Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/9c2508-11f1-4ae7-8720-bff023b344f7/1/Nlmgjc5bwlwpzLRwnHgDH1RRmkA.roa
File: Nlmgjc5bwlwpzLRwnHgDH1RRmkA.roa (raw, json)
Hash identifier: yKPBGLGl58O5iew3ZXke3Z99I5IUL7nkCUN4WaoqiZU=
Subject key identifier: 36:59:A0:8D:CE:5B:C2:5C:29:CC:B4:70:9C:78:03:1F:54:51:9A:40
Certificate issuer: /CN=7b4d31ab18e41f8d959a09d55660dd32aa9c45f7
Certificate serial: 0191DB48371AED103C671FB39858F05E4F0F
Authority key identifier: 7B:4D:31:AB:18:E4:1F:8D:95:9A:09:D5:56:60:DD:32:AA:9C:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e00xqxjkH42VmgnVVmDdMqqcRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/9c2508-11f1-4ae7-8720-bff023b344f7/1/Nlmgjc5bwlwpzLRwnHgDH1RRmkA.roa
Signing time: Tue 10 Sep 2024 09:33:48 +0000
ROA not before: Tue 10 Sep 2024 09:33:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47474
IP address blocks: 193.110.240.0/21 maxlen: 21
Validation: Failed, certificate revoked on Thu 17 Oct 2024 14:56:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:db:48:37:1a:ed:10:3c:67:1f:b3:98:58:f0:5e:4f:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b4d31ab18e41f8d959a09d55660dd32aa9c45f7
Validity
Not Before: Sep 10 09:33:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3659a08dce5bc25c29ccb4709c78031f54519a40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:5e:a2:4d:55:55:a4:b9:6f:41:fc:b0:59:3e:
5f:31:50:d5:6f:de:43:e0:7a:cc:9a:85:fe:44:98:
12:b0:ef:e0:64:e6:4c:01:ce:6c:75:49:69:0f:7f:
5f:b4:32:53:af:a1:5a:8b:a0:86:55:f2:c0:d0:0a:
97:11:b8:86:42:2b:d0:a8:d0:65:54:4a:31:1b:2a:
97:6a:f5:29:75:37:44:11:5e:c8:85:d0:73:1f:86:
9e:9b:cf:30:aa:00:2c:9d:9a:5d:e6:8c:6b:c9:12:
46:90:83:3a:e1:8f:c7:09:25:e6:e5:62:53:72:ec:
8b:76:12:68:2d:a9:1a:f5:4a:14:81:f3:ff:e4:03:
e1:df:c3:11:e9:a7:dd:34:94:bc:79:04:34:a6:0a:
1e:83:1a:8c:15:0b:ca:b1:66:87:a6:bf:68:3a:f3:
50:7e:ee:bb:80:55:57:45:28:e3:b0:f7:07:9e:84:
bc:2d:63:f7:2c:46:d1:25:52:2a:aa:5a:c7:1f:5c:
35:97:ea:1d:d2:7e:96:47:cc:6c:29:fb:79:79:62:
8e:64:3b:35:4d:ae:8d:07:3b:61:d9:11:4f:2f:3e:
36:cd:10:3b:6f:a6:06:f3:df:41:db:82:ce:39:a7:
6b:a3:6a:82:64:3e:ed:38:57:d7:42:6c:15:b8:1a:
a0:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:59:A0:8D:CE:5B:C2:5C:29:CC:B4:70:9C:78:03:1F:54:51:9A:40
X509v3 Authority Key Identifier:
keyid:7B:4D:31:AB:18:E4:1F:8D:95:9A:09:D5:56:60:DD:32:AA:9C:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e00xqxjkH42VmgnVVmDdMqqcRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/9c2508-11f1-4ae7-8720-bff023b344f7/1/Nlmgjc5bwlwpzLRwnHgDH1RRmkA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/9c2508-11f1-4ae7-8720-bff023b344f7/1/e00xqxjkH42VmgnVVmDdMqqcRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.110.240.0/21
