Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/915cbb-568a-4f42-8b80-ccb016ae1513/1/NFw0-l92w-y1DgnWJeM_xtThnBM.roa
File: NFw0-l92w-y1DgnWJeM_xtThnBM.roa (raw, json)
Hash identifier: pycNt5cWz3Jt0GCZfq5vy81xvTtpUK/kSsLsZj45Lw8=
Subject key identifier: 34:5C:34:FA:5F:76:C3:EC:B5:0E:09:D6:25:E3:3F:C6:D4:E1:9C:13
Certificate issuer: /CN=336f6ac82f6f28e3d3e5b66475594d8318e75ab3
Certificate serial: 0186DCA5B35A5F7BB599C8258F2560729B79
Authority key identifier: 33:6F:6A:C8:2F:6F:28:E3:D3:E5:B6:64:75:59:4D:83:18:E7:5A:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M29qyC9vKOPT5bZkdVlNgxjnWrM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/915cbb-568a-4f42-8b80-ccb016ae1513/1/NFw0-l92w-y1DgnWJeM_xtThnBM.roa
Signing time: Mon 13 Mar 2023 20:24:52 +0000
ROA not before: Mon 13 Mar 2023 20:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29286
IP address blocks: 37.19.96.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 Jun 2023 18:22:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:dc:a5:b3:5a:5f:7b:b5:99:c8:25:8f:25:60:72:9b:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=336f6ac82f6f28e3d3e5b66475594d8318e75ab3
Validity
Not Before: Mar 13 20:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=345c34fa5f76c3ecb50e09d625e33fc6d4e19c13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:55:bf:56:b4:41:b7:54:28:86:69:4a:e7:0a:
a4:e8:32:44:a4:a6:2e:23:a7:92:e6:81:07:84:79:
3a:3b:fd:2d:3d:b7:54:da:45:f1:2a:11:53:b7:73:
f7:45:0d:78:a4:87:cc:5e:f1:3a:c1:3b:c0:08:46:
2d:4f:c9:dc:ee:39:7f:e4:e1:f9:69:2c:3e:88:57:
be:92:17:5f:b6:2a:8e:7b:11:86:d6:5c:45:01:27:
50:bc:25:4f:79:34:1f:46:0b:ca:1a:d4:ee:b0:22:
53:5c:27:e8:d9:0a:f5:a6:07:e6:dc:57:d3:8d:20:
ae:cb:f5:7c:1d:34:fc:56:18:46:4c:d0:30:a6:6e:
21:c8:f0:1e:8b:f7:2b:29:07:2d:28:6b:a6:8d:c6:
74:65:db:87:52:02:00:be:71:d0:75:63:01:0f:29:
bd:12:9b:d5:eb:1f:d1:26:56:f6:e5:a5:4e:f7:30:
b8:6d:ad:eb:0a:23:05:f7:9a:b3:0c:c1:48:c5:5e:
2e:aa:27:da:ac:67:f7:d6:07:a0:04:b3:50:29:39:
bb:d5:93:a8:d4:73:da:e3:07:f8:22:6e:7e:35:62:
6f:64:2d:a8:fc:bc:a9:1d:65:03:95:fd:21:a3:cd:
11:86:c4:26:a3:65:bc:8b:ad:98:d8:20:1c:ca:ca:
76:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:5C:34:FA:5F:76:C3:EC:B5:0E:09:D6:25:E3:3F:C6:D4:E1:9C:13
X509v3 Authority Key Identifier:
keyid:33:6F:6A:C8:2F:6F:28:E3:D3:E5:B6:64:75:59:4D:83:18:E7:5A:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M29qyC9vKOPT5bZkdVlNgxjnWrM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/915cbb-568a-4f42-8b80-ccb016ae1513/1/NFw0-l92w-y1DgnWJeM_xtThnBM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/915cbb-568a-4f42-8b80-ccb016ae1513/1/M29qyC9vKOPT5bZkdVlNgxjnWrM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.19.96.0/24
