Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/85928f-5f19-41d9-8238-5c54cdad19f1/1/NzVVvf-FpAqvnWUP_bcEchdmXyY.roa
File: NzVVvf-FpAqvnWUP_bcEchdmXyY.roa (raw, json)
Hash identifier: g5wxE9RHoS2uUqJ9FCUQOOqbkkd9sH2bVlwBNp04uYc=
Subject key identifier: 37:35:55:BD:FF:85:A4:0A:AF:9D:65:0F:FD:B7:04:72:17:66:5F:26
Certificate issuer: /CN=27b8dbd97de4cd4059b52e513dcf35cd381a32b3
Certificate serial: 01856DC1ADDA31C4631ACE34F97097129514
Authority key identifier: 27:B8:DB:D9:7D:E4:CD:40:59:B5:2E:51:3D:CF:35:CD:38:1A:32:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J7jb2X3kzUBZtS5RPc81zTgaMrM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/85928f-5f19-41d9-8238-5c54cdad19f1/1/NzVVvf-FpAqvnWUP_bcEchdmXyY.roa
Signing time: Sun 01 Jan 2023 14:34:47 +0000
ROA not before: Sun 01 Jan 2023 14:34:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197981
IP address blocks: 185.204.40.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:34:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:c1:ad:da:31:c4:63:1a:ce:34:f9:70:97:12:95:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27b8dbd97de4cd4059b52e513dcf35cd381a32b3
Validity
Not Before: Jan 1 14:34:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=373555bdff85a40aaf9d650ffdb7047217665f26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:35:51:3f:2b:02:59:bf:3b:57:af:6f:3c:c8:
26:ba:fe:4f:93:fb:e1:7f:ea:53:ca:73:6d:92:92:
28:1a:88:e0:21:31:c0:b8:95:e6:a9:08:66:80:3c:
23:1e:e6:f2:fc:68:31:3e:b0:e8:01:33:54:47:48:
e6:a3:dc:63:08:7f:49:55:22:fd:64:d9:67:b5:6d:
8c:4b:e1:5f:17:35:e2:72:06:a9:72:5e:45:6f:4c:
0e:b5:ff:6b:cb:2a:b5:09:a4:9e:2c:31:27:2a:c4:
a5:b5:f6:18:b6:37:a7:a7:eb:19:e2:93:a1:18:2e:
a7:df:6b:f7:d3:4d:e2:c3:08:3e:c3:5b:9e:27:0d:
87:bd:e5:82:a2:bb:0d:99:6d:e8:31:8d:0a:20:2e:
2a:29:e5:53:fa:7d:a0:6f:c9:49:a4:58:81:20:1d:
b5:cd:77:be:9c:55:e9:95:fa:8a:6a:6d:2d:13:c4:
fc:47:89:a4:3d:15:13:24:c7:f0:e2:c8:e3:be:63:
eb:f0:af:e0:33:2b:6f:98:73:1d:d2:d1:66:2b:2b:
d8:34:6e:49:75:f1:bc:cf:95:f3:9d:f2:37:00:d3:
5c:df:fd:64:0e:62:7d:68:17:d1:65:fd:5c:ba:45:
39:c9:89:82:11:0b:a0:1c:6f:91:f5:1b:e5:01:fe:
19:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:35:55:BD:FF:85:A4:0A:AF:9D:65:0F:FD:B7:04:72:17:66:5F:26
X509v3 Authority Key Identifier:
keyid:27:B8:DB:D9:7D:E4:CD:40:59:B5:2E:51:3D:CF:35:CD:38:1A:32:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J7jb2X3kzUBZtS5RPc81zTgaMrM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/85928f-5f19-41d9-8238-5c54cdad19f1/1/NzVVvf-FpAqvnWUP_bcEchdmXyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/85928f-5f19-41d9-8238-5c54cdad19f1/1/J7jb2X3kzUBZtS5RPc81zTgaMrM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.204.40.0/24
