Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/9fd20e-34d7-4949-a307-9087e0ff3d36/1/fyMS-I0fazipe2EoVTjMlZfGS2Q.roa
File: fyMS-I0fazipe2EoVTjMlZfGS2Q.roa (raw, json)
Hash identifier: 62dqWR3J7ca0PIa0Wd7rIfgGvF2fqc9M6+8sOgo/eEU=
Subject key identifier: 7F:23:12:F8:8D:1F:6B:38:A9:7B:61:28:55:38:CC:95:97:C6:4B:64
Certificate issuer: /CN=6cc23670f9789c02d83ba7c2e7e4c6e9ede52f7a
Certificate serial: 0189B5B9C5C5F0F599356686F7E174D112DD
Authority key identifier: 6C:C2:36:70:F9:78:9C:02:D8:3B:A7:C2:E7:E4:C6:E9:ED:E5:2F:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bMI2cPl4nALYO6fC5-TG6e3lL3o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/9fd20e-34d7-4949-a307-9087e0ff3d36/1/fyMS-I0fazipe2EoVTjMlZfGS2Q.roa
Signing time: Wed 02 Aug 2023 10:09:58 +0000
ROA not before: Wed 02 Aug 2023 10:09:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203424
IP address blocks: 185.45.176.0/22 maxlen: 22
213.128.160.0/19 maxlen: 19
147.12.32.0/19 maxlen: 19
195.181.128.0/19 maxlen: 19
217.116.80.0/20 maxlen: 20
2a02:2c00::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b5:b9:c5:c5:f0:f5:99:35:66:86:f7:e1:74:d1:12:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cc23670f9789c02d83ba7c2e7e4c6e9ede52f7a
Validity
Not Before: Aug 2 10:09:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7f2312f88d1f6b38a97b61285538cc9597c64b64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:d3:08:a7:73:41:82:04:16:e7:ab:c5:86:a2:
19:aa:ed:83:2f:72:a1:3d:ad:b5:52:b1:cf:d4:3b:
37:14:ff:ee:bd:28:72:6c:da:6a:c3:ee:9a:ff:ed:
e9:3a:6b:63:be:cf:de:4e:bb:56:62:6b:c7:b0:c2:
a2:26:8d:14:76:bc:f9:2e:3b:95:ab:4c:a9:be:15:
39:2d:0a:6a:4e:8d:ac:4e:43:47:ca:c9:84:33:89:
57:93:9f:ee:f7:b8:f7:dc:1d:3c:8d:20:f2:cd:2d:
2f:7b:a0:36:91:b8:ed:2b:d3:77:7a:90:72:f4:c0:
69:7a:d4:a2:88:07:6d:60:f8:eb:ba:6e:ae:5c:3c:
41:31:75:cf:33:2f:00:10:69:81:59:22:af:b3:46:
44:6f:97:4c:41:85:41:f5:fa:75:97:54:df:38:db:
6c:04:5a:8b:0a:55:e0:2d:2a:0d:27:7a:a9:99:39:
36:21:14:6d:ac:6b:26:d7:bd:71:2d:32:8c:0f:61:
b9:ea:c8:50:b5:48:3f:d6:3d:44:2f:46:50:8f:39:
c7:2a:38:46:46:3d:5f:8c:81:fb:5e:95:f7:20:39:
77:bf:cb:9c:8c:e4:83:86:3d:46:e0:c5:d2:46:93:
90:2d:b1:33:08:8f:c8:6c:38:24:01:cb:58:88:27:
53:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:23:12:F8:8D:1F:6B:38:A9:7B:61:28:55:38:CC:95:97:C6:4B:64
X509v3 Authority Key Identifier:
keyid:6C:C2:36:70:F9:78:9C:02:D8:3B:A7:C2:E7:E4:C6:E9:ED:E5:2F:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bMI2cPl4nALYO6fC5-TG6e3lL3o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/9fd20e-34d7-4949-a307-9087e0ff3d36/1/fyMS-I0fazipe2EoVTjMlZfGS2Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/9fd20e-34d7-4949-a307-9087e0ff3d36/1/bMI2cPl4nALYO6fC5-TG6e3lL3o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.12.32.0/19