Signature Algorithm: sha256WithRSAEncryption
a9:be:9c:49:c0:3b:24:93:90:e7:9f:67:68:2e:fc:7e:8c:5e:
5d:9a:8c:ff:69:00:51:b1:59:0c:7c:42:f7:5e:90:bf:51:a0:
dc:47:6a:49:08:1d:64:21:ab:58:80:80:b9:45:dc:e4:52:bd:
3b:ff:51:61:c9:db:16:11:42:f5:a1:1e:76:09:d5:cb:61:b2:
03:21:93:79:c9:44:17:b5:c6:a4:c0:87:05:9d:f3:9e:f8:e6:
28:a6:00:9f:e2:83:6c:ce:2d:e2:61:7c:2e:0c:55:cf:36:2d:
a6:53:a0:8c:8e:67:10:40:cb:15:c8:cc:17:68:25:a8:3c:61:
a2:24:80:20:ef:54:dd:a5:57:5c:03:b2:4f:94:7c:aa:97:ec:
da:e6:dc:93:57:fa:86:0c:1a:a2:eb:2a:62:0d:2b:ea:c2:9e:
7f:61:68:16:04:b0:47:85:1d:df:54:a3:e7:93:a4:42:14:d9:
6f:42:85:26:b3:c2:1c:2e:f7:77:59:93:b2:3d:b6:78:b4:48:
20:5a:17:58:4a:fe:e3:54:a5:0f:26:28:40:03:45:8f:23:aa:
2a:c7:6f:77:31:9b:2d:92:a6:a0:32:dd:92:8a:50:ed:83:63:
26:27:ca:8f:eb:da:80:52:93:2b:fd:98:3b:60:69:f7:35:9d:
10:91:71:21
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZHbSDca7RA8Zx+zmFjwXk8PMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdiNGQzMWFiMThlNDFmOGQ5NTlhMDlkNTU2NjBkZDMyYWE5
YzQ1ZjcwHhcNMjQwOTEwMDkzMzQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNjU5YTA4ZGNlNWJjMjVjMjljY2I0NzA5Yzc4MDMxZjU0NTE5YTQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn16iTVVVpLlvQfywWT5fMVDVb95D
4HrMmoX+RJgSsO/gZOZMAc5sdUlpD39ftDJTr6Fai6CGVfLA0AqXEbiGQivQqNBl
VEoxGyqXavUpdTdEEV7IhdBzH4aem88wqgAsnZpd5oxryRJGkIM64Y/HCSXm5WJT
cuyLdhJoLaka9UoUgfP/5APh38MR6afdNJS8eQQ0pgoegxqMFQvKsWaHpr9oOvNQ
fu67gFVXRSjjsPcHnoS8LWP3LEbRJVIqqlrHH1w1l+od0n6WR8xsKft5eWKOZDs1
Ta6NBzth2RFPLz42zRA7b6YG899B24LOOadro2qCZD7tOFfXQmwVuBqgEwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDZZoI3OW8JcKcy0cJx4Ax9UUZpAMB8GA1UdIwQY
MBaAFHtNMasY5B+NlZoJ1VZg3TKqnEX3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZTAweHF4amtINDJWbWduVlZtRGRNcXFjUmZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy85YzI1MDgtMTFmMS00YWU3LTg3MjAt
YmZmMDIzYjM0NGY3LzEvTmxtZ2pjNWJ3bHdwekxSd25IZ0RIMVJSbWtBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy85YzI1MDgtMTFmMS00YWU3LTg3MjAtYmZmMDIzYjM0NGY3
LzEvZTAweHF4amtINDJWbWduVlZtRGRNcXFjUmZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDwW7wMA0G
CSqGSIb3DQEBCwUAA4IBAQCpvpxJwDskk5Dnn2doLvx+jF5dmoz/aQBRsVkMfEL3
XpC/UaDcR2pJCB1kIatYgIC5RdzkUr07/1FhydsWEUL1oR52CdXLYbIDIZN5yUQX
tcakwIcFnfOe+OYopgCf4oNszi3iYXwuDFXPNi2mU6CMjmcQQMsVyMwXaCWoPGGi
JIAg71TdpVdcA7JPlHyql+za5tyTV/qGDBqi6ypiDSvqwp5/YWgWBLBHhR3fVKPn
k6RCFNlvQoUms8IcLvd3WZOyPbZ4tEggWhdYSv7jVKUPJihAA0WPI6oqx293MZst
kqagMt2SilDtg2MmJ8qP69qAUpMr/Zg7YGn3NZ0QkXEh
-----END CERTIFICATE-----
Generated at Thu Oct 17 17:19:21 2024 by rpki-client on console-fra.rpki-client.org