Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/1ccf25-20de-4b2e-a0e1-de4acf447fae/1/NISXh9Kh36NLM0ilsgWr1_gqaOQ.roa
File: NISXh9Kh36NLM0ilsgWr1_gqaOQ.roa (raw, json)
Hash identifier: Ewz+tSgrpsQyMnPo/ishwKcNMzttIc/bz45iS+20D+k=
Subject key identifier: 34:84:97:87:D2:A1:DF:A3:4B:33:48:A5:B2:05:AB:D7:F8:2A:68:E4
Certificate issuer: /CN=7979863cea82aeb8e9df384b39aa5176f4bcfa61
Certificate serial: 018571FA09AA4777B773AD5CDE79E6020A68
Authority key identifier: 79:79:86:3C:EA:82:AE:B8:E9:DF:38:4B:39:AA:51:76:F4:BC:FA:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eXmGPOqCrrjp3zhLOapRdvS8-mE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/1ccf25-20de-4b2e-a0e1-de4acf447fae/1/NISXh9Kh36NLM0ilsgWr1_gqaOQ.roa
Signing time: Mon 02 Jan 2023 10:14:49 +0000
ROA not before: Mon 02 Jan 2023 10:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204755
IP address blocks: 185.241.176.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:31:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:fa:09:aa:47:77:b7:73:ad:5c:de:79:e6:02:0a:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7979863cea82aeb8e9df384b39aa5176f4bcfa61
Validity
Not Before: Jan 2 10:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=34849787d2a1dfa34b3348a5b205abd7f82a68e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:0d:53:6f:01:64:b6:01:1a:38:71:2b:7c:63:
62:c2:d7:e9:07:0e:38:5b:9d:82:f3:2c:3d:ee:4f:
10:8d:d7:5c:e0:ba:d7:da:89:b7:a6:77:fa:d7:a7:
d5:56:e6:ab:6c:fc:07:fb:86:88:41:85:97:b3:a8:
98:7a:d3:ea:a8:ba:71:9d:d1:ac:48:29:63:cc:24:
c9:26:7f:db:40:a7:d1:be:a1:d4:63:f4:e9:d6:62:
dc:9f:7b:2f:32:c3:c4:aa:01:a3:e3:d0:c0:6b:4b:
cd:8d:b0:7b:9b:a4:c9:c8:75:dd:22:f4:31:d8:8e:
93:69:16:26:3a:97:e5:4f:a8:52:f2:9e:e7:90:aa:
97:e4:7b:48:a4:0a:cd:fc:cd:ba:ca:d7:9a:24:52:
de:2e:4b:bb:b6:9e:3e:0f:19:d3:a8:e6:fe:78:83:
4f:de:62:1e:67:98:3f:e9:ab:49:3a:76:68:09:df:
45:1a:bd:84:6a:4d:1d:01:23:d4:8f:18:1d:ac:b8:
4f:aa:11:d5:d5:ec:72:55:af:2e:1b:9f:fc:87:9a:
2c:9f:b2:54:86:7d:cc:82:32:3c:5f:f8:0e:92:ea:
ca:e0:9f:60:7d:94:b8:ed:94:10:0e:4b:5b:8d:d6:
d0:07:e3:43:f7:26:ee:de:d3:e1:77:94:51:be:95:
0f:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:84:97:87:D2:A1:DF:A3:4B:33:48:A5:B2:05:AB:D7:F8:2A:68:E4
X509v3 Authority Key Identifier:
keyid:79:79:86:3C:EA:82:AE:B8:E9:DF:38:4B:39:AA:51:76:F4:BC:FA:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eXmGPOqCrrjp3zhLOapRdvS8-mE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/1ccf25-20de-4b2e-a0e1-de4acf447fae/1/NISXh9Kh36NLM0ilsgWr1_gqaOQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/1ccf25-20de-4b2e-a0e1-de4acf447fae/1/eXmGPOqCrrjp3zhLOapRdvS8-mE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.241.176.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:eb:61:4c:06:4b:ec:47:02:e5:6b:fe:eb:c4:4c:d4:36:e3:
