Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/NvG8slHWelJB5RBRr-GAStUqu3I.roa
File: NvG8slHWelJB5RBRr-GAStUqu3I.roa (raw, json)
Hash identifier: jod2lCJN25rkBf+zgEjrk1+mxje+wvh6Xjzy/ELi5gg=
Subject key identifier: 36:F1:BC:B2:51:D6:7A:52:41:E5:10:51:AF:E1:80:4A:D5:2A:BB:72
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F8C0C8FB1FEDFB5FF22D5F4921D39BF77
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/NvG8slHWelJB5RBRr-GAStUqu3I.roa
Signing time: Sat 18 May 2024 14:13:04 +0000
ROA not before: Sat 18 May 2024 14:13:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 18 May 2024 15:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:8c:0c:8f:b1:fe:df:b5:ff:22:d5:f4:92:1d:39:bf:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 18 14:13:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=36f1bcb251d67a5241e51051afe1804ad52abb72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:5d:3a:04:55:3f:b0:53:01:4b:7c:85:b0:90:
01:d2:30:7c:39:61:d2:94:f6:ab:3a:d4:98:c6:30:
3b:bf:39:1d:8c:16:6a:d4:b5:bd:0e:7f:43:8e:d7:
0f:dc:87:26:7c:b9:37:8f:32:52:b1:b8:91:13:7f:
b2:67:34:22:ce:0e:67:01:60:4a:a4:f4:e8:af:80:
b0:7c:de:c7:2e:f7:13:3b:a6:a6:e0:6a:89:59:35:
03:71:e0:e5:e8:d5:e3:25:c4:35:ad:2b:d1:3d:fd:
d5:f1:d4:cc:f8:bf:c9:7e:b8:56:d5:d2:2b:44:4d:
7c:77:19:bb:1c:89:e4:a3:37:eb:c5:30:d2:b1:77:
88:7b:71:70:30:ee:9e:e6:00:7c:9d:ed:1c:58:75:
20:97:ce:68:79:47:b2:7a:1b:cb:79:29:32:2d:ae:
66:67:0d:42:9e:49:fa:e1:c7:d0:e6:07:ec:9b:98:
20:d1:07:ac:2a:1e:49:44:a4:4f:33:17:90:ba:79:
25:26:db:14:f7:5d:67:ae:63:da:a4:15:69:18:c0:
1c:60:1a:a8:d8:0f:5d:95:65:d1:02:94:e1:cc:33:
10:c7:08:48:9d:f3:c1:5a:f5:bc:a2:dd:d0:be:cf:
9e:60:8f:86:a4:9d:2e:03:2b:fa:0d:78:95:4a:c1:
12:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:F1:BC:B2:51:D6:7A:52:41:E5:10:51:AF:E1:80:4A:D5:2A:BB:72
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/NvG8slHWelJB5RBRr-GAStUqu3I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
47:7c:b3:0b:ba:30:32:30:12:0b:8e:3b:5d:aa:d7:58:b8:f8:
92:d9:88:31:4f:34:a5:28:78:34:9e:b0:6f:d8:fc:81:dc:4c:
bc:ee:b5:46:5d:12:63:7f:11:81:83:b3:57:44:2f:b4:95:86:
02:1a:7f:7b:82:8a:08:65:e3:c6:82:fd:0a:a6:4d:d1:eb:f0:
0f:41:7f:c0:b0:27:70:17:33:69:87:3c:b2:f7:2c:19:8c:6a:
74:3c:79:41:02:d2:e7:41:63:55:28:80:af:4d:93:58:98:16:
38:78:b1:51:22:81:24:2b:7e:67:89:15:cd:8b:f6:f9:57:f5:
5e:93:8b:21:e5:94:0b:a6:ff:4c:91:b2:5c:b2:55:8e:ca:44:
8f:12:08:11:5a:09:47:21:1f:93:b5:33:79:3b:61:1a:87:1d:
3a:9f:85:74:60:ca:62:03:25:1c:b0:fd:20:38:11:fe:c6:7d:
b5:70:15:95:0b:39:70:f6:5b:5d:27:37:69:d3:93:ff:e3:4c:
6e:b2:44:68:a0:10:35:c6:59:e6:9f:8e:33:ab:d6:28:10:1c:
36:7f:90:39:75:e4:23:4e:25:42:72:ec:04:32:d2:50:d4:32:
84:27:66:6b:df:cc:fd:97:a7:ed:01:78:0d:68:9e:69:7a:c4:
ac:fe:94:e0
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY+MDI+x/t+1/yLV9JIdOb93MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyYmVjNDFiZDJmM2IxNzlkZTA5NTE0MzA2NTMwYmQzZmJh
YzcwN2IwHhcNMjQwNTE4MTQxMzA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNmYxYmNiMjUxZDY3YTUyNDFlNTEwNTFhZmUxODA0YWQ1MmFiYjcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAql06BFU/sFMBS3yFsJAB0jB8OWHS
lParOtSYxjA7vzkdjBZq1LW9Dn9DjtcP3IcmfLk3jzJSsbiRE3+yZzQizg5nAWBK
pPTor4CwfN7HLvcTO6am4GqJWTUDceDl6NXjJcQ1rSvRPf3V8dTM+L/JfrhW1dIr
RE18dxm7HInkozfrxTDSsXeIe3FwMO6e5gB8ne0cWHUgl85oeUeyehvLeSkyLa5m
Zw1Cnkn64cfQ5gfsm5gg0QesKh5JRKRPMxeQunklJtsU911nrmPapBVpGMAcYBqo
2A9dlWXRApThzDMQxwhInfPBWvW8ot3Qvs+eYI+GpJ0uAyv6DXiVSsESJQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFDbxvLJR1npSQeUQUa/hgErVKrtyMB8GA1UdIwQY
MBaAFLK+xBvS87F53glRQwZTC9P7rHB7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3I3RUc5THpzWG5lQ1ZGREJsTUwwX3VzY0hzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS9kODkwMjUtZDZmMy00ODkxLTlkODYt
ZDEyZjAzOWRiMmM5LzEvTnZHOHNsSFdlbEpCNVJCUnItR0FTdFVxdTNJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS9kODkwMjUtZDZmMy00ODkxLTlkODYtZDEyZjAzOWRiMmM5
LzEvc3I3RUc5THpzWG5lQ1ZGREJsTUwwX3VzY0hzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAEd8swu6MDIwEguOO12q
11i4+JLZiDFPNKUoeDSesG/Y/IHcTLzutUZdEmN/EYGDs1dEL7SVhgIaf3uCighl
48aC/QqmTdHr8A9Bf8CwJ3AXM2mHPLL3LBmManQ8eUEC0udBY1UogK9Nk1iYFjh4
sVEigSQrfmeJFc2L9vlX9V6TiyHllAum/0yRslyyVY7KRI8SCBFaCUchH5O1M3k7
YRqHHTqfhXRgymIDJRyw/SA4Ef7GfbVwFZULOXD2W10nN2nTk//jTG6yRGigEDXG
WeafjjOr1igQHDZ/kDl15CNOJUJy7AQy0lDUMoQnZmvfzP2Xp+0BeA1onml6xKz+
lOA=
-----END CERTIFICATE-----
Generated at Sun May 19 11:19:50 2024 by rpki-client on console.sobornost.net