Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/624f64-0a4a-4d25-afce-0f39c4b3431d/1/NYR18l1XXHHnbA9V7Wz0bif2rv8.roa
File: NYR18l1XXHHnbA9V7Wz0bif2rv8.roa (raw, json)
Hash identifier: eawnUDVIiVOVdooru7OeJ9U4BfEJGTALT2UEo9QwehM=
Subject key identifier: 35:84:75:F2:5D:57:5C:71:E7:6C:0F:55:ED:6C:F4:6E:27:F6:AE:FF
Certificate issuer: /CN=864f301e590b83eaa38fc121b6609ff6fe52b868
Certificate serial: 01857082B9C76B789AC3605940F41FDC7EB9
Authority key identifier: 86:4F:30:1E:59:0B:83:EA:A3:8F:C1:21:B6:60:9F:F6:FE:52:B8:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hk8wHlkLg-qjj8EhtmCf9v5SuGg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/624f64-0a4a-4d25-afce-0f39c4b3431d/1/NYR18l1XXHHnbA9V7Wz0bif2rv8.roa
Signing time: Mon 02 Jan 2023 03:24:53 +0000
ROA not before: Mon 02 Jan 2023 03:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41978
IP address blocks: 194.35.74.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:82:b9:c7:6b:78:9a:c3:60:59:40:f4:1f:dc:7e:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=864f301e590b83eaa38fc121b6609ff6fe52b868
Validity
Not Before: Jan 2 03:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=358475f25d575c71e76c0f55ed6cf46e27f6aeff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:44:a2:03:4a:01:62:36:b4:20:9d:e6:a3:2b:
9a:63:bf:5e:b4:7f:21:c7:bb:1f:fa:d1:fb:68:8c:
3b:a1:e3:98:8b:e9:c2:43:78:b7:6d:50:11:81:53:
c3:e7:1c:4b:d0:21:6e:21:df:5d:de:b7:75:16:0c:
aa:e7:38:40:14:9b:ab:e4:ff:a0:32:00:a4:5c:7a:
28:0f:29:dc:1a:98:44:4d:22:d2:d9:4e:e4:83:75:
d4:0e:4a:0b:e0:97:bf:8c:e7:a9:17:39:28:98:1d:
cd:c3:bc:22:a1:cd:ec:6a:28:6d:d5:d1:5b:f5:9a:
02:f4:27:e0:8d:d9:bd:09:e4:4a:5e:62:e8:84:62:
96:e4:78:55:d5:29:8c:9b:d4:c0:57:ab:57:20:99:
52:fa:4b:07:07:2a:37:06:4b:4a:a3:cb:39:ea:8c:
1e:a2:b7:1d:57:8f:e8:3b:51:c5:96:50:90:b8:b5:
0a:ed:be:c8:94:5e:04:f4:28:de:39:06:18:41:c7:
6f:00:de:7c:08:c5:cf:16:ff:20:91:23:9b:a9:ec:
c3:64:9b:7b:81:4d:fb:c4:e5:d2:59:36:30:0e:df:
54:6c:db:05:68:dd:f7:b1:a3:43:24:34:c1:29:5f:
d6:33:8b:d1:0e:e5:4f:90:30:40:4b:2f:b6:62:4d:
5e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:84:75:F2:5D:57:5C:71:E7:6C:0F:55:ED:6C:F4:6E:27:F6:AE:FF
X509v3 Authority Key Identifier:
keyid:86:4F:30:1E:59:0B:83:EA:A3:8F:C1:21:B6:60:9F:F6:FE:52:B8:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hk8wHlkLg-qjj8EhtmCf9v5SuGg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/624f64-0a4a-4d25-afce-0f39c4b3431d/1/NYR18l1XXHHnbA9V7Wz0bif2rv8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/624f64-0a4a-4d25-afce-0f39c4b3431d/1/hk8wHlkLg-qjj8EhtmCf9v5SuGg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.35.74.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:bf:8c:47:d3:f8:46:1f:dd:fd:e6:f6:26:0d:1e:f9:fa:3e:
77:a9:2b:6a:df:f3:07:b0:9c:03:2c:9c:c0:fb:68:1b:6c:b5:
b5:fb:48:64:97:7e:ab:fc:bc:56:ca:8c:18:1c:26:71:fa:4d:
fe:2a:5d:06:84:27:5f:c2:08:65:1f:5c:c7:9c:df:2b:0c:69:
9d:0d:bb:7b:eb:5b:56:f1:19:c2:1a:ce:96:d1:51:3d:d3:b8:
f7:cb:d7:1d:10:c9:7d:fa:85:78:5c:17:ff:78:a8:58:7f:50:
a3:c9:f4:8a:73:13:17:c9:b1:2f:14:9e:5a:25:e7:d9:51:d3:
58:6e:36:e1:7d:94:f3:a3:62:7e:9d:4d:9a:4b:3b:af:f1:01:
62:03:77:4e:54:74:7b:31:55:04:30:8d:e2:8f:71:89:c4:3c:
be:03:f8:1c:49:fe:04:f9:1e:16:eb:ec:53:43:81:5c:eb:53:
7b:7a:3b:4c:6b:66:5b:42:1f:04:08:44:ce:eb:13:0d:67:a3:
c7:dc:d2:e6:37:f1:f2:32:d0:12:9d:63:bc:a8:81:c8:39:94:
4c:9e:f5:10:83:82:b3:21:2f:30:02:3a:2d:35:99:d9:f2:e6:
26:9f:1e:58:8d:61:cf:35:eb:50:26:7f:7d:ef:63:e7:e8:b0:
2d:0b:bd:8a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwgrnHa3iaw2BZQPQf3H65MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2NGYzMDFlNTkwYjgzZWFhMzhmYzEyMWI2NjA5ZmY2ZmU1
MmI4NjgwHhcNMjMwMTAyMDMyNDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNTg0NzVmMjVkNTc1YzcxZTc2YzBmNTVlZDZjZjQ2ZTI3ZjZhZWZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkUSiA0oBYja0IJ3moyuaY79etH8h
x7sf+tH7aIw7oeOYi+nCQ3i3bVARgVPD5xxL0CFuId9d3rd1Fgyq5zhAFJur5P+g
MgCkXHooDyncGphETSLS2U7kg3XUDkoL4Je/jOepFzkomB3Nw7wioc3saiht1dFb
9ZoC9Cfgjdm9CeRKXmLohGKW5HhV1SmMm9TAV6tXIJlS+ksHByo3BktKo8s56owe
orcdV4/oO1HFllCQuLUK7b7IlF4E9CjeOQYYQcdvAN58CMXPFv8gkSObqezDZJt7
gU37xOXSWTYwDt9UbNsFaN33saNDJDTBKV/WM4vRDuVPkDBASy+2Yk1eXQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDWEdfJdV1xx52wPVe1s9G4n9q7/MB8GA1UdIwQY
MBaAFIZPMB5ZC4Pqo4/BIbZgn/b+UrhoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGs4d0hsa0xnLXFqajhFaHRtQ2Y5djVTdUdnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi82MjRmNjQtMGE0YS00ZDI1LWFmY2Ut
MGYzOWM0YjM0MzFkLzEvTllSMThsMVhYSEhuYkE5VjdXejBiaWYycnY4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi82MjRmNjQtMGE0YS00ZDI1LWFmY2UtMGYzOWM0YjM0MzFk
LzEvaGs4d0hsa0xnLXFqajhFaHRtQ2Y5djVTdUdnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwiNKMA0G
CSqGSIb3DQEBCwUAA4IBAQAPv4xH0/hGH9395vYmDR75+j53qStq3/MHsJwDLJzA
+2gbbLW1+0hkl36r/LxWyowYHCZx+k3+Kl0GhCdfwghlH1zHnN8rDGmdDbt761tW
8RnCGs6W0VE907j3y9cdEMl9+oV4XBf/eKhYf1CjyfSKcxMXybEvFJ5aJefZUdNY
bjbhfZTzo2J+nU2aSzuv8QFiA3dOVHR7MVUEMI3ij3GJxDy+A/gcSf4E+R4W6+xT
Q4Fc61N7ejtMa2ZbQh8ECETO6xMNZ6PH3NLmN/HyMtASnWO8qIHIOZRMnvUQg4Kz
IS8wAjotNZnZ8uYmnx5YjWHPNetQJn9972Pn6LAtC72K
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:44 2024 by rpki-client on console-ams.rpki-client.org