83:c8:61:4d:dd:ac:96:bc:ea:e2:2d:4d:7f:28:67:e3:44:ab:
41:c1:83:fa:31:bb:c7:eb:59:7b:66:ab:71:fd:19:a6:aa:a4:
b7:06:1f:76:82:78:85:1e:59:68:7c:fb:b2:a1:81:4f:af:d7:
42:2d:b9:0c:20:7c:86:88:8a:e4:34:40:d5:df:09:35:79:d9:
e4:32:56:e1:8b:30:6f:3f:3b:47:25:26:c4:24:3d:11:f8:c7:
b4:e2:2e:03:16:bd:e2:c5:af:50:59:c4:5b:42:f1:79:59:da:
16:68:9e:33:57:72:f4:70:45:09:21:30:2b:74:5b:85:c4:3f:
3d:67:8b:6d:ca:3b:ed:3d:3c:b0:08:83:88:fd:5e:7f:6e:97:
b6:bc:42:4b:bd:07:de:a3:a6:db:79:ac:6f:80:ab:24:98:71:
f4:51:37:c5:18:a6:6b:8f:fc:21:5b:82:d4:10:07:e6:80:5a:
b4:03:be:b5:5f:4d:df:e4:fa:a6:a0:e7:ba:2d:8a:a9:08:fb:
e6:54:43:e8:0e:1b:7a:48:18:99:98:84:a1:2d:6a:63:75:6b:
49:3e:bc:87:84:4b:f8:e0:42:f9:3c:b6:5e:a7:07:69:bb:8a:
df:c8:24:27
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVx+gmqR3e3c61c3nnmAgpoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc5Nzk4NjNjZWE4MmFlYjhlOWRmMzg0YjM5YWE1MTc2ZjRi
Y2ZhNjEwHhcNMjMwMTAyMTAxNDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNDg0OTc4N2QyYTFkZmEzNGIzMzQ4YTViMjA1YWJkN2Y4MmE2OGU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtg1TbwFktgEaOHErfGNiwtfpBw44
W52C8yw97k8Qjddc4LrX2om3pnf616fVVuarbPwH+4aIQYWXs6iYetPqqLpxndGs
SCljzCTJJn/bQKfRvqHUY/Tp1mLcn3svMsPEqgGj49DAa0vNjbB7m6TJyHXdIvQx
2I6TaRYmOpflT6hS8p7nkKqX5HtIpArN/M26yteaJFLeLku7tp4+DxnTqOb+eINP
3mIeZ5g/6atJOnZoCd9FGr2Eak0dASPUjxgdrLhPqhHV1exyVa8uG5/8h5osn7JU
hn3MgjI8X/gOkurK4J9gfZS47ZQQDktbjdbQB+ND9ybu3tPhd5RRvpUPOQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDSEl4fSod+jSzNIpbIFq9f4KmjkMB8GA1UdIwQY
MBaAFHl5hjzqgq646d84SzmqUXb0vPphMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZVhtR1BPcUNycmpwM3poTE9hcFJkdlM4LW1FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC8xY2NmMjUtMjBkZS00YjJlLWEwZTEt
ZGU0YWNmNDQ3ZmFlLzEvTklTWGg5S2gzNk5MTTBpbHNnV3IxX2dxYU9RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC8xY2NmMjUtMjBkZS00YjJlLWEwZTEtZGU0YWNmNDQ3ZmFl
LzEvZVhtR1BPcUNycmpwM3poTE9hcFJkdlM4LW1FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAufGwMA0G
CSqGSIb3DQEBCwUAA4IBAQCg62FMBkvsRwLla/7rxEzUNuODyGFN3ayWvOriLU1/
KGfjRKtBwYP6MbvH61l7Zqtx/RmmqqS3Bh92gniFHllofPuyoYFPr9dCLbkMIHyG
iIrkNEDV3wk1ednkMlbhizBvPztHJSbEJD0R+Me04i4DFr3ixa9QWcRbQvF5WdoW
aJ4zV3L0cEUJITArdFuFxD89Z4ttyjvtPTywCIOI/V5/bpe2vEJLvQfeo6bbeaxv
gKskmHH0UTfFGKZrj/whW4LUEAfmgFq0A761X03f5PqmoOe6LYqpCPvmVEPoDht6
SBiZmIShLWpjdWtJPryHhEv44EL5PLZepwdpu4rfyCQn
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:19 2024 by rpki-client on console-ams.rpki-client.org