Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/18bda0-a885-4eb4-a00b-5be2451490f1/1/nz5l1BnpaV7O7N_7-U1kmUmf-IA.roa
File: nz5l1BnpaV7O7N_7-U1kmUmf-IA.roa (raw, json)
Hash identifier: qEpScwpSVUDjdDFIjOV/VSeEGEzWbcEPuzg2YUSqMmE=
Subject key identifier: 9F:3E:65:D4:19:E9:69:5E:CE:EC:DF:FB:F9:4D:64:99:49:9F:F8:80
Certificate issuer: /CN=480bf1c136ecffd312fc39ba3c82aff939de24f9
Certificate serial: 01856D419F02B36B4A49723B1AEC4D70A3D4
Authority key identifier: 48:0B:F1:C1:36:EC:FF:D3:12:FC:39:BA:3C:82:AF:F9:39:DE:24:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAvxwTbs_9MS_Dm6PIKv-TneJPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/18bda0-a885-4eb4-a00b-5be2451490f1/1/nz5l1BnpaV7O7N_7-U1kmUmf-IA.roa
Signing time: Sun 01 Jan 2023 12:14:54 +0000
ROA not before: Sun 01 Jan 2023 12:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204843
IP address blocks: 185.179.91.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:41:9f:02:b3:6b:4a:49:72:3b:1a:ec:4d:70:a3:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=480bf1c136ecffd312fc39ba3c82aff939de24f9
Validity
Not Before: Jan 1 12:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9f3e65d419e9695eceecdffbf94d6499499ff880
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:48:56:6e:09:0c:a7:c9:5e:a0:f3:a0:4e:b3:
35:76:30:a8:d1:8b:54:a0:b8:55:57:ec:46:b3:da:
04:cd:5a:bd:85:0e:44:d6:04:41:7f:bb:18:40:79:
90:1b:75:a6:43:ee:42:11:7d:72:d8:2a:42:14:5a:
82:d1:71:f3:50:de:74:e6:95:22:00:26:0e:29:c4:
52:07:9d:65:ec:a9:85:63:8e:f3:14:96:37:02:b7:
45:67:53:f9:04:f5:f7:20:d7:d1:7c:34:f3:df:b0:
af:c9:e0:06:91:93:ea:e3:e9:ce:a4:89:80:f1:67:
91:86:54:c4:e7:87:35:74:6e:6f:05:e4:fd:38:82:
2e:c1:ac:fe:a7:26:59:98:fb:51:91:e3:ef:54:51:
f8:d3:08:be:99:00:3b:7d:09:8c:eb:f8:58:ed:2a:
d2:d2:cf:82:51:bb:12:eb:c0:b6:c6:48:6c:6f:b3:
34:a1:07:5d:54:a9:67:b1:57:e1:f7:4b:5b:cd:cd:
2d:a4:6d:f3:b1:75:8c:fb:b9:7e:5b:4d:08:94:fc:
51:fa:2c:d8:79:c2:b8:93:2a:ce:f3:37:43:b5:ab:
4f:79:08:b5:7d:91:8e:37:89:89:99:31:9b:28:ab:
f0:5a:d0:09:97:3a:ce:74:0e:1b:cc:b0:41:f6:37:
50:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:3E:65:D4:19:E9:69:5E:CE:EC:DF:FB:F9:4D:64:99:49:9F:F8:80
X509v3 Authority Key Identifier:
keyid:48:0B:F1:C1:36:EC:FF:D3:12:FC:39:BA:3C:82:AF:F9:39:DE:24:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAvxwTbs_9MS_Dm6PIKv-TneJPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/18bda0-a885-4eb4-a00b-5be2451490f1/1/nz5l1BnpaV7O7N_7-U1kmUmf-IA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/18bda0-a885-4eb4-a00b-5be2451490f1/1/SAvxwTbs_9MS_Dm6PIKv-TneJPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.179.91.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:65:e6:7e:d5:cf:23:30:de:fb:07:69:51:7b:ca:93:87:fe:
6c:db:bb:da:48:39:f2:fe:71:3a:25:a3:0a:b1:ca:85:11:80:
4e:74:c3:ce:6d:d3:82:e5:4c:5b:37:13:b3:e4:de:0a:f0:3f:
c0:6a:ab:77:34:1b:35:0b:36:ad:17:ef:13:36:23:6f:4a:fd:
a7:f8:ba:25:87:c6:8c:08:0b:ea:a9:c7:cc:2c:13:7b:ee:a9:
22:65:d0:4d:ec:55:b1:fb:99:85:f2:49:ae:ac:13:46:a7:41:
f7:39:ae:68:76:ed:0f:a3:11:73:9b:c8:4a:bb:b6:79:7f:1c:
48:b8:cf:2f:be:cb:48:5b:5f:0e:3d:01:37:18:49:90:02:10:
1c:6b:c6:a9:8e:b8:73:30:59:90:57:9d:c5:01:ab:e8:91:64:
dc:3f:94:96:ba:1b:f6:fb:df:09:92:15:5f:b6:cf:60:0a:74:
15:8d:e8:6f:cf:be:8f:e3:7b:c9:09:13:9c:27:55:64:bd:7c:
5f:6c:64:25:60:bc:f9:fb:14:8a:8b:fa:83:ee:f3:c0:be:fa:
96:53:57:54:1c:d2:0a:52:af:fb:86:30:53:51:66:aa:aa:1e:
6c:ff:95:f1:e8:a9:66:26:fd:26:d7:d2:17:32:40:24:dc:06:
0e:58:bb:56
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtQZ8Cs2tKSXI7GuxNcKPUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ4MGJmMWMxMzZlY2ZmZDMxMmZjMzliYTNjODJhZmY5Mzlk
ZTI0ZjkwHhcNMjMwMTAxMTIxNDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZjNlNjVkNDE5ZTk2OTVlY2VlY2RmZmJmOTRkNjQ5OTQ5OWZmODgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnEhWbgkMp8leoPOgTrM1djCo0YtU
oLhVV+xGs9oEzVq9hQ5E1gRBf7sYQHmQG3WmQ+5CEX1y2CpCFFqC0XHzUN505pUi
ACYOKcRSB51l7KmFY47zFJY3ArdFZ1P5BPX3INfRfDTz37CvyeAGkZPq4+nOpImA
8WeRhlTE54c1dG5vBeT9OIIuwaz+pyZZmPtRkePvVFH40wi+mQA7fQmM6/hY7SrS
0s+CUbsS68C2xkhsb7M0oQddVKlnsVfh90tbzc0tpG3zsXWM+7l+W00IlPxR+izY
ecK4kyrO8zdDtatPeQi1fZGON4mJmTGbKKvwWtAJlzrOdA4bzLBB9jdQNwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJ8+ZdQZ6Wlezuzf+/lNZJlJn/iAMB8GA1UdIwQY
MBaAFEgL8cE27P/TEvw5ujyCr/k53iT5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU0F2eHdUYnNfOU1TX0RtNlBJS3YtVG5lSlBrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi8xOGJkYTAtYTg4NS00ZWI0LWEwMGIt
NWJlMjQ1MTQ5MGYxLzEvbno1bDFCbnBhVjdPN05fNy1VMWttVW1mLUlBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Zi8xOGJkYTAtYTg4NS00ZWI0LWEwMGItNWJlMjQ1MTQ5MGYx
LzEvU0F2eHdUYnNfOU1TX0RtNlBJS3YtVG5lSlBrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAubNbMA0G
CSqGSIb3DQEBCwUAA4IBAQBPZeZ+1c8jMN77B2lRe8qTh/5s27vaSDny/nE6JaMK
scqFEYBOdMPObdOC5UxbNxOz5N4K8D/Aaqt3NBs1CzatF+8TNiNvSv2n+Lolh8aM
CAvqqcfMLBN77qkiZdBN7FWx+5mF8kmurBNGp0H3Oa5odu0PoxFzm8hKu7Z5fxxI
uM8vvstIW18OPQE3GEmQAhAca8apjrhzMFmQV53FAavokWTcP5SWuhv2+98JkhVf
ts9gCnQVjehvz76P43vJCROcJ1VkvXxfbGQlYLz5+xSKi/qD7vPAvvqWU1dUHNIK
Uq/7hjBTUWaqqh5s/5Xx6KlmJv0m19IXMkAk3AYOWLtW
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:54 2023 by rpki-client on console-ams.rpki-client.org