185.45.176.0/22
195.181.128.0/19
213.128.160.0/19
217.116.80.0/20
IPv6:
2a02:2c00::/29
Signature Algorithm: sha256WithRSAEncryption
09:fc:17:ac:62:67:d7:51:42:63:72:e3:1d:d1:f1:62:fa:7f:
bd:ed:d4:27:63:f4:0a:7a:7f:dd:cd:83:29:2b:e8:f8:00:a5:
4c:99:7c:0d:a2:4c:2c:2c:96:e4:d2:19:d8:99:6d:b5:78:af:
2b:49:bc:6a:dd:5d:e2:35:dc:12:cb:03:84:af:10:26:d5:70:
fb:bd:b0:59:3f:24:e6:2c:1f:33:41:2a:5c:9c:f4:de:46:dd:
1f:de:24:c0:0a:99:69:d2:98:32:46:4c:7f:92:ca:52:4f:34:
8c:f9:de:5c:9d:93:73:f7:c0:66:6f:b1:2e:45:5e:ce:b9:b7:
25:71:3c:dd:7d:c2:d1:26:a2:65:50:26:ac:2d:66:52:d7:67:
89:57:cf:06:67:29:b0:5f:c5:43:4f:6a:a2:2d:d5:2d:06:73:
13:41:1e:b1:d7:75:64:21:72:79:76:4e:ec:db:b6:ea:1a:24:
65:dc:7e:0f:4d:e4:2b:4f:05:0c:cc:c6:a2:1e:20:a2:7c:a1:
33:95:ce:a0:dc:87:c4:ac:24:e1:93:23:82:2a:c1:d5:28:3c:
4d:bb:4c:6f:57:b7:73:b9:0a:3c:94:2d:76:1f:55:af:f4:7f:
1f:ea:7c:9a:c9:5b:ec:99:d3:99:b7:6d:42:6d:c7:62:9a:c2:
2c:fd:e7:15
-----BEGIN CERTIFICATE-----
MIIFJDCCBAygAwIBAgISAYm1ucXF8PWZNWaG9+F00RLdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjYzIzNjcwZjk3ODljMDJkODNiYTdjMmU3ZTRjNmU5ZWRl
NTJmN2EwHhcNMjMwODAyMTAwOTU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZjIzMTJmODhkMWY2YjM4YTk3YjYxMjg1NTM4Y2M5NTk3YzY0YjY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgtMIp3NBggQW56vFhqIZqu2DL3Kh
Pa21UrHP1Ds3FP/uvShybNpqw+6a/+3pOmtjvs/eTrtWYmvHsMKiJo0Udrz5LjuV
q0ypvhU5LQpqTo2sTkNHysmEM4lXk5/u97j33B08jSDyzS0ve6A2kbjtK9N3epBy
9MBpetSiiAdtYPjrum6uXDxBMXXPMy8AEGmBWSKvs0ZEb5dMQYVB9fp1l1TfONts
BFqLClXgLSoNJ3qpmTk2IRRtrGsm171xLTKMD2G56shQtUg/1j1EL0ZQjznHKjhG
Rj1fjIH7XpX3IDl3v8ucjOSDhj1G4MXSRpOQLbEzCI/IbDgkActYiCdTIQIDAQAB
o4ICMDCCAiwwHQYDVR0OBBYEFH8jEviNH2s4qXthKFU4zJWXxktkMB8GA1UdIwQY
MBaAFGzCNnD5eJwC2Dunwufkxunt5S96MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYk1JMmNQbDRuQUxZTzZmQzUtVEc2ZTNsTDNvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC85ZmQyMGUtMzRkNy00OTQ5LWEzMDct
OTA4N2UwZmYzZDM2LzEvZnlNUy1JMGZhemlwZTJFb1ZUak1sWmZHUzJRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC85ZmQyMGUtMzRkNy00OTQ5LWEzMDctOTA4N2UwZmYzZDM2
LzEvYk1JMmNQbDRuQUxZTzZmQzUtVEc2ZTNsTDNvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEHAQH/BDcwNTAkBAIAATAeAwQFkwwgAwQC
uS2wAwQFw7WAAwQF1YCgAwQE2XRQMA0EAgACMAcDBQMqAiwAMA0GCSqGSIb3DQEB
CwUAA4IBAQAJ/BesYmfXUUJjcuMd0fFi+n+97dQnY/QKen/dzYMpK+j4AKVMmXwN
okwsLJbk0hnYmW21eK8rSbxq3V3iNdwSywOErxAm1XD7vbBZPyTmLB8zQSpcnPTe
Rt0f3iTACplp0pgyRkx/kspSTzSM+d5cnZNz98Bmb7EuRV7OubclcTzdfcLRJqJl
UCasLWZS12eJV88GZymwX8VDT2qiLdUtBnMTQR6x13VkIXJ5dk7s27bqGiRl3H4P
TeQrTwUMzMaiHiCifKEzlc6g3IfErCThkyOCKsHVKDxNu0xvV7dzuQo8lC12H1Wv
9H8f6nyayVvsmdOZt21CbcdimsIs/ecV
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:48 2024 by rpki-client on console-ams.rpki-client.org