Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/0f6920-2770-4cbe-a64f-2a6bc3832a0a/1/nAzLH_4OhlNk7qfDmWTIqBLuPU8.roa
File: nAzLH_4OhlNk7qfDmWTIqBLuPU8.roa (raw, json)
Hash identifier: cc46GroyLXw4bstmPq9b6Muz1fkiOI85trlbh/QhaRY=
Subject key identifier: 9C:0C:CB:1F:FE:0E:86:53:64:EE:A7:C3:99:64:C8:A8:12:EE:3D:4F
Certificate issuer: /CN=c97dc6d8df5d084e923063488d37d3ae0114777b
Certificate serial: 01857231197F11D9CF251DB36808FC97B8CD
Authority key identifier: C9:7D:C6:D8:DF:5D:08:4E:92:30:63:48:8D:37:D3:AE:01:14:77:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yX3G2N9dCE6SMGNIjTfTrgEUd3s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/0f6920-2770-4cbe-a64f-2a6bc3832a0a/1/nAzLH_4OhlNk7qfDmWTIqBLuPU8.roa
Signing time: Mon 02 Jan 2023 11:14:58 +0000
ROA not before: Mon 02 Jan 2023 11:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57591
IP address blocks: 91.229.130.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:31:19:7f:11:d9:cf:25:1d:b3:68:08:fc:97:b8:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c97dc6d8df5d084e923063488d37d3ae0114777b
Validity
Not Before: Jan 2 11:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9c0ccb1ffe0e865364eea7c39964c8a812ee3d4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:6c:de:3c:02:53:d4:e7:72:f3:54:d3:ff:d4:
22:aa:7a:a1:b3:91:b2:f3:df:d6:3c:5d:42:f2:92:
ee:68:4c:9b:90:7e:8e:10:f6:9f:7b:25:18:7f:5e:
03:5b:b1:45:68:6d:15:07:c1:4f:d9:a5:fe:07:ff:
e4:63:ef:7e:18:f1:e4:99:5e:b6:fd:74:54:2d:c8:
66:75:3b:a1:f1:a0:30:00:59:2b:01:c5:a6:55:2c:
a0:f5:0c:54:c6:15:cc:6b:b3:fc:6a:62:7f:58:53:
14:dd:99:8d:f3:3c:61:b1:9f:e5:70:48:f5:98:bd:
89:3b:c6:23:9a:71:75:c7:5b:2a:0e:d4:f0:f1:d7:
60:03:18:d2:d8:0f:55:e4:66:14:d1:a3:e7:cc:a0:
61:14:8f:2f:85:eb:4f:58:03:83:6b:01:62:89:8e:
e1:3a:e7:11:4d:fa:74:cc:07:a1:93:5e:27:09:f9:
91:d5:c0:d1:f8:dd:9c:5b:99:04:3c:06:72:ab:63:
3e:9f:66:9a:a6:62:b5:58:4d:2e:3f:c8:30:12:03:
5b:41:71:3a:07:01:61:93:77:91:f0:3f:65:fe:a8:
6a:29:e0:d5:f0:25:52:98:38:56:8a:c4:4e:f3:2a:
b8:91:f4:9e:68:71:ea:54:c6:18:75:55:ef:ba:10:
25:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:0C:CB:1F:FE:0E:86:53:64:EE:A7:C3:99:64:C8:A8:12:EE:3D:4F
X509v3 Authority Key Identifier:
keyid:C9:7D:C6:D8:DF:5D:08:4E:92:30:63:48:8D:37:D3:AE:01:14:77:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yX3G2N9dCE6SMGNIjTfTrgEUd3s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/0f6920-2770-4cbe-a64f-2a6bc3832a0a/1/nAzLH_4OhlNk7qfDmWTIqBLuPU8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/0f6920-2770-4cbe-a64f-2a6bc3832a0a/1/yX3G2N9dCE6SMGNIjTfTrgEUd3s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.229.130.0/23