Signature Algorithm: sha256WithRSAEncryption
62:7b:dd:c1:a1:0e:0e:54:36:5c:66:1e:49:06:64:de:dc:7b:
a6:e7:27:f3:ec:46:2a:cd:71:6e:b2:b9:86:2c:af:38:0b:f9:
09:ca:93:5f:8d:2b:d0:c2:2d:a5:ae:cd:16:54:54:02:6d:47:
35:31:f7:84:4d:44:d9:f7:34:bc:5c:b0:09:ec:c2:28:94:32:
64:fb:96:52:1a:18:70:f0:d0:75:b8:8e:0e:b6:59:73:7f:30:
0f:79:64:9a:4b:a3:be:59:cb:f2:36:68:ca:b2:d9:14:94:12:
b7:e2:f4:b2:27:76:4e:6b:fa:59:17:11:74:84:bb:c0:52:38:
2a:61:4d:3e:84:17:27:36:ff:2e:5a:5a:33:eb:b5:2a:b1:d7:
1d:e9:0b:75:8e:b1:54:39:f1:55:0d:f2:3f:7d:0b:f3:43:13:
48:2d:ac:77:a7:2b:ac:1d:dd:2b:f4:8f:d1:65:dd:d7:8f:77:
2f:47:c3:bc:18:e3:04:b1:bc:be:8a:72:33:aa:33:69:ca:2b:
bd:43:19:01:76:45:93:cc:e3:e9:1f:95:75:4b:9f:4c:59:c4:
b2:fa:dc:e7:35:3f:56:ab:e7:c5:af:59:09:6c:7e:57:89:c2:
7e:0a:e9:d7:98:f1:df:50:30:25:a2:6b:04:8b:aa:cf:db:3c:
71:91:d8:91
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYbcpbNaX3u1mcgljyVgcpt5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMzNmY2YWM4MmY2ZjI4ZTNkM2U1YjY2NDc1NTk0ZDgzMThl
NzVhYjMwHhcNMjMwMzEzMjAyNDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNDVjMzRmYTVmNzZjM2VjYjUwZTA5ZDYyNWUzM2ZjNmQ0ZTE5YzEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu1W/VrRBt1QohmlK5wqk6DJEpKYu
I6eS5oEHhHk6O/0tPbdU2kXxKhFTt3P3RQ14pIfMXvE6wTvACEYtT8nc7jl/5OH5
aSw+iFe+khdftiqOexGG1lxFASdQvCVPeTQfRgvKGtTusCJTXCfo2Qr1pgfm3FfT
jSCuy/V8HTT8VhhGTNAwpm4hyPAei/crKQctKGumjcZ0ZduHUgIAvnHQdWMBDym9
EpvV6x/RJlb25aVO9zC4ba3rCiMF95qzDMFIxV4uqifarGf31gegBLNQKTm71ZOo
1HPa4wf4Im5+NWJvZC2o/LypHWUDlf0ho80RhsQmo2W8i62Y2CAcysp2CwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDRcNPpfdsPstQ4J1iXjP8bU4ZwTMB8GA1UdIwQY
MBaAFDNvasgvbyjj0+W2ZHVZTYMY51qzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTTI5cXlDOXZLT1BUNWJaa2RWbE5neGpuV3JNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS85MTVjYmItNTY4YS00ZjQyLThiODAt
Y2NiMDE2YWUxNTEzLzEvTkZ3MC1sOTJ3LXkxRGduV0plTV94dFRobkJNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNS85MTVjYmItNTY4YS00ZjQyLThiODAtY2NiMDE2YWUxNTEz
LzEvTTI5cXlDOXZLT1BUNWJaa2RWbE5neGpuV3JNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJRNgMA0G
CSqGSIb3DQEBCwUAA4IBAQBie93BoQ4OVDZcZh5JBmTe3Hum5yfz7EYqzXFusrmG
LK84C/kJypNfjSvQwi2lrs0WVFQCbUc1MfeETUTZ9zS8XLAJ7MIolDJk+5ZSGhhw
8NB1uI4OtllzfzAPeWSaS6O+WcvyNmjKstkUlBK34vSyJ3ZOa/pZFxF0hLvAUjgq
YU0+hBcnNv8uWloz67Uqsdcd6Qt1jrFUOfFVDfI/fQvzQxNILax3pyusHd0r9I/R
Zd3Xj3cvR8O8GOMEsby+inIzqjNpyiu9QxkBdkWTzOPpH5V1S59MWcSy+tznNT9W
q+fFr1kJbH5XicJ+CunXmPHfUDAlomsEi6rP2zxxkdiR
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:08 2024 by rpki-client on console-fra.rpki-client.org