Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/nikgh5ucy4zK47X5mUY95Nfyhbg.roa
File: nikgh5ucy4zK47X5mUY95Nfyhbg.roa (raw, json)
Hash identifier: kjT1afZ0mivPORkoy/hjYImavIvXZPHo+pnRm/bJA6c=
Subject key identifier: 9E:29:20:87:9B:9C:CB:8C:CA:E3:B5:F9:99:46:3D:E4:D7:F2:85:B8
Certificate issuer: /CN=ad243dcff0cb38211f7fe7db3f913169b44cf456
Certificate serial: 018F2C07D8862198BC94CACE77445CB83EAF
Authority key identifier: AD:24:3D:CF:F0:CB:38:21:1F:7F:E7:DB:3F:91:31:69:B4:4C:F4:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rSQ9z_DLOCEff-fbP5ExabRM9FY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/nikgh5ucy4zK47X5mUY95Nfyhbg.roa
Signing time: Mon 29 Apr 2024 22:44:22 +0000
ROA not before: Mon 29 Apr 2024 22:44:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41483
IP address blocks: 89.254.64.0/18 maxlen: 18
Validation: Failed, certificate revoked on Tue 30 Apr 2024 00:47:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:2c:07:d8:86:21:98:bc:94:ca:ce:77:44:5c:b8:3e:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad243dcff0cb38211f7fe7db3f913169b44cf456
Validity
Not Before: Apr 29 22:44:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9e2920879b9ccb8ccae3b5f999463de4d7f285b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:9f:85:b1:a1:2e:b3:5a:e2:65:f8:66:b6:6c:
a5:27:3f:01:d0:51:50:ea:5b:4a:41:39:6d:21:92:
a9:d6:60:6d:16:24:4b:90:11:6a:d5:3a:04:7e:86:
9e:4b:bc:76:72:05:a7:c8:d0:ad:81:14:9e:e2:b7:
c1:e9:1a:fa:a6:20:af:4c:12:7a:ed:5a:e9:3d:c1:
c6:29:1b:51:fb:4c:0f:f1:a1:9b:02:f9:93:1e:37:
72:f6:bf:fa:22:b9:0d:d3:ef:b4:1a:cb:5b:f0:5e:
30:04:3b:03:73:75:db:3c:b0:8c:92:73:1c:44:0f:
b5:e6:7a:c9:bc:b3:02:30:fa:79:30:f3:e1:b1:96:
ee:79:70:64:1c:30:e7:7e:2f:16:7f:a2:84:1d:5c:
33:d9:3a:52:50:87:1e:32:9f:f6:76:eb:d7:7d:1b:
f2:6b:e0:04:52:fb:3f:dc:99:fb:ce:b9:e6:21:95:
c4:13:48:bb:d6:a1:c4:78:fc:97:85:c7:79:35:8e:
8c:d6:4f:e2:18:96:db:7c:36:37:a2:55:bd:fa:5e:
bb:ce:cf:1a:c9:42:a5:52:04:72:28:2c:0d:0d:4d:
a8:32:f0:1d:86:6e:8d:0c:f0:1a:2f:df:83:92:31:
b9:7c:c9:ae:f9:48:94:ce:fc:dd:60:8f:5c:e7:37:
de:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:29:20:87:9B:9C:CB:8C:CA:E3:B5:F9:99:46:3D:E4:D7:F2:85:B8
X509v3 Authority Key Identifier:
keyid:AD:24:3D:CF:F0:CB:38:21:1F:7F:E7:DB:3F:91:31:69:B4:4C:F4:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rSQ9z_DLOCEff-fbP5ExabRM9FY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/nikgh5ucy4zK47X5mUY95Nfyhbg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/rSQ9z_DLOCEff-fbP5ExabRM9FY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.254.64.0/18
