Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/f7f6c0-09d0-492c-92e6-8a95e6377332/1/xMKyWLiDncplUKCHW_iStuKlzw0.roa
File: xMKyWLiDncplUKCHW_iStuKlzw0.roa (raw, json)
Hash identifier: 9bf9YUjPohbaL9Osr55tmhalr5twITG9Vaazm1czwK4=
Subject key identifier: C4:C2:B2:58:B8:83:9D:CA:65:50:A0:87:5B:F8:92:B6:E2:A5:CF:0D
Certificate issuer: /CN=0b5f8c9447d614b86182763d9333250e2d9412e2
Certificate serial: 019261D17210C14AF314C9F947E0F01DC6DC
Authority key identifier: 0B:5F:8C:94:47:D6:14:B8:61:82:76:3D:93:33:25:0E:2D:94:12:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C1-MlEfWFLhhgnY9kzMlDi2UEuI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/f7f6c0-09d0-492c-92e6-8a95e6377332/1/xMKyWLiDncplUKCHW_iStuKlzw0.roa
Signing time: Sun 06 Oct 2024 12:32:49 +0000
ROA not before: Sun 06 Oct 2024 12:32:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 398465
IP address blocks: 89.150.49.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 10 Oct 2024 15:16:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:61:d1:72:10:c1:4a:f3:14:c9:f9:47:e0:f0:1d:c6:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b5f8c9447d614b86182763d9333250e2d9412e2
Validity
Not Before: Oct 6 12:32:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c4c2b258b8839dca6550a0875bf892b6e2a5cf0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:dd:5e:61:34:c1:14:de:d2:4b:17:a9:cf:e7:
d6:a9:9a:00:08:52:13:2a:07:45:ca:81:b6:cc:53:
25:71:3f:2a:f9:1b:12:4d:04:21:65:14:e8:cb:21:
a2:86:22:fe:c7:5d:18:bc:a8:29:50:cf:bb:20:df:
dc:98:8e:1b:d5:14:f1:5a:11:b2:92:02:84:86:50:
52:32:c0:37:34:13:6e:8f:27:de:51:f7:f3:37:3f:
0a:11:bb:0d:97:19:ed:85:c8:41:d3:ce:f8:09:a9:
24:22:22:3b:a5:8d:4f:7b:9a:fb:fc:3f:e6:d2:d1:
6d:53:b1:aa:36:50:2f:01:6d:fe:9f:42:db:93:96:
da:ca:26:3e:dc:85:a6:df:8a:9c:ed:77:57:39:28:
f1:6e:b2:a4:51:f0:8c:2b:2a:22:fe:e5:3a:04:d5:
60:fb:9e:61:2a:4a:39:7b:3b:d9:4e:cc:a9:cb:6e:
23:d4:78:e5:60:d6:3a:36:f9:00:2d:bc:2f:cc:fc:
2b:36:a1:86:ee:d4:d3:f1:c7:61:59:91:67:6d:3b:
7e:3d:5d:7e:7a:d5:dc:5e:99:6b:7f:e4:af:44:80:
7e:db:3d:7d:9d:56:73:96:d4:b9:cd:75:73:f2:8e:
c5:e6:33:38:99:d3:68:81:96:03:ba:18:17:ba:c7:
5a:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:C2:B2:58:B8:83:9D:CA:65:50:A0:87:5B:F8:92:B6:E2:A5:CF:0D
X509v3 Authority Key Identifier:
keyid:0B:5F:8C:94:47:D6:14:B8:61:82:76:3D:93:33:25:0E:2D:94:12:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C1-MlEfWFLhhgnY9kzMlDi2UEuI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f7f6c0-09d0-492c-92e6-8a95e6377332/1/xMKyWLiDncplUKCHW_iStuKlzw0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f7f6c0-09d0-492c-92e6-8a95e6377332/1/C1-MlEfWFLhhgnY9kzMlDi2UEuI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.150.49.0/24
