Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/79cef8-43a1-4089-809f-dc984265567d/1/b_mtNyZAeQwOCBgnmg5mdxnAPwg.roa
File: b_mtNyZAeQwOCBgnmg5mdxnAPwg.roa (raw, json)
Hash identifier: OgzO+T8t6eLzHwXhE81Mg5p9KXjBDBlwCETR2WeC5ps=
Subject key identifier: 6F:F9:AD:37:26:40:79:0C:0E:08:18:27:9A:0E:66:77:19:C0:3F:08
Certificate issuer: /CN=06c44b821ab5db542cc536c1f88b84baf0621654
Certificate serial: 018CC2DB4A0D4D47E8C7ED3A2391E006B724
Authority key identifier: 06:C4:4B:82:1A:B5:DB:54:2C:C5:36:C1:F8:8B:84:BA:F0:62:16:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BsRLghq121QsxTbB-IuEuvBiFlQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/79cef8-43a1-4089-809f-dc984265567d/1/b_mtNyZAeQwOCBgnmg5mdxnAPwg.roa
Signing time: Mon 01 Jan 2024 02:30:00 +0000
ROA not before: Mon 01 Jan 2024 02:30:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203409
IP address blocks: 185.128.37.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 19 May 2024 22:54:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:4a:0d:4d:47:e8:c7:ed:3a:23:91:e0:06:b7:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06c44b821ab5db542cc536c1f88b84baf0621654
Validity
Not Before: Jan 1 02:30:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6ff9ad372640790c0e0818279a0e667719c03f08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ca:62:5b:59:3b:e9:42:7c:13:d0:d6:c1:2a:
dc:e8:2f:b5:cd:d6:8e:98:39:5b:26:a7:30:1c:65:
b3:19:c7:0e:dd:02:2a:2a:2d:0d:6d:70:3c:d7:ed:
7b:0d:fa:4c:20:45:dc:0a:3a:f8:22:3b:b4:9c:fc:
0f:4b:49:c7:3f:bf:d2:c5:71:23:82:81:88:0d:ad:
6d:af:b0:a1:f5:64:24:96:83:54:8b:4a:f3:73:96:
70:46:d3:b3:b4:35:0c:cd:fc:bc:c9:fb:1d:c6:da:
1e:2e:b8:e7:be:6c:34:3d:10:4b:82:0f:43:71:98:
1f:d6:bf:79:8e:09:9c:c4:6a:ce:53:a8:01:11:15:
5a:c1:63:ac:62:09:6a:bc:f9:17:77:80:f8:0b:72:
3c:12:00:2d:fd:e2:ce:c8:fa:98:0c:45:07:70:a1:
9b:18:90:ca:a2:94:c3:f3:01:fc:f1:c0:8c:49:30:
e5:37:9a:37:1d:5e:04:59:0e:2b:f4:c8:b5:37:b7:
c6:be:28:e3:45:d1:09:3a:07:ce:72:1f:4d:44:a1:
2b:8d:07:f5:2b:dd:ea:02:df:2d:52:77:d6:95:2f:
1f:68:54:98:9e:f6:fb:ef:a0:81:61:49:a5:fc:62:
64:05:75:06:e4:00:6d:4f:74:35:c1:f6:d3:36:bf:
d7:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:F9:AD:37:26:40:79:0C:0E:08:18:27:9A:0E:66:77:19:C0:3F:08
X509v3 Authority Key Identifier:
keyid:06:C4:4B:82:1A:B5:DB:54:2C:C5:36:C1:F8:8B:84:BA:F0:62:16:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BsRLghq121QsxTbB-IuEuvBiFlQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/79cef8-43a1-4089-809f-dc984265567d/1/b_mtNyZAeQwOCBgnmg5mdxnAPwg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/79cef8-43a1-4089-809f-dc984265567d/1/BsRLghq121QsxTbB-IuEuvBiFlQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.128.37.0/24