Signature Algorithm: sha256WithRSAEncryption
14:e0:ba:43:6b:19:73:b6:e9:0b:01:3e:18:c7:ad:f9:5b:3a:
00:60:f2:8a:e5:e8:19:5c:c3:5e:c2:ee:ae:e0:21:d7:a3:00:
15:33:3b:a3:27:09:10:1b:63:82:11:f8:80:b6:79:55:ff:54:
74:ea:92:78:30:08:7c:33:88:56:80:30:72:c0:4b:e2:d7:5f:
ec:01:5b:c5:34:5c:fc:15:b8:c9:d5:f4:ec:39:a5:61:27:fc:
2f:5b:49:41:79:ba:d6:cf:4e:62:bf:7e:38:a8:a4:58:5a:ea:
2c:97:de:cd:4b:a3:e7:b4:32:fc:ca:cb:33:fe:c9:dd:cc:31:
9d:16:bf:0f:a8:5c:54:ed:d0:63:05:d5:ee:d1:82:cd:29:b4:
40:c0:e9:2c:9e:14:7b:9c:47:68:33:20:d3:10:f0:14:7d:6c:
08:8c:cb:58:3a:ca:36:8c:34:2f:1c:9a:6b:ca:a8:65:2f:1c:
70:4f:ba:3c:ab:e6:d8:84:de:ff:cf:01:a2:2e:30:fb:23:34:
1d:be:17:50:d7:ee:c3:60:5d:48:41:ca:82:b3:de:35:4f:fe:
09:8d:83:df:60:ef:63:21:7f:33:45:4b:92:9f:f9:3f:6a:3d:
2e:cb:99:19:c0:bf:96:e1:b6:b0:5b:35:37:08:7c:a6:90:d0:
b5:78:59:34
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtwa3aMcRjGs40+XCXEpUUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI3YjhkYmQ5N2RlNGNkNDA1OWI1MmU1MTNkY2YzNWNkMzgx
YTMyYjMwHhcNMjMwMTAxMTQzNDQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNzM1NTViZGZmODVhNDBhYWY5ZDY1MGZmZGI3MDQ3MjE3NjY1ZjI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqDVRPysCWb87V69vPMgmuv5Pk/vh
f+pTynNtkpIoGojgITHAuJXmqQhmgDwjHuby/GgxPrDoATNUR0jmo9xjCH9JVSL9
ZNlntW2MS+FfFzXicgapcl5Fb0wOtf9ryyq1CaSeLDEnKsSltfYYtjenp+sZ4pOh
GC6n32v3003iwwg+w1ueJw2HveWCorsNmW3oMY0KIC4qKeVT+n2gb8lJpFiBIB21
zXe+nFXplfqKam0tE8T8R4mkPRUTJMfw4sjjvmPr8K/gMytvmHMd0tFmKyvYNG5J
dfG8z5XznfI3ANNc3/1kDmJ9aBfRZf1cukU5yYmCEQugHG+R9RvlAf4ZOQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDc1Vb3/haQKr51lD/23BHIXZl8mMB8GA1UdIwQY
MBaAFCe429l95M1AWbUuUT3PNc04GjKzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSjdqYjJYM2t6VUJadFM1UlBjODF6VGdhTXJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy84NTkyOGYtNWYxOS00MWQ5LTgyMzgt
NWM1NGNkYWQxOWYxLzEvTnpWVnZmLUZwQXF2bldVUF9iY0VjaGRtWHlZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYy84NTkyOGYtNWYxOS00MWQ5LTgyMzgtNWM1NGNkYWQxOWYx
LzEvSjdqYjJYM2t6VUJadFM1UlBjODF6VGdhTXJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAucwoMA0G
CSqGSIb3DQEBCwUAA4IBAQAU4LpDaxlztukLAT4Yx635WzoAYPKK5egZXMNewu6u
4CHXowAVMzujJwkQG2OCEfiAtnlV/1R06pJ4MAh8M4hWgDBywEvi11/sAVvFNFz8
FbjJ1fTsOaVhJ/wvW0lBebrWz05iv344qKRYWuosl97NS6PntDL8yssz/sndzDGd
Fr8PqFxU7dBjBdXu0YLNKbRAwOksnhR7nEdoMyDTEPAUfWwIjMtYOso2jDQvHJpr
yqhlLxxwT7o8q+bYhN7/zwGiLjD7IzQdvhdQ1+7DYF1IQcqCs941T/4JjYPfYO9j
IX8zRUuSn/k/aj0uy5kZwL+W4bawWzU3CHymkNC1eFk0
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:08 2024 by rpki-client on console-ams.rpki-client.org