Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/f562a4-2f04-46dd-b1c1-356cdebeb84f/1/nGmelSTgW2eK32kps0gVckrlXrQ.roa
File: nGmelSTgW2eK32kps0gVckrlXrQ.roa (raw, json)
Hash identifier: OzKOZA9tjaxd6VxyvIfYmvWmq8ch8asUJlfeTGvwBGM=
Subject key identifier: 9C:69:9E:95:24:E0:5B:67:8A:DF:69:29:B3:48:15:72:4A:E5:5E:B4
Certificate issuer: /CN=8966861be57d36d5f6d9d9f8ebf62817616a21f5
Certificate serial: 018570950861C632FFFF282523094E7EAFE5
Authority key identifier: 89:66:86:1B:E5:7D:36:D5:F6:D9:D9:F8:EB:F6:28:17:61:6A:21:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iWaGG-V9NtX22dn46_YoF2FqIfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/f562a4-2f04-46dd-b1c1-356cdebeb84f/1/nGmelSTgW2eK32kps0gVckrlXrQ.roa
Signing time: Mon 02 Jan 2023 03:44:53 +0000
ROA not before: Mon 02 Jan 2023 03:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35044
IP address blocks: 193.189.108.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:08:61:c6:32:ff:ff:28:25:23:09:4e:7e:af:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8966861be57d36d5f6d9d9f8ebf62817616a21f5
Validity
Not Before: Jan 2 03:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9c699e9524e05b678adf6929b34815724ae55eb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a8:af:6f:be:16:f4:92:34:0e:d7:25:5d:56:
eb:a9:15:a0:a6:7c:0b:91:de:85:55:82:19:d2:a7:
8a:ce:93:ca:61:6c:7b:cc:2c:e6:09:a3:61:ea:b0:
f5:b7:e2:1a:4c:55:68:ab:6b:de:6a:67:2f:2b:c5:
03:ba:9a:71:b5:37:d4:bb:7d:bd:7b:13:7d:b3:ee:
f8:19:71:33:6d:ed:ee:05:30:25:9c:dd:51:9a:59:
ca:5b:26:37:92:ff:72:eb:16:35:e4:db:0a:b8:8c:
0b:c2:85:e7:d8:02:4d:79:b1:fc:df:8a:63:f0:4e:
99:7a:c7:45:07:55:0f:0d:69:fa:2b:ee:32:c9:ff:
54:92:9a:96:2d:a5:d7:4a:30:f2:ad:ea:88:6f:3c:
3f:d7:59:a1:3d:b3:7b:68:a1:8d:9d:69:19:a2:e1:
b8:1b:50:59:28:a6:d0:17:3f:83:95:fb:36:43:99:
75:26:0e:ec:1c:53:32:20:10:65:bf:c9:5e:54:50:
64:18:9e:79:5b:52:93:86:9a:b6:f1:05:71:0a:b7:
5d:e3:8f:ab:90:22:23:b9:12:35:52:78:4b:03:84:
0f:fd:e9:87:a3:44:3e:b4:f4:99:48:bd:58:84:cc:
54:4b:80:93:83:a9:3a:71:48:0b:9e:3f:4c:5d:73:
8b:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:69:9E:95:24:E0:5B:67:8A:DF:69:29:B3:48:15:72:4A:E5:5E:B4
X509v3 Authority Key Identifier:
keyid:89:66:86:1B:E5:7D:36:D5:F6:D9:D9:F8:EB:F6:28:17:61:6A:21:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iWaGG-V9NtX22dn46_YoF2FqIfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/f562a4-2f04-46dd-b1c1-356cdebeb84f/1/nGmelSTgW2eK32kps0gVckrlXrQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/f562a4-2f04-46dd-b1c1-356cdebeb84f/1/iWaGG-V9NtX22dn46_YoF2FqIfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.189.108.0/23