Signature Algorithm: sha256WithRSAEncryption
01:69:55:98:65:bb:13:cd:27:74:60:3a:c6:0b:2b:f4:aa:d6:
5d:ce:2b:65:5b:d2:76:d2:90:ca:f0:bc:1a:1a:3a:ab:da:72:
7d:84:18:1c:f1:fd:a0:58:93:f1:ac:fb:bd:5c:18:dd:e8:ac:
73:59:c9:96:43:fa:0c:f9:ba:e7:35:b6:21:c9:24:73:0c:21:
39:fc:99:4d:bd:5b:c2:0f:61:f3:72:2a:51:8a:f4:c5:ed:c6:
c2:b8:88:20:cf:a7:51:5c:46:f6:7e:0a:66:54:0f:12:47:0b:
93:c3:a2:10:bb:bf:a5:91:b2:96:35:83:16:5a:69:58:44:bb:
b8:fa:c6:81:ad:d8:10:e6:7c:10:04:b0:00:bb:78:6b:cc:7f:
38:62:cc:5e:da:99:f1:1f:b2:ce:bb:3b:9a:8b:92:c4:00:48:
79:dd:8b:6b:96:67:f9:01:e2:d4:bc:4c:84:8c:2d:68:69:26:
6e:e9:39:e7:54:de:c0:64:7d:7e:4c:83:68:99:ac:72:2d:c6:
74:9b:63:42:41:9c:ad:50:43:de:91:4b:6c:2d:6d:6b:ea:71:
6f:f9:b2:a9:f2:30:b1:1f:76:3d:ca:5d:c1:6d:22:b3:6e:44:
49:23:b5:08:48:70:f3:72:e0:f4:d4:70:0d:06:e2:6a:75:2a:
78:38:d3:cc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZJh0XIQwUrzFMn5R+DwHcbcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBiNWY4Yzk0NDdkNjE0Yjg2MTgyNzYzZDkzMzMyNTBlMmQ5
NDEyZTIwHhcNMjQxMDA2MTIzMjQ5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNGMyYjI1OGI4ODM5ZGNhNjU1MGEwODc1YmY4OTJiNmUyYTVjZjBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApd1eYTTBFN7SSxepz+fWqZoACFIT
KgdFyoG2zFMlcT8q+RsSTQQhZRToyyGihiL+x10YvKgpUM+7IN/cmI4b1RTxWhGy
kgKEhlBSMsA3NBNujyfeUffzNz8KEbsNlxnthchB0874CakkIiI7pY1Pe5r7/D/m
0tFtU7GqNlAvAW3+n0Lbk5bayiY+3IWm34qc7XdXOSjxbrKkUfCMKyoi/uU6BNVg
+55hKko5ezvZTsypy24j1HjlYNY6NvkALbwvzPwrNqGG7tTT8cdhWZFnbTt+PV1+
etXcXplrf+SvRIB+2z19nVZzltS5zXVz8o7F5jM4mdNogZYDuhgXusdaNwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMTCsli4g53KZVCgh1v4krbipc8NMB8GA1UdIwQY
MBaAFAtfjJRH1hS4YYJ2PZMzJQ4tlBLiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQzEtTWxFZldGTGhoZ25ZOWt6TWxEaTJVRXVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy9mN2Y2YzAtMDlkMC00OTJjLTkyZTYt
OGE5NWU2Mzc3MzMyLzEveE1LeVdMaURuY3BsVUtDSFdfaVN0dUtsencwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYy9mN2Y2YzAtMDlkMC00OTJjLTkyZTYtOGE5NWU2Mzc3MzMy
LzEvQzEtTWxFZldGTGhoZ25ZOWt6TWxEaTJVRXVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWZYxMA0G
CSqGSIb3DQEBCwUAA4IBAQABaVWYZbsTzSd0YDrGCyv0qtZdzitlW9J20pDK8Lwa
Gjqr2nJ9hBgc8f2gWJPxrPu9XBjd6KxzWcmWQ/oM+brnNbYhySRzDCE5/JlNvVvC
D2HzcipRivTF7cbCuIggz6dRXEb2fgpmVA8SRwuTw6IQu7+lkbKWNYMWWmlYRLu4
+saBrdgQ5nwQBLAAu3hrzH84Ysxe2pnxH7LOuzuai5LEAEh53Ytrlmf5AeLUvEyE
jC1oaSZu6TnnVN7AZH1+TINomaxyLcZ0m2NCQZytUEPekUtsLW1r6nFv+bKp8jCx
H3Y9yl3BbSKzbkRJI7UISHDzcuD01HANBuJqdSp4ONPM
-----END CERTIFICATE-----
Generated at Thu Oct 10 19:31:46 2024 by rpki-client on console-fra.rpki-client.org