Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/MPYmkHotyCphFNGPgPG46C7anyI.roa
File: MPYmkHotyCphFNGPgPG46C7anyI.roa (raw, json)
Hash identifier: hD1whAexNKyP1mm3q6EwIEJ7eSZPnB/iiKqpUTAtJkc=
Subject key identifier: 30:F6:26:90:7A:2D:C8:2A:61:14:D1:8F:80:F1:B8:E8:2E:DA:9F:22
Certificate issuer: /CN=7bab6c11d41162db0306858f83e5e65121132a6b
Certificate serial: 01856CF878CC22EFD190AC55073CBDF8F327
Authority key identifier: 7B:AB:6C:11:D4:11:62:DB:03:06:85:8F:83:E5:E6:51:21:13:2A:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/MPYmkHotyCphFNGPgPG46C7anyI.roa
Signing time: Sun 01 Jan 2023 10:55:01 +0000
ROA not before: Sun 01 Jan 2023 10:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64473
IP address blocks: 107.150.174.0/24 maxlen: 24
2a07:22c0:c100::/40 maxlen: 40
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:f8:78:cc:22:ef:d1:90:ac:55:07:3c:bd:f8:f3:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7bab6c11d41162db0306858f83e5e65121132a6b
Validity
Not Before: Jan 1 10:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=30f626907a2dc82a6114d18f80f1b8e82eda9f22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:43:96:d4:35:7a:4a:52:75:48:68:19:98:e4:
a1:ec:44:b7:2d:f3:0a:da:24:86:83:e6:5a:11:47:
80:d8:31:69:40:44:6f:ae:17:4d:b2:11:14:57:92:
4c:a8:3f:c7:07:d1:0e:4b:ad:eb:4f:3b:fc:e8:ab:
99:40:35:37:20:84:94:fd:38:eb:75:ed:30:94:16:
b5:49:60:44:f2:6d:d3:45:81:e9:06:99:7a:1c:bf:
6e:21:f3:96:ec:7a:8f:9f:c6:e0:6c:a0:1f:93:29:
4a:7c:5c:df:b7:44:92:1a:c9:5d:a2:a6:1d:80:80:
96:89:ec:e0:cd:bc:8f:a6:2e:7d:50:e0:ed:92:c2:
5e:2a:fd:df:9f:3c:19:b2:3e:40:77:87:3a:42:b2:
a1:9a:87:3d:e6:4b:4d:79:8a:9f:73:9c:fe:b7:52:
c9:d9:af:91:e3:b7:5e:b2:fa:63:85:83:3d:af:6d:
60:d9:42:40:ab:06:c3:dd:08:ea:a8:5f:e4:48:07:
46:ab:df:8b:9e:f9:b1:bf:73:c6:b9:c0:ec:e2:4b:
78:7b:7a:b7:a4:29:46:07:5e:f8:0f:6c:2a:c0:a3:
eb:93:a6:c1:e9:4d:c7:5a:01:f1:00:89:ed:0e:7c:
95:53:d6:ff:3e:0a:77:75:2b:7d:94:ce:da:cd:be:
fe:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:F6:26:90:7A:2D:C8:2A:61:14:D1:8F:80:F1:B8:E8:2E:DA:9F:22
X509v3 Authority Key Identifier:
keyid:7B:AB:6C:11:D4:11:62:DB:03:06:85:8F:83:E5:E6:51:21:13:2A:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/MPYmkHotyCphFNGPgPG46C7anyI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/e6tsEdQRYtsDBoWPg-XmUSETKms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
107.150.174.0/24
IPv6:
2a07:22c0:c100::/40
Signature Algorithm: sha256WithRSAEncryption
80:cb:1a:e3:bc:4d:6d:5a:73:b3:30:c2:57:12:9c:a1:0b:9d:
1a:9c:77:f2:e6:e1:93:04:d8:1f:95:5e:ed:2a:6f:29:d6:82:
ac:88:c6:8d:18:f5:e9:48:47:0a:f2:7b:49:da:ca:53:8d:a4:
dc:d9:e7:63:7d:e9:e1:a9:b3:a5:c0:8a:a1:73:e4:ab:a8:6c:
c0:e8:37:bf:43:b9:c5:8f:12:a7:56:e2:c5:5b:c2:19:ec:ba:
a3:60:34:67:63:ec:c7:02:1c:28:7e:da:72:da:f9:f8:e2:21:
d6:99:b2:fb:02:59:9f:a9:8f:ac:4a:e6:ba:7e:a0:7b:0a:f8:
d9:bd:ba:85:df:57:8a:fe:e5:15:69:79:0f:6e:31:64:60:68:
d1:11:40:9e:c3:4e:ee:d3:7b:4e:63:d3:0e:76:de:ec:2a:6a:
87:d0:59:2f:ff:77:67:f5:90:ae:35:69:78:de:2b:fb:89:df:
1b:76:2a:20:37:f6:9e:90:ef:69:c5:5e:bc:6d:bf:7b:f5:05:
a5:c6:6e:ab:13:3e:26:cf:b4:c0:69:a3:dc:9c:8a:b1:fa:c9:
2a:b5:90:ed:63:7e:0b:dc:d1:04:c8:5d:52:05:40:fe:ee:98:
6a:3d:2a:e7:bb:a0:5a:96:44:d5:1b:e8:54:72:63:cc:43:d9:
2a:f1:fb:de
-----BEGIN CERTIFICATE-----
MIIFDTCCA/WgAwIBAgISAYVs+HjMIu/RkKxVBzy9+PMnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdiYWI2YzExZDQxMTYyZGIwMzA2ODU4ZjgzZTVlNjUxMjEx
MzJhNmIwHhcNMjMwMTAxMTA1NTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMGY2MjY5MDdhMmRjODJhNjExNGQxOGY4MGYxYjhlODJlZGE5ZjIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk0OW1DV6SlJ1SGgZmOSh7ES3LfMK
2iSGg+ZaEUeA2DFpQERvrhdNshEUV5JMqD/HB9EOS63rTzv86KuZQDU3IISU/Tjr
de0wlBa1SWBE8m3TRYHpBpl6HL9uIfOW7HqPn8bgbKAfkylKfFzft0SSGsldoqYd
gICWiezgzbyPpi59UODtksJeKv3fnzwZsj5Ad4c6QrKhmoc95ktNeYqfc5z+t1LJ
2a+R47desvpjhYM9r21g2UJAqwbD3QjqqF/kSAdGq9+Lnvmxv3PGucDs4kt4e3q3
pClGB174D2wqwKPrk6bB6U3HWgHxAIntDnyVU9b/Pgp3dSt9lM7azb7+pQIDAQAB
o4ICGTCCAhUwHQYDVR0OBBYEFDD2JpB6LcgqYRTRj4DxuOgu2p8iMB8GA1UdIwQY
MBaAFHurbBHUEWLbAwaFj4Pl5lEhEyprMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZTZ0c0VkUVJZdHNEQm9XUGctWG1VU0VUS21zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS9kMzM0YWQtNTI0MC00ZGFhLWEwNTAt
OWY1YmY3MzY3MjBlLzEvTVBZbWtIb3R5Q3BoRk5HUGdQRzQ2QzdhbnlJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOS9kMzM0YWQtNTI0MC00ZGFhLWEwNTAtOWY1YmY3MzY3MjBl
LzEvZTZ0c0VkUVJZdHNEQm9XUGctWG1VU0VUS21zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC8GCCsGAQUFBwEHAQH/BCAwHjAMBAIAATAGAwQAa5auMA4E
AgACMAgDBgAqByLAwTANBgkqhkiG9w0BAQsFAAOCAQEAgMsa47xNbVpzszDCVxKc
oQudGpx38ubhkwTYH5Ve7SpvKdaCrIjGjRj16UhHCvJ7SdrKU42k3NnnY33p4amz
pcCKoXPkq6hswOg3v0O5xY8Sp1bixVvCGey6o2A0Z2PsxwIcKH7actr5+OIh1pmy
+wJZn6mPrErmun6gewr42b26hd9Xiv7lFWl5D24xZGBo0RFAnsNO7tN7TmPTDnbe
7Cpqh9BZL/93Z/WQrjVpeN4r+4nfG3YqIDf2npDvacVevG2/e/UFpcZuqxM+Js+0
wGmj3JyKsfrJKrWQ7WN+C9zRBMhdUgVA/u6Yaj0q57ugWpZE1RvoVHJjzEPZKvH7
3g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:48 2024 by rpki-client on console-fra.rpki-client.org