Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/6a7032-e80e-4ba7-b724-cd9eccf93b31/1/Nzi-lR6nPmR15cNsH67nYxl3ZIU.roa
File: Nzi-lR6nPmR15cNsH67nYxl3ZIU.roa (raw, json)
Hash identifier: 6wioGUABNJ+HJdusl3942Tzhn0YWGtm1ieMJqjK9crY=
Subject key identifier: 37:38:BE:95:1E:A7:3E:64:75:E5:C3:6C:1F:AE:E7:63:19:77:64:85
Certificate issuer: /CN=08759158de234b754b7150f21933096c1094aac4
Certificate serial: 0185720C40054E28C35EBDB0383BCDD8B33F
Authority key identifier: 08:75:91:58:DE:23:4B:75:4B:71:50:F2:19:33:09:6C:10:94:AA:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CHWRWN4jS3VLcVDyGTMJbBCUqsQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/6a7032-e80e-4ba7-b724-cd9eccf93b31/1/Nzi-lR6nPmR15cNsH67nYxl3ZIU.roa
Signing time: Mon 02 Jan 2023 10:34:43 +0000
ROA not before: Mon 02 Jan 2023 10:34:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62381
IP address blocks: 185.37.80.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:0c:40:05:4e:28:c3:5e:bd:b0:38:3b:cd:d8:b3:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08759158de234b754b7150f21933096c1094aac4
Validity
Not Before: Jan 2 10:34:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3738be951ea73e6475e5c36c1faee76319776485
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:cd:a8:41:f8:16:3f:a1:53:9a:63:bd:ec:f7:
59:7a:80:5d:f1:95:a9:5c:68:93:53:91:e8:55:c2:
ad:9b:37:c2:05:2c:a4:cb:ef:2c:89:af:49:ed:57:
16:05:56:04:b2:a9:0b:fd:54:fd:c0:07:60:36:ac:
ce:6c:ca:85:9f:65:a4:fa:0b:bd:2c:da:1c:33:be:
a4:09:4d:72:ea:44:f8:d2:7f:bb:22:d9:52:54:b9:
1e:df:2a:d6:68:7e:77:8f:88:a2:08:6e:9c:a5:2c:
31:7f:f4:c7:13:97:8c:9b:70:86:41:0d:8a:44:67:
38:4f:b5:a5:5b:24:10:68:d1:e3:c2:5d:58:bc:08:
6e:6e:4f:69:13:b8:06:22:f7:df:79:ef:25:53:9f:
c0:3e:c6:bf:ad:82:d4:a4:0f:3f:d0:f1:00:80:13:
3a:79:ad:53:08:61:3a:81:ed:b8:af:e8:02:34:bb:
1f:0f:62:e9:f8:31:20:63:78:d4:e2:75:2a:2e:c2:
c7:dc:bb:6a:0b:fc:e2:92:79:a9:87:12:99:a3:5b:
42:6d:a4:0b:9f:d2:17:63:c1:e5:4c:24:8f:41:60:
9e:03:c1:09:4b:09:1d:64:90:e0:73:7a:ca:6a:a2:
ee:d9:eb:e1:62:7e:96:47:60:98:56:1b:ea:43:de:
27:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:38:BE:95:1E:A7:3E:64:75:E5:C3:6C:1F:AE:E7:63:19:77:64:85
X509v3 Authority Key Identifier:
keyid:08:75:91:58:DE:23:4B:75:4B:71:50:F2:19:33:09:6C:10:94:AA:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CHWRWN4jS3VLcVDyGTMJbBCUqsQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/6a7032-e80e-4ba7-b724-cd9eccf93b31/1/Nzi-lR6nPmR15cNsH67nYxl3ZIU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/6a7032-e80e-4ba7-b724-cd9eccf93b31/1/CHWRWN4jS3VLcVDyGTMJbBCUqsQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.37.80.0/22