Signature Algorithm: sha256WithRSAEncryption
b9:b0:1f:de:60:b6:e0:44:00:25:4c:f2:76:62:ff:73:e9:1e:
8b:c2:6a:e7:c6:85:d1:22:e9:38:c3:2e:da:1f:25:92:8f:ff:
4a:b4:86:65:61:c9:12:2b:e4:c9:d5:52:b8:74:2c:7a:04:cf:
3d:b3:8a:9a:fe:ba:01:a7:a7:33:84:aa:13:90:4c:8a:91:9b:
5c:8b:d4:c8:ca:8a:b8:ae:6e:f2:75:9b:26:5f:e1:f5:0d:19:
d0:00:d5:bb:4a:ee:e4:48:66:e5:cf:ef:be:42:ab:bb:b5:15:
8b:40:2c:d6:82:e7:59:f9:40:a1:02:7e:ab:9c:5c:fd:a1:55:
40:38:df:b7:96:0f:4a:05:96:78:5f:f4:13:71:56:1c:c1:0f:
2a:5e:07:bc:74:55:42:04:e5:bd:05:fd:af:39:39:63:31:0c:
57:de:8d:ac:2a:21:8a:14:07:41:ba:1e:f1:e7:cb:0b:3e:2d:
f0:44:ec:e1:4a:54:db:4e:3e:52:18:31:67:11:d8:8a:13:19:
31:6d:96:c3:70:93:e3:b1:3c:e7:ed:35:2b:a5:b6:e8:09:51:
77:52:e0:8b:b4:72:01:01:1a:a2:6a:ab:71:21:5f:41:a9:4d:
7f:17:8f:e1:f8:c5:84:3f:bf:b3:ec:26:6e:16:d1:54:07:38:
49:14:ca:1c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY8sB9iGIZi8lMrOd0RcuD6vMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkMjQzZGNmZjBjYjM4MjExZjdmZTdkYjNmOTEzMTY5YjQ0
Y2Y0NTYwHhcNMjQwNDI5MjI0NDIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZTI5MjA4NzliOWNjYjhjY2FlM2I1Zjk5OTQ2M2RlNGQ3ZjI4NWI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2p+FsaEus1riZfhmtmylJz8B0FFQ
6ltKQTltIZKp1mBtFiRLkBFq1ToEfoaeS7x2cgWnyNCtgRSe4rfB6Rr6piCvTBJ6
7VrpPcHGKRtR+0wP8aGbAvmTHjdy9r/6IrkN0++0Gstb8F4wBDsDc3XbPLCMknMc
RA+15nrJvLMCMPp5MPPhsZbueXBkHDDnfi8Wf6KEHVwz2TpSUIceMp/2duvXfRvy
a+AEUvs/3Jn7zrnmIZXEE0i71qHEePyXhcd5NY6M1k/iGJbbfDY3olW9+l67zs8a
yUKlUgRyKCwNDU2oMvAdhm6NDPAaL9+DkjG5fMmu+UiUzvzdYI9c5zfeIwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJ4pIIebnMuMyuO1+ZlGPeTX8oW4MB8GA1UdIwQY
MBaAFK0kPc/wyzghH3/n2z+RMWm0TPRWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvclNROXpfRExPQ0VmZi1mYlA1RXhhYlJNOUZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9hNWQyN2ItMjZjMC00ZWIzLTg5YmMt
YjlmMjk4YTc5OGU0LzEvbmlrZ2g1dWN5NHpLNDdYNW1VWTk1TmZ5aGJnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy9hNWQyN2ItMjZjMC00ZWIzLTg5YmMtYjlmMjk4YTc5OGU0
LzEvclNROXpfRExPQ0VmZi1mYlA1RXhhYlJNOUZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGWf5AMA0G
CSqGSIb3DQEBCwUAA4IBAQC5sB/eYLbgRAAlTPJ2Yv9z6R6LwmrnxoXRIuk4wy7a
HyWSj/9KtIZlYckSK+TJ1VK4dCx6BM89s4qa/roBp6czhKoTkEyKkZtci9TIyoq4
rm7ydZsmX+H1DRnQANW7Su7kSGblz+++Qqu7tRWLQCzWgudZ+UChAn6rnFz9oVVA
ON+3lg9KBZZ4X/QTcVYcwQ8qXge8dFVCBOW9Bf2vOTljMQxX3o2sKiGKFAdBuh7x
58sLPi3wROzhSlTbTj5SGDFnEdiKExkxbZbDcJPjsTzn7TUrpbboCVF3UuCLtHIB
ARqiaqtxIV9BqU1/F4/h+MWEP7+z7CZuFtFUBzhJFMoc
-----END CERTIFICATE-----
Generated at Tue Apr 30 04:46:16 2024 by rpki-client on console.sobornost.net