Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/NcY-n-Zpm91KZzkn9BNZedFVYRE.roa
File: NcY-n-Zpm91KZzkn9BNZedFVYRE.roa (raw, json)
Hash identifier: QyzNxNWlCB59JC3qKiCvIQi8rm+vSueHRNXv90+Y5RE=
Subject key identifier: 35:C6:3E:9F:E6:69:9B:DD:4A:67:39:27:F4:13:59:79:D1:55:61:11
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 0188C34A76815213039E312CB256112CE943
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/NcY-n-Zpm91KZzkn9BNZedFVYRE.roa
Signing time: Fri 16 Jun 2023 08:20:17 +0000
ROA not before: Fri 16 Jun 2023 08:20:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 77.242.159.0/24 maxlen: 24
88.209.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 14 Jul 2023 15:56:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:c3:4a:76:81:52:13:03:9e:31:2c:b2:56:11:2c:e9:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jun 16 08:20:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=35c63e9fe6699bdd4a673927f4135979d1556111
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ae:49:f2:59:20:e8:fa:8a:3a:f9:80:c5:8d:
13:0f:6c:a3:bb:a5:41:c1:87:94:9f:39:45:7c:72:
f6:2b:e6:69:47:3f:7a:0a:7a:99:a4:c2:db:56:f4:
a5:41:93:a5:43:25:36:d8:27:ca:46:43:41:a4:8b:
2d:ad:81:bf:7e:e7:24:1c:63:24:c6:e2:1a:df:cd:
2d:78:c6:db:9f:a6:6e:fb:13:63:e6:e1:e1:00:3c:
45:47:01:7f:a8:6b:fb:74:ac:0d:3c:9f:e1:6c:c1:
e2:43:95:e4:d8:5f:b2:fd:12:e1:c5:97:1c:3a:a6:
0c:23:c9:24:98:51:b6:82:31:18:29:15:0d:0c:03:
8f:b4:57:58:28:a1:2c:a4:5d:b0:8f:11:2d:8c:5b:
39:ac:e9:26:e2:b6:5d:5d:61:8d:f7:48:8e:9f:64:
15:4b:72:db:e3:9f:2e:13:ac:b3:15:e7:c3:7d:b8:
88:b4:be:bd:9e:d3:06:4c:c7:59:b8:ec:92:c1:93:
c7:c4:f5:8e:81:28:41:3a:43:dd:79:35:2d:65:61:
2c:34:aa:cd:ed:82:cc:35:c9:42:44:1f:7c:8e:13:
2a:ea:a1:84:b9:1a:6c:55:59:5e:7a:1a:74:8f:ec:
56:38:63:1b:33:31:c1:d5:25:0d:36:ef:51:5c:57:
e1:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:C6:3E:9F:E6:69:9B:DD:4A:67:39:27:F4:13:59:79:D1:55:61:11
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/NcY-n-Zpm91KZzkn9BNZedFVYRE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.242.159.0/24
88.209.203.0/24
Signature Algorithm: sha256WithRSAEncryption
56:c4:b5:ef:d6:65:25:be:47:be:49:5a:8f:f3:a7:61:23:7d:
1b:d9:4b:a5:e1:e2:60:fc:79:0e:ea:85:17:e0:a2:7b:7f:c2:
d7:d7:c8:b8:fe:34:5c:37:ac:fe:95:f9:d0:61:b3:4f:47:a8:
b5:d4:10:02:2c:37:b6:7b:fa:5a:dd:58:26:da:18:ec:9c:6e:
5e:4b:f4:51:00:58:14:e7:59:d9:00:4b:9f:c7:7d:ad:8d:99:
1c:d3:7c:4d:66:16:15:ca:8d:cf:8d:7f:fd:b6:84:f4:d2:6d:
cd:bd:9a:1c:07:42:06:1b:17:1d:31:30:f0:b1:a0:bd:1c:b0:
0e:da:ef:1c:c0:4d:4c:1b:e1:0e:5b:29:57:e5:17:45:dd:96:
88:48:bd:0a:2a:fd:18:f3:a7:f4:47:57:a2:40:5d:31:8d:7d:
25:4c:69:92:16:c6:4c:84:66:6c:59:ff:ec:a0:44:a4:47:b9:
f7:a3:25:5f:80:c5:d8:f9:66:9a:0f:d2:05:17:ac:40:29:59:
3e:b9:74:98:0d:5f:5b:79:44:24:05:67:96:dd:60:5e:15:98:
f0:be:19:e3:2b:58:0c:b0:fd:68:0b:6f:a5:b1:d0:01:6b:fd:
7b:5d:2b:c4:ce:d4:bb:bd:42:0f:3e:da:35:1f:46:10:ec:f9:
5a:e5:92:7e
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYjDSnaBUhMDnjEsslYRLOlDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkYWFhMGUwODIzNjAzNjBhY2RhMzQ3NjY0ZWI4MzE0ZWIx
MWRhMTAwHhcNMjMwNjE2MDgyMDE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNWM2M2U5ZmU2Njk5YmRkNGE2NzM5MjdmNDEzNTk3OWQxNTU2MTExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApK5J8lkg6PqKOvmAxY0TD2yju6VB
wYeUnzlFfHL2K+ZpRz96CnqZpMLbVvSlQZOlQyU22CfKRkNBpIstrYG/fuckHGMk
xuIa380teMbbn6Zu+xNj5uHhADxFRwF/qGv7dKwNPJ/hbMHiQ5Xk2F+y/RLhxZcc
OqYMI8kkmFG2gjEYKRUNDAOPtFdYKKEspF2wjxEtjFs5rOkm4rZdXWGN90iOn2QV
S3Lb458uE6yzFefDfbiItL69ntMGTMdZuOySwZPHxPWOgShBOkPdeTUtZWEsNKrN
7YLMNclCRB98jhMq6qGEuRpsVVleehp0j+xWOGMbMzHB1SUNNu9RXFfhmQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFDXGPp/maZvdSmc5J/QTWXnRVWERMB8GA1UdIwQY
MBaAFM2qoOCCNgNgrNo0dmTrgxTrEdoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2Mt
N2U0ZDZmNmY2ZTY2LzEvTmNZLW4tWnBtOTFLWnprbjlCTlplZEZWWVJFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2MtN2U0ZDZmNmY2ZTY2
LzEvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQATfKfAwQA
WNHLMA0GCSqGSIb3DQEBCwUAA4IBAQBWxLXv1mUlvke+SVqP86dhI30b2Uul4eJg
/HkO6oUX4KJ7f8LX18i4/jRcN6z+lfnQYbNPR6i11BACLDe2e/pa3Vgm2hjsnG5e
S/RRAFgU51nZAEufx32tjZkc03xNZhYVyo3PjX/9toT00m3NvZocB0IGGxcdMTDw
saC9HLAO2u8cwE1MG+EOWylX5RdF3ZaISL0KKv0Y86f0R1eiQF0xjX0lTGmSFsZM
hGZsWf/soESkR7n3oyVfgMXY+WaaD9IFF6xAKVk+uXSYDV9beUQkBWeW3WBeFZjw
vhnjK1gMsP1oC2+lsdABa/17XSvEztS7vUIPPto1H0YQ7Pla5ZJ+
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:27 2024 by rpki-client on console-fra.rpki-client.org