Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/0e58dc-7c90-49d7-8855-fa32d2d52968/1/NHAWt_VyGAyuSBFOPU19p8Yi5Ro.roa
File: NHAWt_VyGAyuSBFOPU19p8Yi5Ro.roa (raw, json)
Hash identifier: uqMPTqQ6L1mrWtdXHUHWAaEWL/nStYOdjEx6bDVxq80=
Subject key identifier: 34:70:16:B7:F5:72:18:0C:AE:48:11:4E:3D:4D:7D:A7:C6:22:E5:1A
Certificate issuer: /CN=f0cc7a447482e57b0604babb82a52409cde3b36d
Certificate serial: 018B10E8081B77C75A55D9A7972C08C361A7
Authority key identifier: F0:CC:7A:44:74:82:E5:7B:06:04:BA:BB:82:A5:24:09:CD:E3:B3:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8Mx6RHSC5XsGBLq7gqUkCc3js20.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/0e58dc-7c90-49d7-8855-fa32d2d52968/1/NHAWt_VyGAyuSBFOPU19p8Yi5Ro.roa
Signing time: Sun 08 Oct 2023 20:08:43 +0000
ROA not before: Sun 08 Oct 2023 20:08:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 91.123.0.0/24 maxlen: 24
91.123.1.0/24 maxlen: 24
91.123.2.0/24 maxlen: 24
91.123.3.0/24 maxlen: 24
91.123.4.0/24 maxlen: 24
91.123.5.0/24 maxlen: 24
91.123.6.0/24 maxlen: 24
91.123.7.0/24 maxlen: 24
91.123.8.0/24 maxlen: 24
91.123.9.0/24 maxlen: 24
91.123.10.0/24 maxlen: 24
91.123.11.0/24 maxlen: 24
91.123.12.0/24 maxlen: 24
91.123.13.0/24 maxlen: 24
91.123.14.0/24 maxlen: 24
91.123.15.0/24 maxlen: 24
190.106.187.0/24 maxlen: 24
190.106.188.0/24 maxlen: 24
190.106.189.0/24 maxlen: 24
190.106.190.0/24 maxlen: 24
190.106.191.0/24 maxlen: 24
190.106.160.0/24 maxlen: 24
190.106.161.0/24 maxlen: 24
190.106.162.0/24 maxlen: 24
190.106.163.0/24 maxlen: 24
190.106.164.0/24 maxlen: 24
190.106.165.0/24 maxlen: 24
190.106.166.0/24 maxlen: 24
190.106.167.0/24 maxlen: 24
190.106.168.0/24 maxlen: 24
190.106.169.0/24 maxlen: 24
190.106.170.0/24 maxlen: 24
190.106.171.0/24 maxlen: 24
190.106.172.0/24 maxlen: 24
190.106.177.0/24 maxlen: 24
190.106.178.0/24 maxlen: 24
190.106.179.0/24 maxlen: 24
190.106.173.0/24 maxlen: 24
190.106.174.0/24 maxlen: 24
190.106.175.0/24 maxlen: 24
190.106.176.0/24 maxlen: 24
190.106.180.0/24 maxlen: 24
190.106.181.0/24 maxlen: 24
190.106.182.0/24 maxlen: 24
190.106.183.0/24 maxlen: 24
190.106.184.0/24 maxlen: 24
190.106.185.0/24 maxlen: 24
190.106.186.0/24 maxlen: 24
206.195.128.0/24 maxlen: 24
206.195.129.0/24 maxlen: 24
206.195.130.0/24 maxlen: 24
206.195.131.0/24 maxlen: 24
206.195.132.0/24 maxlen: 24
206.195.133.0/24 maxlen: 24
206.195.134.0/24 maxlen: 24
206.195.135.0/24 maxlen: 24
206.195.136.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:10:e8:08:1b:77:c7:5a:55:d9:a7:97:2c:08:c3:61:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0cc7a447482e57b0604babb82a52409cde3b36d
Validity
Not Before: Oct 8 20:08:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=347016b7f572180cae48114e3d4d7da7c622e51a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:dd:47:1a:02:19:b0:04:6c:e0:72:b4:80:85:
c4:04:c4:53:bd:d4:15:9e:89:de:79:b0:d1:53:01:
97:6c:13:72:74:e7:63:6c:22:3f:1d:ac:9a:7d:c3:
8c:3e:4d:05:5b:6a:4f:ab:cb:4f:3e:ee:ac:8b:16:
d7:28:e2:41:bf:12:69:7a:66:65:91:ba:52:81:57:
6c:67:c0:77:95:2a:d3:91:7b:c0:ad:ce:d7:da:c8:
32:18:8f:50:c6:fe:0a:bf:4c:e6:9e:bc:b5:e5:31:
61:a1:ef:ce:de:be:8f:65:73:e7:7b:7d:3d:ce:6c:
20:7e:6c:1e:fc:9a:05:e6:46:7b:e7:bf:64:d5:14:
b5:c2:0e:42:c9:e7:6f:44:fa:c3:8f:7a:40:e3:12:
46:dc:2a:98:59:18:58:fc:5e:bb:e3:2d:40:97:41:
57:e6:38:76:3b:95:84:82:99:39:f0:d6:94:1d:82:
f4:c2:94:48:71:cf:4e:23:72:4f:58:0a:2a:0b:ff:
8e:78:14:18:40:45:56:bf:61:2c:19:9f:80:c5:ac:
d2:d6:f7:a3:c4:b3:7a:18:a6:f9:40:6e:63:a8:39:
32:1d:22:88:52:c4:c3:28:7c:85:6e:3a:09:7b:8d:
aa:f8:2e:41:8c:ee:37:f5:c1:63:8b:76:1a:96:c6:
a7:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:70:16:B7:F5:72:18:0C:AE:48:11:4E:3D:4D:7D:A7:C6:22:E5:1A
X509v3 Authority Key Identifier:
keyid:F0:CC:7A:44:74:82:E5:7B:06:04:BA:BB:82:A5:24:09:CD:E3:B3:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8Mx6RHSC5XsGBLq7gqUkCc3js20.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0e58dc-7c90-49d7-8855-fa32d2d52968/1/NHAWt_VyGAyuSBFOPU19p8Yi5Ro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0e58dc-7c90-49d7-8855-fa32d2d52968/1/8Mx6RHSC5XsGBLq7gqUkCc3js20.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.123.0.0/20
190.106.160.0/19
206.195.128.0-206.195.136.255
Signature Algorithm: sha256WithRSAEncryption
85:d8:cc:7c:7b:37:2a:89:41:d4:f0:5e:4b:4a:cc:f0:86:44:
dc:38:7c:36:03:ef:55:16:bf:94:6f:bf:24:d7:27:c0:18:be:
2e:d6:b1:fb:92:35:75:35:a3:b4:6f:c5:a9:6f:e2:6c:15:8f:
a6:c5:42:3d:d0:b1:3b:58:28:ec:bc:1f:1b:ea:29:6a:2f:be:
a7:f4:c6:84:f3:7b:4f:fb:1e:b4:da:92:31:34:c9:9f:b3:61:
59:54:ae:ea:b3:d6:30:0f:24:a2:b3:a6:a7:ec:57:f1:34:59:
cb:bb:75:66:b8:3f:3f:c2:7a:3f:fd:44:d9:63:01:21:74:99:
f1:dc:31:9a:56:dc:39:93:82:95:f2:fd:e2:67:6c:7f:b0:f6:
30:77:89:03:87:2a:e5:e9:97:da:9b:04:ae:f6:2e:e1:b7:d5:
2f:52:fb:7b:a2:b6:a3:28:13:46:4c:4f:8f:05:d7:e9:66:08:
16:ba:56:e4:ca:0b:01:53:d1:5f:ae:55:e6:1a:8c:0e:4f:e5:
33:22:c7:4d:08:cd:8d:b5:90:b4:8a:42:8c:60:48:63:c5:76:
99:07:0b:c5:ee:08:0b:60:0e:de:1d:f6:de:f8:4f:50:47:c0:
a8:a1:76:ee:88:27:00:d4:1f:a1:00:19:25:86:1a:5a:70:57:
df:41:68:97
-----BEGIN CERTIFICATE-----
MIIFETCCA/mgAwIBAgISAYsQ6Agbd8daVdmnlywIw2GnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwY2M3YTQ0NzQ4MmU1N2IwNjA0YmFiYjgyYTUyNDA5Y2Rl
M2IzNmQwHhcNMjMxMDA4MjAwODQzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNDcwMTZiN2Y1NzIxODBjYWU0ODExNGUzZDRkN2RhN2M2MjJlNTFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvN1HGgIZsARs4HK0gIXEBMRTvdQV
noneebDRUwGXbBNydOdjbCI/HayafcOMPk0FW2pPq8tPPu6sixbXKOJBvxJpemZl
kbpSgVdsZ8B3lSrTkXvArc7X2sgyGI9Qxv4Kv0zmnry15TFhoe/O3r6PZXPne309
zmwgfmwe/JoF5kZ7579k1RS1wg5CyedvRPrDj3pA4xJG3CqYWRhY/F674y1Al0FX
5jh2O5WEgpk58NaUHYL0wpRIcc9OI3JPWAoqC/+OeBQYQEVWv2EsGZ+AxazS1vej
xLN6GKb5QG5jqDkyHSKIUsTDKHyFbjoJe42q+C5BjO439cFji3YalsannQIDAQAB
o4ICHTCCAhkwHQYDVR0OBBYEFDRwFrf1chgMrkgRTj1NfafGIuUaMB8GA1UdIwQY
MBaAFPDMekR0guV7BgS6u4KlJAnN47NtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOE14NlJIU0M1WHNHQkxxN2dxVWtDYzNqczIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi8wZTU4ZGMtN2M5MC00OWQ3LTg4NTUt
ZmEzMmQyZDUyOTY4LzEvTkhBV3RfVnlHQXl1U0JGT1BVMTlwOFlpNVJvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMi8wZTU4ZGMtN2M5MC00OWQ3LTg4NTUtZmEzMmQyZDUyOTY4
LzEvOE14NlJIU0M1WHNHQkxxN2dxVWtDYzNqczIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAATAaAwQEW3sAAwQF
vmqgMAwDBAfOw4ADBADOw4gwDQYJKoZIhvcNAQELBQADggEBAIXYzHx7NyqJQdTw
XktKzPCGRNw4fDYD71UWv5RvvyTXJ8AYvi7WsfuSNXU1o7Rvxalv4mwVj6bFQj3Q
sTtYKOy8HxvqKWovvqf0xoTze0/7HrTakjE0yZ+zYVlUruqz1jAPJKKzpqfsV/E0
Wcu7dWa4Pz/Cej/9RNljASF0mfHcMZpW3DmTgpXy/eJnbH+w9jB3iQOHKuXpl9qb
BK72LuG31S9S+3uitqMoE0ZMT48F1+lmCBa6VuTKCwFT0V+uVeYajA5P5TMix00I
zY21kLSKQoxgSGPFdpkHC8XuCAtgDt4d9t74T1BHwKihdu6IJwDUH6EAGSWGGlpw
V99BaJc=
-----END CERTIFICATE-----
Generated at Mon Jan 1 21:28:34 2024 by rpki-client on console-fra.rpki-client.org