Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/nqbUelSRUHnRKl9UGU8NyZqDwHU.roa
File: nqbUelSRUHnRKl9UGU8NyZqDwHU.roa (raw, json)
Hash identifier: Eehjggv7HF6DAfcM/imu7bo0DLMfO0yJWgYiwLiKCcI=
Subject key identifier: 9E:A6:D4:7A:54:91:50:79:D1:2A:5F:54:19:4F:0D:C9:9A:83:C0:75
Certificate issuer: /CN=b0b5a80a7106e0a4b8545c8150bb72c699fcc9a0
Certificate serial: 01866429F9736A283034A0239773382EA87E
Authority key identifier: B0:B5:A8:0A:71:06:E0:A4:B8:54:5C:81:50:BB:72:C6:99:FC:C9:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sLWoCnEG4KS4VFyBULtyxpn8yaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/nqbUelSRUHnRKl9UGU8NyZqDwHU.roa
Signing time: Sat 18 Feb 2023 10:55:17 +0000
ROA not before: Sat 18 Feb 2023 10:55:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210538
IP address blocks: 193.164.4.0/24 maxlen: 24
193.164.7.0/24 maxlen: 24
193.164.5.0/24 maxlen: 24
193.164.6.0/24 maxlen: 24
93.177.102.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 22 Feb 2023 13:53:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:64:29:f9:73:6a:28:30:34:a0:23:97:73:38:2e:a8:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0b5a80a7106e0a4b8545c8150bb72c699fcc9a0
Validity
Not Before: Feb 18 10:55:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9ea6d47a54915079d12a5f54194f0dc99a83c075
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:ca:6c:be:ec:90:a7:8c:b1:7e:bc:9b:0b:04:
d1:5b:cf:9f:b0:61:97:84:b6:46:64:b2:30:2f:03:
0a:3f:4c:30:36:51:c7:f3:0b:f0:51:0b:d0:db:38:
d0:0a:e6:1c:87:96:7d:35:09:f7:ae:70:6b:74:95:
54:57:e9:f8:1f:cb:cc:dc:af:b5:0d:24:50:59:15:
13:35:f8:6e:42:80:f9:89:10:00:2c:8e:ed:21:0e:
15:c4:54:3b:fc:34:4d:d7:6c:aa:1c:ab:b1:ef:30:
32:d6:dc:b8:d8:a6:e5:f9:f6:f7:ab:70:c1:9d:2d:
3b:94:99:15:9c:22:50:d9:69:d3:c4:0c:a4:23:7f:
b0:f7:53:49:94:d3:bc:b6:a0:1b:77:47:56:cf:4b:
d3:34:43:02:9a:db:f6:33:06:7b:6e:47:ab:94:db:
86:08:2d:db:31:75:40:6d:22:d0:95:51:be:98:76:
52:d9:d4:62:14:b4:e3:78:57:e5:3f:ba:c7:89:f9:
ab:e4:99:a3:ed:dd:ac:8f:a5:3c:cd:2c:d1:de:a4:
d6:94:e9:c9:9c:e9:5f:ea:0a:92:c8:c1:31:16:0b:
56:12:d6:94:23:23:72:b6:aa:2c:72:26:74:b1:b4:
1e:04:2d:b9:0c:82:84:2b:42:01:c0:2f:f9:24:e5:
38:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:A6:D4:7A:54:91:50:79:D1:2A:5F:54:19:4F:0D:C9:9A:83:C0:75
X509v3 Authority Key Identifier:
keyid:B0:B5:A8:0A:71:06:E0:A4:B8:54:5C:81:50:BB:72:C6:99:FC:C9:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sLWoCnEG4KS4VFyBULtyxpn8yaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/nqbUelSRUHnRKl9UGU8NyZqDwHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/sLWoCnEG4KS4VFyBULtyxpn8yaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.177.102.0/24
