Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/13a735-3b1c-4d9c-8cfa-a8ca8e4c7e77/1/NCutcHHSFPjINmZvuo-5WE6MGsk.roa
File: NCutcHHSFPjINmZvuo-5WE6MGsk.roa (raw, json)
Hash identifier: UAPVk0Z1O/A9ELB0XXnRtK8Yr+ZWhwfJwYBofExJ20A=
Subject key identifier: 34:2B:AD:70:71:D2:14:F8:C8:36:66:6F:BA:8F:B9:58:4E:8C:1A:C9
Certificate issuer: /CN=86ee201c65d655ee9cfe251f951ea91bba154567
Certificate serial: 018854467B85A1173838DCBF0B9B6429876B
Authority key identifier: 86:EE:20:1C:65:D6:55:EE:9C:FE:25:1F:95:1E:A9:1B:BA:15:45:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hu4gHGXWVe6c_iUflR6pG7oVRWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/13a735-3b1c-4d9c-8cfa-a8ca8e4c7e77/1/NCutcHHSFPjINmZvuo-5WE6MGsk.roa
Signing time: Thu 25 May 2023 18:58:05 +0000
ROA not before: Thu 25 May 2023 18:58:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49544
IP address blocks: 185.201.17.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 25 May 2023 21:06:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:54:46:7b:85:a1:17:38:38:dc:bf:0b:9b:64:29:87:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86ee201c65d655ee9cfe251f951ea91bba154567
Validity
Not Before: May 25 18:58:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=342bad7071d214f8c836666fba8fb9584e8c1ac9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f0:5b:df:86:0e:91:02:0b:61:e3:c2:92:70:
f1:36:2d:1b:3d:5a:5e:18:79:b5:06:7b:07:90:b3:
de:db:84:8b:3c:f5:76:aa:a5:27:e5:01:48:98:33:
e8:82:60:9d:85:ba:e4:2c:7f:27:98:68:13:6f:7f:
3b:3d:b7:fe:49:3f:55:46:53:d4:32:cc:24:ed:7d:
38:a2:57:69:00:18:b4:9c:0b:a0:b5:d2:de:06:91:
f5:dc:a4:23:cc:dd:a4:0d:81:75:ca:f2:3e:7b:5f:
4a:ac:e9:ce:5e:3f:8d:c1:c3:05:0f:a0:b1:a0:5f:
9c:aa:8e:48:da:b6:33:06:ca:05:c1:7f:0a:f7:70:
27:5f:73:41:21:af:1c:91:27:a1:81:6b:08:68:52:
55:02:07:63:e7:1b:74:35:88:80:38:e0:2e:0d:cc:
fb:09:a8:cc:06:05:13:40:36:40:ee:c1:a1:c7:e7:
e3:c2:8e:1d:8a:99:e7:22:fd:ff:78:b0:c1:83:e7:
8a:67:ec:4d:78:07:a8:19:2f:97:7c:5b:19:65:ad:
1b:15:ad:ec:de:ab:3f:55:83:f4:92:7d:12:d9:da:
c9:87:f2:6d:47:6d:f6:c0:3d:12:41:4e:5e:3a:7a:
a4:b7:fa:05:f0:49:72:77:42:e4:9f:62:52:d8:f0:
09:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:2B:AD:70:71:D2:14:F8:C8:36:66:6F:BA:8F:B9:58:4E:8C:1A:C9
X509v3 Authority Key Identifier:
keyid:86:EE:20:1C:65:D6:55:EE:9C:FE:25:1F:95:1E:A9:1B:BA:15:45:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hu4gHGXWVe6c_iUflR6pG7oVRWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/13a735-3b1c-4d9c-8cfa-a8ca8e4c7e77/1/NCutcHHSFPjINmZvuo-5WE6MGsk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/13a735-3b1c-4d9c-8cfa-a8ca8e4c7e77/1/hu4gHGXWVe6c_iUflR6pG7oVRWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.201.17.0/24
