Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/742370-e10f-4541-aa6c-61afb66d1e8c/1/nGn59cg34WUNB8Ub9EC21BV2I4Q.roa
File: nGn59cg34WUNB8Ub9EC21BV2I4Q.roa (raw, json)
Hash identifier: 05ENn6TBFnnUplwrft+/mHOGpFS84y6gbFopw68bMUk=
Subject key identifier: 9C:69:F9:F5:C8:37:E1:65:0D:07:C5:1B:F4:40:B6:D4:15:76:23:84
Certificate issuer: /CN=19ee5f16fc144acb98977449faa0ab77de1bdcc9
Certificate serial: 018A7444FCC87CA876B8206A2D18C73594A6
Authority key identifier: 19:EE:5F:16:FC:14:4A:CB:98:97:74:49:FA:A0:AB:77:DE:1B:DC:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ge5fFvwUSsuYl3RJ-qCrd94b3Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/742370-e10f-4541-aa6c-61afb66d1e8c/1/nGn59cg34WUNB8Ub9EC21BV2I4Q.roa
Signing time: Fri 08 Sep 2023 10:09:52 +0000
ROA not before: Fri 08 Sep 2023 10:09:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57171
IP address blocks: 195.229.132.0/23 maxlen: 23
195.229.156.0/22 maxlen: 22
194.170.172.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:74:44:fc:c8:7c:a8:76:b8:20:6a:2d:18:c7:35:94:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19ee5f16fc144acb98977449faa0ab77de1bdcc9
Validity
Not Before: Sep 8 10:09:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9c69f9f5c837e1650d07c51bf440b6d415762384
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:6b:dd:72:4b:ac:28:af:23:af:43:85:42:08:
a0:7b:1c:48:40:b3:e0:7a:90:b0:ae:90:16:03:03:
71:f4:e7:ec:76:5b:57:f8:3a:4d:3e:bd:42:cd:fb:
53:47:34:fa:1f:f8:c6:b1:81:27:67:01:9d:a0:7c:
45:80:a8:ae:6a:58:86:83:01:20:80:47:89:e7:a6:
7d:ac:50:8e:69:8e:12:ba:60:ce:04:00:2d:be:3a:
cd:0e:a4:b8:66:01:51:30:cb:63:67:73:33:21:29:
90:d9:a2:86:14:6b:a9:09:3b:d8:65:44:25:ca:0b:
b9:08:55:ca:1e:bf:6b:dd:9a:81:e2:14:1b:82:b1:
ce:19:1e:f3:0f:60:2e:dd:02:0c:4a:75:29:ff:5c:
8e:99:66:60:38:89:e7:3a:0c:44:29:72:52:2d:c3:
2a:42:c6:00:06:c1:d9:10:6c:fc:41:05:ba:d6:6c:
1c:75:d1:0f:c1:49:da:9c:52:8b:da:fe:9b:70:85:
17:08:ce:c6:3e:89:35:64:57:f7:69:6d:d2:31:7b:
2b:4b:94:89:42:91:76:f5:82:8f:1e:4c:7b:bc:12:
4c:bc:01:3a:6b:21:b3:c7:44:10:d9:1b:7a:6c:0e:
0c:71:d9:5f:72:51:dd:fd:2a:c3:60:11:89:39:66:
88:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:69:F9:F5:C8:37:E1:65:0D:07:C5:1B:F4:40:B6:D4:15:76:23:84
X509v3 Authority Key Identifier:
keyid:19:EE:5F:16:FC:14:4A:CB:98:97:74:49:FA:A0:AB:77:DE:1B:DC:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ge5fFvwUSsuYl3RJ-qCrd94b3Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/742370-e10f-4541-aa6c-61afb66d1e8c/1/nGn59cg34WUNB8Ub9EC21BV2I4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/742370-e10f-4541-aa6c-61afb66d1e8c/1/Ge5fFvwUSsuYl3RJ-qCrd94b3Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.170.172.0/23
