Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/NrTZXX-1Ff7IWifXF7L-P0-OtZ8.roa
File: NrTZXX-1Ff7IWifXF7L-P0-OtZ8.roa (raw, json)
Hash identifier: h45RMQV9oIRpyOITBFYSF86M7yijqHZSgX0/2Bivmlw=
Subject key identifier: 36:B4:D9:5D:7F:B5:15:FE:C8:5A:27:D7:17:B2:FE:3F:4F:8E:B5:9F
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 01899868B8C7136630A21A3E749553DA87E9
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/NrTZXX-1Ff7IWifXF7L-P0-OtZ8.roa
Signing time: Thu 27 Jul 2023 17:32:27 +0000
ROA not before: Thu 27 Jul 2023 17:32:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200385
IP address blocks: 80.71.229.0/24 maxlen: 24
80.71.235.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:98:68:b8:c7:13:66:30:a2:1a:3e:74:95:53:da:87:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Jul 27 17:32:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=36b4d95d7fb515fec85a27d717b2fe3f4f8eb59f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:90:4f:af:96:a8:02:7d:e8:75:d4:ba:75:0b:
f6:70:da:74:0d:fb:92:8b:59:72:0f:5a:66:82:90:
bf:e3:92:93:62:c0:97:8c:8a:50:0d:8e:7c:3c:a2:
a4:80:77:33:43:99:11:9d:5f:36:8c:ee:3e:5c:12:
f4:79:16:c3:f7:16:87:89:be:d7:16:c3:dc:87:b2:
f7:04:1c:85:56:33:48:1e:11:46:de:95:a0:30:b5:
4b:53:37:4a:5f:8c:f1:71:df:2d:c1:45:3c:0d:9d:
f4:b3:34:27:22:87:4e:81:17:6b:87:7e:df:12:3a:
d4:c0:12:aa:e9:33:e2:11:0f:82:57:56:ed:7a:52:
6f:98:71:53:1a:be:cd:20:5a:ff:18:71:2f:ce:6b:
a5:ab:f5:ec:0d:66:9a:b2:7c:a0:62:a2:c8:be:b9:
4e:e6:0b:e4:37:2c:a9:e5:0a:0a:66:b3:0d:13:63:
5e:bd:40:28:fe:a5:1d:97:a3:28:e4:17:ab:82:ba:
eb:d4:68:a5:e2:49:40:df:40:31:cc:b1:63:d6:3f:
fb:fb:53:97:a6:13:b6:0f:07:de:2b:14:03:52:f0:
7d:e2:71:1c:21:60:5d:ea:a6:17:28:ca:19:6a:6b:
d6:77:e9:99:e7:4a:76:86:89:c7:f1:3d:c1:6d:bd:
09:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:B4:D9:5D:7F:B5:15:FE:C8:5A:27:D7:17:B2:FE:3F:4F:8E:B5:9F
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/NrTZXX-1Ff7IWifXF7L-P0-OtZ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.229.0/24
80.71.235.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:d5:1e:de:1f:f2:96:69:fd:dc:67:00:42:0b:46:e4:91:1a:
78:ea:42:f5:03:38:8b:fc:a1:0d:d2:c4:30:ca:89:cb:dc:64:
36:bd:0f:ea:22:36:44:d6:95:b6:5c:ce:4b:09:9a:9d:4b:02:
e1:9e:43:b8:d5:ce:84:6e:ea:8d:9e:d5:65:88:c1:f6:cc:5f:
ec:67:88:d2:e0:74:f1:6e:6a:cb:19:bc:e1:95:66:19:ad:12:
de:cb:31:42:6c:14:bf:65:ec:bd:53:69:72:69:df:fa:b9:9a:
4a:61:d8:de:5b:7b:ca:b9:6a:e0:53:5a:b4:76:2b:88:cb:63:
1b:78:af:7a:b3:c9:0f:c1:7b:ed:aa:e6:78:36:f6:18:15:b1:
3d:e2:14:8a:72:6a:83:56:de:70:11:ae:79:1a:a1:17:28:bc:
c8:4b:23:4e:f8:48:72:29:26:8b:2a:ba:24:f9:d8:b3:ee:82:
86:25:4d:9c:c6:48:d2:d9:d8:ab:73:61:f4:22:28:d1:8e:5b:
34:65:7d:0c:3b:c7:88:06:cb:27:67:5d:40:95:69:d4:84:da:
f3:03:8f:be:a9:45:ca:57:ea:6a:94:b9:0b:9c:dd:a4:f8:9d:
ac:a1:3a:e7:d4:f3:36:94:37:5b:59:91:c3:02:3c:95:be:75:
76:8a:2b:24
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYmYaLjHE2Ywoho+dJVT2ofpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5ZTUxNjk0YzRkNDZiNGZjYzAyZmFlNzFlNWRiOTQyYTcx
MDhlNDcwHhcNMjMwNzI3MTczMjI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNmI0ZDk1ZDdmYjUxNWZlYzg1YTI3ZDcxN2IyZmUzZjRmOGViNTlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzJBPr5aoAn3oddS6dQv2cNp0DfuS
i1lyD1pmgpC/45KTYsCXjIpQDY58PKKkgHczQ5kRnV82jO4+XBL0eRbD9xaHib7X
FsPch7L3BByFVjNIHhFG3pWgMLVLUzdKX4zxcd8twUU8DZ30szQnIodOgRdrh37f
EjrUwBKq6TPiEQ+CV1btelJvmHFTGr7NIFr/GHEvzmulq/XsDWaasnygYqLIvrlO
5gvkNyyp5QoKZrMNE2NevUAo/qUdl6Mo5Bergrrr1Gil4klA30AxzLFj1j/7+1OX
phO2DwfeKxQDUvB94nEcIWBd6qYXKMoZamvWd+mZ50p2honH8T3Bbb0JnQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFDa02V1/tRX+yFon1xey/j9PjrWfMB8GA1UdIwQY
MBaAFEnlFpTE1GtPzAL65x5duUKnEI5HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2VVV2xNVFVhMF9NQXZybkhsMjVRcWNRamtjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni85ZGI1MjUtMTA1OS00YzA3LWE1YWQt
MTkxODliM2M5YzdkLzEvTnJUWlhYLTFGZjdJV2lmWEY3TC1QMC1PdFo4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni85ZGI1MjUtMTA1OS00YzA3LWE1YWQtMTkxODliM2M5Yzdk
LzEvU2VVV2xNVFVhMF9NQXZybkhsMjVRcWNRamtjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAUEflAwQA
UEfrMA0GCSqGSIb3DQEBCwUAA4IBAQBL1R7eH/KWaf3cZwBCC0bkkRp46kL1AziL
/KEN0sQwyonL3GQ2vQ/qIjZE1pW2XM5LCZqdSwLhnkO41c6EbuqNntVliMH2zF/s
Z4jS4HTxbmrLGbzhlWYZrRLeyzFCbBS/Zey9U2lyad/6uZpKYdjeW3vKuWrgU1q0
diuIy2MbeK96s8kPwXvtquZ4NvYYFbE94hSKcmqDVt5wEa55GqEXKLzISyNO+Ehy
KSaLKrok+diz7oKGJU2cxkjS2dirc2H0IijRjls0ZX0MO8eIBssnZ11AlWnUhNrz
A4++qUXKV+pqlLkLnN2k+J2soTrn1PM2lDdbWZHDAjyVvnV2iisk
-----END CERTIFICATE-----
Generated at Thu Jul 27 18:18:01 2023 by rpki-client on console-ams.rpki-client.org