Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/b378e0-cf99-41b1-a38a-e136c989be33/1/mKiZUP33flN86tc2i7MC9x9FVlE.roa
File: mKiZUP33flN86tc2i7MC9x9FVlE.roa (raw, json)
Hash identifier: YU6YzjFAaB5nkrQUTemccdqU4oydaf9N2CjMXLRD4O0=
Subject key identifier: 98:A8:99:50:FD:F7:7E:53:7C:EA:D7:36:8B:B3:02:F7:1F:45:56:51
Certificate issuer: /CN=79646b38c3d87d33145b634b4e1dcc2145f6416c
Certificate serial: 0185703027833F661001CCB10FAD7ED1238C
Authority key identifier: 79:64:6B:38:C3:D8:7D:33:14:5B:63:4B:4E:1D:CC:21:45:F6:41:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eWRrOMPYfTMUW2NLTh3MIUX2QWw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/b378e0-cf99-41b1-a38a-e136c989be33/1/mKiZUP33flN86tc2i7MC9x9FVlE.roa
Signing time: Mon 02 Jan 2023 01:54:42 +0000
ROA not before: Mon 02 Jan 2023 01:54:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42672
IP address blocks: 95.182.24.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:27:83:3f:66:10:01:cc:b1:0f:ad:7e:d1:23:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79646b38c3d87d33145b634b4e1dcc2145f6416c
Validity
Not Before: Jan 2 01:54:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=98a89950fdf77e537cead7368bb302f71f455651
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:7f:71:cf:81:66:22:fd:ed:e8:77:07:4f:72:
0b:62:f5:47:26:51:95:04:6e:79:08:fc:6e:86:bf:
49:96:ac:90:3d:01:58:a0:f5:42:22:f5:8f:8a:3f:
b5:c9:3b:90:af:6f:ea:24:3b:b7:5c:a2:38:cf:3a:
e3:4a:0d:c7:b9:e8:c1:23:73:3c:24:95:e7:21:4b:
4a:34:92:27:c5:03:ad:b0:2c:b2:68:85:96:b7:e3:
ff:52:74:7d:a4:64:02:df:b0:cb:74:ac:b1:b7:2f:
dd:e8:11:cc:4b:d4:a2:77:f3:0d:5a:76:0f:db:fa:
80:5f:b9:d6:30:ee:b3:78:ee:29:36:94:84:dd:e4:
39:11:be:a1:93:cc:50:5d:13:f0:52:ef:d7:bf:1e:
10:4c:16:91:94:48:23:7d:55:fc:26:8b:d1:37:07:
e3:97:23:f0:ec:d7:7d:7f:5b:73:be:14:5c:38:70:
50:c1:a3:03:4a:ef:c8:4b:73:0f:99:71:4b:e2:38:
ac:45:f4:8f:f9:94:88:17:2a:39:e4:23:61:91:68:
37:af:ac:bf:1d:65:75:34:60:e8:ee:c9:57:6e:cc:
aa:67:48:f3:8e:75:80:80:76:6d:10:0d:e6:6b:af:
ae:9f:e9:db:0c:31:51:1a:ce:2f:06:45:04:68:55:
1d:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:A8:99:50:FD:F7:7E:53:7C:EA:D7:36:8B:B3:02:F7:1F:45:56:51
X509v3 Authority Key Identifier:
keyid:79:64:6B:38:C3:D8:7D:33:14:5B:63:4B:4E:1D:CC:21:45:F6:41:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eWRrOMPYfTMUW2NLTh3MIUX2QWw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/b378e0-cf99-41b1-a38a-e136c989be33/1/mKiZUP33flN86tc2i7MC9x9FVlE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/b378e0-cf99-41b1-a38a-e136c989be33/1/eWRrOMPYfTMUW2NLTh3MIUX2QWw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.182.24.0/24