Signature Algorithm: sha256WithRSAEncryption
08:33:b4:3c:d8:8d:4a:a4:3f:33:a2:03:d4:2d:ff:82:b2:d8:
8d:1d:59:b9:6d:7e:3f:ac:07:1a:1a:b0:69:a7:11:7f:61:ac:
09:71:53:b7:3a:e1:27:cd:89:9b:da:09:d0:7d:af:a4:f7:f0:
be:3b:57:cc:52:a5:42:33:0d:59:c9:d7:98:73:c1:bb:28:ef:
04:35:34:43:da:90:9b:1f:e2:f4:29:f6:59:f9:76:56:5f:4b:
b5:eb:dc:68:e4:48:27:5a:89:e9:0d:fe:c9:7a:59:35:0c:94:
e6:c9:69:62:ef:fc:53:9d:0a:9e:e0:8c:9c:8d:5e:7f:9c:89:
37:20:a3:13:24:f3:b4:62:10:95:fc:11:ce:b3:1a:7f:6f:36:
21:a2:41:58:54:f7:a7:6f:2d:f4:5e:2e:dd:34:ba:ac:ab:08:
f0:0f:94:fb:95:64:b4:28:cc:48:78:bb:06:e2:59:88:f6:6a:
eb:0a:f7:d8:cd:d6:f1:e2:83:9c:ae:6d:78:ad:eb:8b:4e:e9:
e0:77:7f:35:e9:b2:c2:8a:9f:8e:8c:f8:9b:d8:fc:50:ee:a6:
65:46:7c:5a:42:9e:14:51:35:68:74:11:53:5f:29:0b:98:3b:
8e:0a:a0:dc:0f:3d:12:0a:2d:61:02:cb:23:cc:08:3e:e8:a2:
e0:e5:1f:08
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyMRl/EdnPJR2zaAj8l7jNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5N2RjNmQ4ZGY1ZDA4NGU5MjMwNjM0ODhkMzdkM2FlMDEx
NDc3N2IwHhcNMjMwMTAyMTExNDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YzBjY2IxZmZlMGU4NjUzNjRlZWE3YzM5OTY0YzhhODEyZWUzZDRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvWzePAJT1Ody81TT/9Qiqnqhs5Gy
89/WPF1C8pLuaEybkH6OEPafeyUYf14DW7FFaG0VB8FP2aX+B//kY+9+GPHkmV62
/XRULchmdTuh8aAwAFkrAcWmVSyg9QxUxhXMa7P8amJ/WFMU3ZmN8zxhsZ/lcEj1
mL2JO8YjmnF1x1sqDtTw8ddgAxjS2A9V5GYU0aPnzKBhFI8vhetPWAODawFiiY7h
OucRTfp0zAehk14nCfmR1cDR+N2cW5kEPAZyq2M+n2aapmK1WE0uP8gwEgNbQXE6
BwFhk3eR8D9l/qhqKeDV8CVSmDhWisRO8yq4kfSeaHHqVMYYdVXvuhAlcQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJwMyx/+DoZTZO6nw5lkyKgS7j1PMB8GA1UdIwQY
MBaAFMl9xtjfXQhOkjBjSI03064BFHd7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveVgzRzJOOWRDRTZTTUdOSWpUZlRyZ0VVZDNzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8wZjY5MjAtMjc3MC00Y2JlLWE2NGYt
MmE2YmMzODMyYTBhLzEvbkF6TEhfNE9obE5rN3FmRG1XVElxQkx1UFU4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy8wZjY5MjAtMjc3MC00Y2JlLWE2NGYtMmE2YmMzODMyYTBh
LzEveVgzRzJOOWRDRTZTTUdOSWpUZlRyZ0VVZDNzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBW+WCMA0G
CSqGSIb3DQEBCwUAA4IBAQAIM7Q82I1KpD8zogPULf+CstiNHVm5bX4/rAcaGrBp
pxF/YawJcVO3OuEnzYmb2gnQfa+k9/C+O1fMUqVCMw1ZydeYc8G7KO8ENTRD2pCb
H+L0KfZZ+XZWX0u169xo5EgnWonpDf7Jelk1DJTmyWli7/xTnQqe4IycjV5/nIk3
IKMTJPO0YhCV/BHOsxp/bzYhokFYVPenby30Xi7dNLqsqwjwD5T7lWS0KMxIeLsG
4lmI9mrrCvfYzdbx4oOcrm14reuLTungd3816bLCip+OjPib2PxQ7qZlRnxaQp4U
UTVodBFTXykLmDuOCqDcDz0SCi1hAssjzAg+6KLg5R8I
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:41 2024 by rpki-client on console-fra.rpki-client.org