:73:d4:b4:c8:d3:aa:37:a2:38:
d1:fc:2a:0b:a0:19:5c:2b:b4:4a:66:b9:18:f7:7a:
03:28:ff:27:6a:1e:b0:0d:ab:cb:5c:b2:ed:e9:2c:
36:a1:5b:dd:51:44:2e:65:03:3b:cc:67:75:a7:39:
dd:e7:5f:8e:74:8f:13:b6:4b:3a:ae:8b:9e:38:58:
c5:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:76:A3:47:22:8A:D4:DC:AA:65:D1:7B:FB:2B:62:FE:BA:E8:3B:D8
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/NnajRyKK1NyqZdF7-yti_rroO9g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.29.144.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:0e:83:eb:92:4f:fd:42:10:eb:bc:ec:ba:68:3d:9c:30:fa:
b7:a7:20:c8:ea:60:08:14:a2:c1:ca:5e:ea:72:f7:b5:c6:1c:
55:a3:4c:ce:9f:d9:43:3a:cf:f7:5b:32:c8:c0:60:87:f8:3c:
35:5e:8f:19:b5:5a:f6:26:7c:58:21:31:cb:23:d2:e2:ab:ae:
4d:5b:03:50:ee:1c:14:40:f6:b2:30:4b:8c:f7:c9:14:31:52:
42:49:21:5e:4d:51:86:49:6e:91:f0:66:42:ae:5b:5d:00:d3:
8b:49:48:5f:7f:bc:03:c7:7e:7e:4c:49:81:25:53:d4:3d:06:
b4:46:25:a8:9a:08:3f:73:e7:20:2b:5e:0c:d9:a6:9c:9d:de:
fb:f1:8c:7e:43:31:d6:49:21:5a:aa:84:0b:9b:2a:ce:1c:54:
44:f7:98:a3:e6:e6:b0:54:da:4c:66:ba:db:73:54:45:84:8c:
8d:14:0e:77:17:a2:f4:d7:98:7b:11:60:6c:b9:1a:eb:f7:82:
4e:25:ca:3a:00:78:f9:65:af:61:4a:b5:b0:58:fc:6c:ba:2b:
e5:2a:3b:9d:c3:34:22:6f:65:44:0e:aa:3c:92:c2:86:6e:bf:
52:57:41:83:7b:3b:9d:62:fe:91:ae:cd:c2:88:fb:bf:ba:71:
e3:c1:63:07
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYhYNPMaWjaimu3uOxmvewKoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5ZTUxNjk0YzRkNDZiNGZjYzAyZmFlNzFlNWRiOTQyYTcx
MDhlNDcwHhcNMjMwNTI2MTMxNzI1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNjc2YTM0NzIyOGFkNGRjYWE2NWQxN2JmYjJiNjJmZWJhZTgzYmQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlxskeipxUIBUnfsAVgqUshrZ/HBZ
fvnXMoej+i88rZ4XHKkYu4xBGo+zAffzGDvY+Oaa0Lw877fvczgWbuQhBU5ylhSK
IZRraNv9XCBkOW5kIlbd/sCX/HuseYiPhFg6DfJGs1qzZOkO4pLKQ/wHzf6fBouI
ndWDuGKXzLiQ9Gh8PvjJM6Z/lPPoCZRHsL7mxsdxsbCtW/df2d+6xhaKNKlKBce1
uhSop/uP/0+ZmKWCxocGH+tfxapz1LTI06o3ojjR/CoLoBlcK7RKZrkY93oDKP8n
ah6wDavLXLLt6Sw2oVvdUUQuZQM7zGd1pznd51+OdI8Ttks6roueOFjFZwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDZ2o0ciitTcqmXRe/srYv666DvYMB8GA1UdIwQY
MBaAFEnlFpTE1GtPzAL65x5duUKnEI5HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2VVV2xNVFVhMF9NQXZybkhsMjVRcWNRamtjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni85ZGI1MjUtMTA1OS00YzA3LWE1YWQt
MTkxODliM2M5YzdkLzEvTm5halJ5S0sxTnlxWmRGNy15dGlfcnJvTzlnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni85ZGI1MjUtMTA1OS00YzA3LWE1YWQtMTkxODliM2M5Yzdk
LzEvU2VVV2xNVFVhMF9NQXZybkhsMjVRcWNRamtjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUR2QMA0G
CSqGSIb3DQEBCwUAA4IBAQBqDoPrkk/9QhDrvOy6aD2cMPq3pyDI6mAIFKLByl7q
cve1xhxVo0zOn9lDOs/3WzLIwGCH+Dw1Xo8ZtVr2JnxYITHLI9Liq65NWwNQ7hwU
QPayMEuM98kUMVJCSSFeTVGGSW6R8GZCrltdANOLSUhff7wDx35+TEmBJVPUPQa0
RiWomgg/c+cgK14M2aacnd778Yx+QzHWSSFaqoQLmyrOHFRE95ij5uawVNpMZrrb
c1RFhIyNFA53F6L015h7EWBsuRrr94JOJco6AHj5Za9hSrWwWPxsuivlKjudwzQi
b2VEDqo8ksKGbr9SV0GDezudYv6Rrs3CiPu/unHjwWMH
-----END CERTIFICATE-----
Generated at Tue Jan 2 17:35:02 2024 by rpki-client on console-fra.rpki-client.org