Signature Algorithm: sha256WithRSAEncryption
2c:4a:0f:10:06:46:99:6f:35:1b:2f:47:d8:3c:8c:82:d9:5d:
39:8e:e5:e1:d4:42:42:28:9b:51:d4:d4:42:ff:4f:b6:e5:d7:
bc:72:d5:e2:63:4b:47:ed:51:36:f2:4f:d7:6d:ee:76:02:a8:
f0:de:8a:3d:6d:6a:a5:41:5c:0c:bd:f3:b2:b2:34:f6:e4:6a:
9e:6a:36:a6:58:6e:cb:51:a3:15:3b:57:ce:3f:72:bb:69:00:
a0:3a:01:53:7e:fd:9b:9e:f9:a5:df:ac:c9:18:bb:87:24:1e:
65:86:6c:9b:75:d7:8e:3e:02:5c:87:9b:f0:f8:8a:ec:39:1a:
de:5d:5e:8e:96:78:e8:d3:50:29:bd:cd:c5:4b:04:9d:b2:e8:
44:e0:f2:2c:7f:35:3b:4e:a8:fc:16:8b:71:be:e4:ae:a1:dc:
36:54:e6:50:fb:13:c5:78:a8:38:8b:8c:62:99:fe:6a:8b:24:
f9:ff:bd:d7:46:78:1e:c0:ef:36:e8:5b:3e:4b:53:10:e6:2f:
a8:9e:de:a3:12:3a:b8:58:9a:cf:ba:70:5b:9b:8e:64:05:3e:
d0:8a:3e:48:58:20:83:13:2e:3f:9e:81:b6:87:f8:43:76:39:
30:50:d4:43:fc:5e:5a:ee:4a:a3:ea:20:26:9d:8b:c6:8e:f2:
68:c1:0b:93
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwlQhhxjL//yglIwlOfq/lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5NjY4NjFiZTU3ZDM2ZDVmNmQ5ZDlmOGViZjYyODE3NjE2
YTIxZjUwHhcNMjMwMTAyMDM0NDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YzY5OWU5NTI0ZTA1YjY3OGFkZjY5MjliMzQ4MTU3MjRhZTU1ZWI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp6ivb74W9JI0DtclXVbrqRWgpnwL
kd6FVYIZ0qeKzpPKYWx7zCzmCaNh6rD1t+IaTFVoq2veamcvK8UDuppxtTfUu329
exN9s+74GXEzbe3uBTAlnN1RmlnKWyY3kv9y6xY15NsKuIwLwoXn2AJNebH834pj
8E6ZesdFB1UPDWn6K+4yyf9UkpqWLaXXSjDyreqIbzw/11mhPbN7aKGNnWkZouG4
G1BZKKbQFz+Dlfs2Q5l1Jg7sHFMyIBBlv8leVFBkGJ55W1KThpq28QVxCrdd44+r
kCIjuRI1UnhLA4QP/emHo0Q+tPSZSL1YhMxUS4CTg6k6cUgLnj9MXXOLUQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJxpnpUk4Ftnit9pKbNIFXJK5V60MB8GA1UdIwQY
MBaAFIlmhhvlfTbV9tnZ+Ov2KBdhaiH1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVdhR0ctVjlOdFgyMmRuNDZfWW9GMkZxSWZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi9mNTYyYTQtMmYwNC00NmRkLWIxYzEt
MzU2Y2RlYmViODRmLzEvbkdtZWxTVGdXMmVLMzJrcHMwZ1Zja3JsWHJRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi9mNTYyYTQtMmYwNC00NmRkLWIxYzEtMzU2Y2RlYmViODRm
LzEvaVdhR0ctVjlOdFgyMmRuNDZfWW9GMkZxSWZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwb1sMA0G
CSqGSIb3DQEBCwUAA4IBAQAsSg8QBkaZbzUbL0fYPIyC2V05juXh1EJCKJtR1NRC
/0+25de8ctXiY0tH7VE28k/Xbe52Aqjw3oo9bWqlQVwMvfOysjT25GqeajamWG7L
UaMVO1fOP3K7aQCgOgFTfv2bnvml36zJGLuHJB5lhmybddeOPgJch5vw+IrsORre
XV6Olnjo01Apvc3FSwSdsuhE4PIsfzU7Tqj8FotxvuSuodw2VOZQ+xPFeKg4i4xi
mf5qiyT5/73XRngewO826Fs+S1MQ5i+ont6jEjq4WJrPunBbm45kBT7Qij5IWCCD
Ey4/noG2h/hDdjkwUNRD/F5a7kqj6iAmnYvGjvJowQuT
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:18 2024 by rpki-client on console-fra.rpki-client.org