Signature Algorithm: sha256WithRSAEncryption
77:db:15:3b:f0:72:e7:ec:aa:8e:e0:72:24:0d:dc:6e:c7:65:
bd:7b:0c:7b:00:14:83:4c:e6:8b:fb:b7:07:1e:e8:c9:3c:d6:
6d:bd:e8:0a:89:04:02:3f:0d:e9:2a:f7:62:2c:c0:e3:b8:bc:
12:29:15:c5:89:00:39:12:f8:4e:f2:2a:6f:ff:17:c5:ce:9a:
50:01:70:95:11:c7:d1:b7:35:58:6d:01:83:1c:0f:73:a9:c7:
fc:2f:42:4f:13:38:08:2f:c4:97:91:e7:51:6a:29:35:8a:78:
52:f6:84:4f:a3:89:f2:3e:5d:d2:7c:ba:44:03:5f:e1:f3:23:
23:7d:85:10:e2:78:94:38:51:34:2b:d8:b5:d4:66:f3:ca:a1:
6a:59:4b:35:2c:3a:cc:81:6c:b0:e9:1b:91:89:ef:cd:29:ec:
c8:4b:37:4d:7c:ff:3c:30:00:28:b0:41:ab:55:c4:5c:3e:d9:
a9:e9:fc:c2:55:67:a1:87:e1:66:e3:09:9d:47:b4:78:40:ce:
6b:57:a2:f6:38:b2:47:a8:87:67:11:66:ac:de:63:79:95:15:
a6:5d:25:98:df:0e:8d:aa:0b:4d:9a:52:35:2e:54:2c:37:59:
43:be:e8:e0:5c:15:6f:47:67:ed:e5:92:7e:eb:f3:32:36:45:
c4:6f:e4:3f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzC20oNTUfox+06I5HgBrckMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2YzQ0YjgyMWFiNWRiNTQyY2M1MzZjMWY4OGI4NGJhZjA2
MjE2NTQwHhcNMjQwMTAxMDIzMDAwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZmY5YWQzNzI2NDA3OTBjMGUwODE4Mjc5YTBlNjY3NzE5YzAzZjA4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArMpiW1k76UJ8E9DWwSrc6C+1zdaO
mDlbJqcwHGWzGccO3QIqKi0NbXA81+17DfpMIEXcCjr4Iju0nPwPS0nHP7/SxXEj
goGIDa1tr7Ch9WQkloNUi0rzc5ZwRtOztDUMzfy8yfsdxtoeLrjnvmw0PRBLgg9D
cZgf1r95jgmcxGrOU6gBERVawWOsYglqvPkXd4D4C3I8EgAt/eLOyPqYDEUHcKGb
GJDKopTD8wH88cCMSTDlN5o3HV4EWQ4r9Mi1N7fGvijjRdEJOgfOch9NRKErjQf1
K93qAt8tUnfWlS8faFSYnvb776CBYUml/GJkBXUG5ABtT3Q1wfbTNr/X0QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFG/5rTcmQHkMDggYJ5oOZncZwD8IMB8GA1UdIwQY
MBaAFAbES4IatdtULMU2wfiLhLrwYhZUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQnNSTGdocTEyMVFzeFRiQi1JdUV1dkJpRmxRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi83OWNlZjgtNDNhMS00MDg5LTgwOWYt
ZGM5ODQyNjU1NjdkLzEvYl9tdE55WkFlUXdPQ0Jnbm1nNW1keG5BUHdnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi83OWNlZjgtNDNhMS00MDg5LTgwOWYtZGM5ODQyNjU1Njdk
LzEvQnNSTGdocTEyMVFzeFRiQi1JdUV1dkJpRmxRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuYAlMA0G
CSqGSIb3DQEBCwUAA4IBAQB32xU78HLn7KqO4HIkDdxux2W9ewx7ABSDTOaL+7cH
HujJPNZtvegKiQQCPw3pKvdiLMDjuLwSKRXFiQA5EvhO8ipv/xfFzppQAXCVEcfR
tzVYbQGDHA9zqcf8L0JPEzgIL8SXkedRaik1inhS9oRPo4nyPl3SfLpEA1/h8yMj
fYUQ4niUOFE0K9i11GbzyqFqWUs1LDrMgWyw6RuRie/NKezISzdNfP88MAAosEGr
VcRcPtmp6fzCVWehh+Fm4wmdR7R4QM5rV6L2OLJHqIdnEWas3mN5lRWmXSWY3w6N
qgtNmlI1LlQsN1lDvujgXBVvR2ft5ZJ+6/MyNkXEb+Q/
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:05 2024 by rpki-client on console-fra.rpki-client.org