Signature Algorithm: sha256WithRSAEncryption
56:43:69:a5:cc:f3:9b:03:69:74:31:f3:fb:5b:8d:bd:8c:17:
13:65:9c:b1:0e:28:9d:67:07:0f:0a:7c:1e:82:c9:2e:7d:e6:
f7:ae:70:e0:72:e5:dd:88:a0:63:a4:cf:fc:c3:9f:47:6c:f6:
05:00:c4:82:aa:cc:54:29:d3:71:15:69:b7:a7:06:11:13:db:
b3:58:5d:d6:1b:20:44:cb:68:59:78:c8:67:72:32:f5:00:e4:
32:a6:23:ea:ed:a3:3c:a5:b9:87:cc:db:f9:99:66:6b:c3:52:
44:8b:c5:c2:d2:9c:d8:ae:a5:51:58:18:44:eb:4a:70:69:4c:
34:5e:d8:58:6a:db:3b:ef:8a:cd:b4:26:00:2a:14:52:e4:62:
e5:02:c0:9c:1e:13:83:1f:e3:6c:81:98:5c:97:32:10:e5:2c:
bc:1a:80:b5:0c:76:32:3e:58:dc:d3:f9:9d:ce:c0:f5:e3:99:
11:d1:d0:9b:9a:ad:4f:e6:bd:57:1f:e7:b2:b2:7a:91:47:16:
d3:d1:14:1a:2e:80:95:f0:7f:83:54:62:5b:2e:7d:81:56:28:
7b:4c:b4:e0:4d:4a:51:c9:0d:26:a4:4b:81:2a:f0:50:48:7e:
57:ec:bc:94:5d:56:9d:52:f6:d6:46:97:08:da:e1:76:36:fb:
42:57:08:d6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYhURnuFoRc4ONy/C5tkKYdrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2ZWUyMDFjNjVkNjU1ZWU5Y2ZlMjUxZjk1MWVhOTFiYmEx
NTQ1NjcwHhcNMjMwNTI1MTg1ODA1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNDJiYWQ3MDcxZDIxNGY4YzgzNjY2NmZiYThmYjk1ODRlOGMxYWM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmvBb34YOkQILYePCknDxNi0bPVpe
GHm1BnsHkLPe24SLPPV2qqUn5QFImDPogmCdhbrkLH8nmGgTb387Pbf+ST9VRlPU
Mswk7X04oldpABi0nAugtdLeBpH13KQjzN2kDYF1yvI+e19KrOnOXj+NwcMFD6Cx
oF+cqo5I2rYzBsoFwX8K93AnX3NBIa8ckSehgWsIaFJVAgdj5xt0NYiAOOAuDcz7
CajMBgUTQDZA7sGhx+fjwo4dipnnIv3/eLDBg+eKZ+xNeAeoGS+XfFsZZa0bFa3s
3qs/VYP0kn0S2drJh/JtR232wD0SQU5eOnqkt/oF8Elyd0Lkn2JS2PAJUwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDQrrXBx0hT4yDZmb7qPuVhOjBrJMB8GA1UdIwQY
MBaAFIbuIBxl1lXunP4lH5UeqRu6FUVnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHU0Z0hHWFdWZTZjX2lVZmxSNnBHN29WUldjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS8xM2E3MzUtM2IxYy00ZDljLThjZmEt
YThjYThlNGM3ZTc3LzEvTkN1dGNISFNGUGpJTm1adnVvLTVXRTZNR3NrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOS8xM2E3MzUtM2IxYy00ZDljLThjZmEtYThjYThlNGM3ZTc3
LzEvaHU0Z0hHWFdWZTZjX2lVZmxSNnBHN29WUldjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuckRMA0G
CSqGSIb3DQEBCwUAA4IBAQBWQ2mlzPObA2l0MfP7W429jBcTZZyxDiidZwcPCnwe
gskufeb3rnDgcuXdiKBjpM/8w59HbPYFAMSCqsxUKdNxFWm3pwYRE9uzWF3WGyBE
y2hZeMhncjL1AOQypiPq7aM8pbmHzNv5mWZrw1JEi8XC0pzYrqVRWBhE60pwaUw0
XthYats774rNtCYAKhRS5GLlAsCcHhODH+NsgZhclzIQ5Sy8GoC1DHYyPljc0/md
zsD145kR0dCbmq1P5r1XH+eysnqRRxbT0RQaLoCV8H+DVGJbLn2BVih7TLTgTUpR
yQ0mpEuBKvBQSH5X7LyUXVadUvbWRpcI2uF2NvtCVwjW
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:32 2024 by rpki-client on console-ams.rpki-client.org