Signature Algorithm: sha256WithRSAEncryption
38:a9:32:5a:47:d2:0e:44:87:37:7b:ac:4a:c0:78:17:98:36:
31:31:7e:a2:f1:84:fa:f9:81:56:c4:21:4b:1e:bc:f6:4c:47:
b6:2b:ed:a7:71:a3:dd:a3:9b:19:49:fb:e7:0c:04:ea:08:5c:
e7:90:64:7e:e3:bd:7f:f1:35:0d:d3:42:5b:b5:fa:68:d2:8e:
94:91:cf:02:bf:5a:a9:46:77:26:60:7f:a1:86:43:09:dc:ae:
67:69:fa:49:a8:8a:8b:a5:ab:a6:70:2c:90:e9:3f:ac:1e:bb:
70:bc:0c:12:f6:15:50:38:53:90:d7:12:92:de:7e:be:c3:15:
cf:27:fc:df:af:a4:e3:6d:fc:36:d4:d6:27:d5:d2:1c:70:cd:
f8:c5:61:27:52:70:9a:53:1a:03:25:e3:7e:b9:05:3b:da:a9:
e7:56:ff:56:46:bf:e0:78:fc:4b:37:a2:9b:54:79:39:c8:7d:
01:a8:21:3a:09:8c:67:83:68:a3:44:fe:66:57:f7:03:7f:cc:
2c:5c:93:a0:61:da:ec:22:3e:32:f1:69:83:69:41:2e:8e:51:
68:24:cb:80:ec:45:e9:b1:22:10:3b:ab:14:3c:5f:72:eb:77:
1f:5a:31:ef:62:c5:42:46:40:8f:a4:5e:32:bc:3a:07:12:61:
b2:33:a7:f5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwMCeDP2YQAcyxD61+0SOMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc5NjQ2YjM4YzNkODdkMzMxNDViNjM0YjRlMWRjYzIxNDVm
NjQxNmMwHhcNMjMwMTAyMDE1NDQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5OGE4OTk1MGZkZjc3ZTUzN2NlYWQ3MzY4YmIzMDJmNzFmNDU1NjUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl39xz4FmIv3t6HcHT3ILYvVHJlGV
BG55CPxuhr9JlqyQPQFYoPVCIvWPij+1yTuQr2/qJDu3XKI4zzrjSg3HuejBI3M8
JJXnIUtKNJInxQOtsCyyaIWWt+P/UnR9pGQC37DLdKyxty/d6BHMS9Sid/MNWnYP
2/qAX7nWMO6zeO4pNpSE3eQ5Eb6hk8xQXRPwUu/Xvx4QTBaRlEgjfVX8JovRNwfj
lyPw7Nd9f1tzvhRcOHBQwaMDSu/IS3MPmXFL4jisRfSP+ZSIFyo55CNhkWg3r6y/
HWV1NGDo7slXbsyqZ0jzjnWAgHZtEA3ma6+un+nbDDFRGs4vBkUEaFUdSQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJiomVD9935TfOrXNouzAvcfRVZRMB8GA1UdIwQY
MBaAFHlkazjD2H0zFFtjS04dzCFF9kFsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZVdSck9NUFlmVE1VVzJOTFRoM01JVVgyUVd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi9iMzc4ZTAtY2Y5OS00MWIxLWEzOGEt
ZTEzNmM5ODliZTMzLzEvbUtpWlVQMzNmbE44NnRjMmk3TUM5eDlGVmxFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZi9iMzc4ZTAtY2Y5OS00MWIxLWEzOGEtZTEzNmM5ODliZTMz
LzEvZVdSck9NUFlmVE1VVzJOTFRoM01JVVgyUVd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAX7YYMA0G
CSqGSIb3DQEBCwUAA4IBAQA4qTJaR9IORIc3e6xKwHgXmDYxMX6i8YT6+YFWxCFL
Hrz2TEe2K+2ncaPdo5sZSfvnDATqCFznkGR+471/8TUN00Jbtfpo0o6Ukc8Cv1qp
RncmYH+hhkMJ3K5nafpJqIqLpaumcCyQ6T+sHrtwvAwS9hVQOFOQ1xKS3n6+wxXP
J/zfr6Tjbfw21NYn1dIccM34xWEnUnCaUxoDJeN+uQU72qnnVv9WRr/gePxLN6Kb
VHk5yH0BqCE6CYxng2ijRP5mV/cDf8wsXJOgYdrsIj4y8WmDaUEujlFoJMuA7EXp
sSIQO6sUPF9y63cfWjHvYsVCRkCPpF4yvDoHEmGyM6f1
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:36 2024 by rpki-client on console-ams.rpki-client.org