Signature Algorithm: sha256WithRSAEncryption
69:14:56:0b:c5:18:02:40:f4:83:26:30:3a:90:1d:10:3a:5f:
73:ba:41:46:da:46:0a:22:d6:68:0b:a1:ba:71:d7:03:1c:a3:
f5:6c:37:86:21:73:36:c1:cb:2b:c2:af:47:4c:38:62:62:19:
f6:1b:f3:68:2b:e6:7a:63:dc:71:1b:e9:53:36:64:55:88:31:
b8:ae:77:2e:48:e4:89:7c:58:e7:ad:ad:f5:98:62:c5:96:78:
92:79:11:72:fb:f8:80:46:1b:e8:71:c0:a8:02:cc:9e:e2:c3:
7e:64:84:16:9c:bf:2c:47:4b:40:17:7c:c9:dd:3a:ba:ee:2b:
6d:ea:d3:1a:8c:34:50:1c:fa:90:9f:7b:e3:a9:8c:20:2a:db:
81:98:50:9d:3f:40:ef:77:37:f3:cb:43:d9:84:22:04:24:1f:
20:30:a1:58:96:d0:96:c8:a7:25:1b:67:1c:8e:2a:4e:c5:2c:
d0:92:be:74:d5:34:03:f3:1c:b8:b9:98:e9:c2:31:de:5c:04:
25:03:46:eb:54:0d:1f:b4:17:76:d5:1e:10:54:59:d3:1b:22:
4a:90:ae:42:b8:17:41:bd:d3:1c:bd:77:89:c9:34:1c:0b:75:
eb:34:a7:8b:23:6c:2d:0b:be:30:e2:5b:a5:b4:55:b3:2e:9f:
90:17:84:f9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyDEAFTijDXr2wODvN2LM/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4NzU5MTU4ZGUyMzRiNzU0YjcxNTBmMjE5MzMwOTZjMTA5
NGFhYzQwHhcNMjMwMTAyMTAzNDQzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNzM4YmU5NTFlYTczZTY0NzVlNWMzNmMxZmFlZTc2MzE5Nzc2NDg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo82oQfgWP6FTmmO97PdZeoBd8ZWp
XGiTU5HoVcKtmzfCBSyky+8sia9J7VcWBVYEsqkL/VT9wAdgNqzObMqFn2Wk+gu9
LNocM76kCU1y6kT40n+7ItlSVLke3yrWaH53j4iiCG6cpSwxf/THE5eMm3CGQQ2K
RGc4T7WlWyQQaNHjwl1YvAhubk9pE7gGIvffee8lU5/APsa/rYLUpA8/0PEAgBM6
ea1TCGE6ge24r+gCNLsfD2Lp+DEgY3jU4nUqLsLH3LtqC/ziknmphxKZo1tCbaQL
n9IXY8HlTCSPQWCeA8EJSwkdZJDgc3rKaqLu2evhYn6WR2CYVhvqQ94npwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDc4vpUepz5kdeXDbB+u52MZd2SFMB8GA1UdIwQY
MBaAFAh1kVjeI0t1S3FQ8hkzCWwQlKrEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ0hXUldONGpTM1ZMY1ZEeUdUTUpiQkNVcXNRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS82YTcwMzItZTgwZS00YmE3LWI3MjQt
Y2Q5ZWNjZjkzYjMxLzEvTnppLWxSNm5QbVIxNWNOc0g2N25ZeGwzWklVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNS82YTcwMzItZTgwZS00YmE3LWI3MjQtY2Q5ZWNjZjkzYjMx
LzEvQ0hXUldONGpTM1ZMY1ZEeUdUTUpiQkNVcXNRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuSVQMA0G
CSqGSIb3DQEBCwUAA4IBAQBpFFYLxRgCQPSDJjA6kB0QOl9zukFG2kYKItZoC6G6
cdcDHKP1bDeGIXM2wcsrwq9HTDhiYhn2G/NoK+Z6Y9xxG+lTNmRViDG4rncuSOSJ
fFjnra31mGLFlniSeRFy+/iARhvoccCoAsye4sN+ZIQWnL8sR0tAF3zJ3Tq67itt
6tMajDRQHPqQn3vjqYwgKtuBmFCdP0Dvdzfzy0PZhCIEJB8gMKFYltCWyKclG2cc
jipOxSzQkr501TQD8xy4uZjpwjHeXAQlA0brVA0ftBd21R4QVFnTGyJKkK5CuBdB
vdMcvXeJyTQcC3XrNKeLI2wtC74w4lultFWzLp+QF4T5
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:26 2024 by rpki-client on console-fra.rpki-client.org