193.164.4.0/22
Signature Algorithm: sha256WithRSAEncryption
31:c7:32:08:5a:95:19:26:35:92:9d:1b:11:af:4a:33:95:fd:
39:13:ff:b1:13:c2:13:2a:1d:06:e2:c7:3e:49:74:9f:4f:42:
10:a5:57:02:b5:43:aa:30:f6:b1:e5:51:11:1b:2d:67:b3:b3:
24:4f:50:49:43:71:fe:37:63:ec:fa:61:7e:ce:60:eb:91:cd:
f0:64:e7:2b:90:61:84:3a:cc:8d:b6:af:9f:b3:b4:6d:44:87:
6d:1a:bb:72:df:f2:98:0c:14:ee:53:e3:83:be:d3:c4:01:a4:
e0:22:5e:a1:c0:ce:a2:ad:b7:19:73:3e:2b:e8:10:d4:ca:e6:
62:36:1f:8c:07:b9:2d:a9:f2:f8:12:5f:d0:cb:d4:3c:86:11:
93:8a:be:0e:c5:50:3a:1a:7b:fa:55:71:63:e2:b4:e5:9d:ee:
1b:18:c9:72:b9:34:05:1d:38:b5:6c:71:0e:f6:21:1d:e1:bd:
d1:81:e7:5b:53:49:98:06:e1:15:ee:63:1a:dd:a4:b9:53:e7:
ff:99:73:2e:69:84:d1:ee:62:ee:ed:12:54:67:6d:d2:1d:19:
cd:35:5b:cd:06:ca:f2:e7:9f:51:d3:32:69:2a:19:c2:6b:4a:
2b:c6:83:72:e2:17:3d:90:71:92:1b:95:f2:19:4c:0b:cd:f6:
b0:a6:d5:23
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYZkKflzaigwNKAjl3M4Lqh+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIwYjVhODBhNzEwNmUwYTRiODU0NWM4MTUwYmI3MmM2OTlm
Y2M5YTAwHhcNMjMwMjE4MTA1NTE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZWE2ZDQ3YTU0OTE1MDc5ZDEyYTVmNTQxOTRmMGRjOTlhODNjMDc1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgMpsvuyQp4yxfrybCwTRW8+fsGGX
hLZGZLIwLwMKP0wwNlHH8wvwUQvQ2zjQCuYch5Z9NQn3rnBrdJVUV+n4H8vM3K+1
DSRQWRUTNfhuQoD5iRAALI7tIQ4VxFQ7/DRN12yqHKux7zAy1ty42Kbl+fb3q3DB
nS07lJkVnCJQ2WnTxAykI3+w91NJlNO8tqAbd0dWz0vTNEMCmtv2MwZ7bkerlNuG
CC3bMXVAbSLQlVG+mHZS2dRiFLTjeFflP7rHifmr5Jmj7d2sj6U8zSzR3qTWlOnJ
nOlf6gqSyMExFgtWEtaUIyNytqosciZ0sbQeBC25DIKEK0IBwC/5JOU4MwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFJ6m1HpUkVB50SpfVBlPDcmag8B1MB8GA1UdIwQY
MBaAFLC1qApxBuCkuFRcgVC7csaZ/MmgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc0xXb0NuRUc0S1M0VkZ5QlVMdHl4cG44eWFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi9mMTUzZGMtY2JmYi00YTRmLTgwZDIt
NzQ1ZTA4ZmU1OGM2LzEvbnFiVWVsU1JVSG5SS2w5VUdVOE55WnFEd0hVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi9mMTUzZGMtY2JmYi00YTRmLTgwZDItNzQ1ZTA4ZmU1OGM2
LzEvc0xXb0NuRUc0S1M0VkZ5QlVMdHl4cG44eWFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAXbFmAwQC
waQEMA0GCSqGSIb3DQEBCwUAA4IBAQAxxzIIWpUZJjWSnRsRr0ozlf05E/+xE8IT
Kh0G4sc+SXSfT0IQpVcCtUOqMPax5VERGy1ns7MkT1BJQ3H+N2Ps+mF+zmDrkc3w
ZOcrkGGEOsyNtq+fs7RtRIdtGrty3/KYDBTuU+ODvtPEAaTgIl6hwM6irbcZcz4r
6BDUyuZiNh+MB7ktqfL4El/Qy9Q8hhGTir4OxVA6Gnv6VXFj4rTlne4bGMlyuTQF
HTi1bHEO9iEd4b3RgedbU0mYBuEV7mMa3aS5U+f/mXMuaYTR7mLu7RJUZ23SHRnN
NVvNBsry559R0zJpKhnCa0orxoNy4hc9kHGSG5XyGUwLzfawptUj
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:32 2024 by rpki-client on console-fra.rpki-client.org