195.229.132.0/23
195.229.156.0/22
Signature Algorithm: sha256WithRSAEncryption
87:58:b5:99:94:0e:e3:24:c7:f1:08:a6:f7:12:f2:d1:d3:98:
41:42:41:4a:51:e8:ba:64:69:9d:54:3c:24:e8:d8:b5:35:a8:
4c:c3:f8:24:3c:e1:4f:27:48:24:9d:db:9e:e7:cb:a5:de:4b:
c0:b6:cc:bf:ae:54:22:b0:81:e8:39:28:6f:e0:95:8c:e3:60:
ce:46:6b:cc:31:3b:82:8a:72:52:7e:d5:84:72:ee:cb:6d:e9:
8f:c5:4e:ca:08:c5:1a:df:13:b6:fe:d7:5a:d6:67:7d:a3:a3:
32:db:63:b1:3b:a7:ba:7c:45:93:32:2a:f2:e6:27:3f:8f:e0:
8f:7f:07:01:4b:62:c8:4e:f3:d2:21:a9:a3:a7:a5:5f:d5:77:
e1:68:04:f7:52:ba:b3:a7:5b:5a:bc:6c:26:0c:fb:ae:11:14:
8e:17:be:16:d6:aa:78:40:bf:b1:a5:92:c8:37:0b:4a:1d:9b:
fc:3e:ec:6d:a4:b8:15:48:c2:2d:ce:7d:79:ea:1c:30:f5:02:
1e:c6:fd:76:71:96:7c:de:99:df:89:5b:9d:9a:0b:94:e4:d4:
75:ee:ec:10:b6:b2:25:8c:3e:be:1a:11:34:a8:ea:23:be:58:
da:e4:ef:ff:b5:b8:dd:9a:1e:71:fd:32:67:64:65:7c:b8:4d:
64:6c:cb:24
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYp0RPzIfKh2uCBqLRjHNZSmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE5ZWU1ZjE2ZmMxNDRhY2I5ODk3NzQ0OWZhYTBhYjc3ZGUx
YmRjYzkwHhcNMjMwOTA4MTAwOTUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YzY5ZjlmNWM4MzdlMTY1MGQwN2M1MWJmNDQwYjZkNDE1NzYyMzg0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3GvdckusKK8jr0OFQgigexxIQLPg
epCwrpAWAwNx9OfsdltX+DpNPr1CzftTRzT6H/jGsYEnZwGdoHxFgKiualiGgwEg
gEeJ56Z9rFCOaY4SumDOBAAtvjrNDqS4ZgFRMMtjZ3MzISmQ2aKGFGupCTvYZUQl
ygu5CFXKHr9r3ZqB4hQbgrHOGR7zD2Au3QIMSnUp/1yOmWZgOInnOgxEKXJSLcMq
QsYABsHZEGz8QQW61mwcddEPwUnanFKL2v6bcIUXCM7GPok1ZFf3aW3SMXsrS5SJ
QpF29YKPHkx7vBJMvAE6ayGzx0QQ2Rt6bA4McdlfclHd/SrDYBGJOWaIDwIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFJxp+fXIN+FlDQfFG/RAttQVdiOEMB8GA1UdIwQY
MBaAFBnuXxb8FErLmJd0Sfqgq3feG9zJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR2U1ZkZ2d1VTc3VZbDNSSi1xQ3JkOTRiM01rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC83NDIzNzAtZTEwZi00NTQxLWFhNmMt
NjFhZmI2NmQxZThjLzEvbkduNTljZzM0V1VOQjhVYjlFQzIxQlYySTRRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC83NDIzNzAtZTEwZi00NTQxLWFhNmMtNjFhZmI2NmQxZThj
LzEvR2U1ZkZ2d1VTc3VZbDNSSi1xQ3JkOTRiM01rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQBwqqsAwQB
w+WEAwQCw+WcMA0GCSqGSIb3DQEBCwUAA4IBAQCHWLWZlA7jJMfxCKb3EvLR05hB
QkFKUei6ZGmdVDwk6Ni1NahMw/gkPOFPJ0gkndue58ul3kvAtsy/rlQisIHoOShv
4JWM42DORmvMMTuCinJSftWEcu7LbemPxU7KCMUa3xO2/tda1md9o6My22OxO6e6
fEWTMiry5ic/j+CPfwcBS2LITvPSIamjp6Vf1XfhaAT3Urqzp1tavGwmDPuuERSO
F74W1qp4QL+xpZLINwtKHZv8PuxtpLgVSMItzn156hww9QIexv12cZZ83pnfiVud
mguU5NR17uwQtrIljD6+GhE0qOojvlja5O//tbjdmh5x/TJnZGV8uE1kbMsk
-----END CERTIFICATE-----
Generated at Mon Jan 1 21:30:56 2024 by rpki-client on console.sobornost.net