Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/897449-e9cf-4a79-89cf-41bb21ac2801/1/moIPg-CoWA52CWoXgyi_9o8gAsY.roa
File: moIPg-CoWA52CWoXgyi_9o8gAsY.roa (raw, json)
Hash identifier: 0OZOPsG24Xxc+/LxgOJxpkyjk8MIlqitq7n9Y/HFMQQ=
Subject key identifier: 9A:82:0F:83:E0:A8:58:0E:76:09:6A:17:83:28:BF:F6:8F:20:02:C6
Certificate issuer: /CN=c38280c5300b74888ac7eb4bfa6417d9a2e7b0be
Certificate serial: 018CF5B5C9FCF3C29C9D6C7D384F22DE638F
Authority key identifier: C3:82:80:C5:30:0B:74:88:8A:C7:EB:4B:FA:64:17:D9:A2:E7:B0:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w4KAxTALdIiKx-tL-mQX2aLnsL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/897449-e9cf-4a79-89cf-41bb21ac2801/1/moIPg-CoWA52CWoXgyi_9o8gAsY.roa
Signing time: Wed 10 Jan 2024 23:29:40 +0000
ROA not before: Wed 10 Jan 2024 23:29:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209641
IP address blocks: 2a11:3185::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 15 Feb 2024 12:48:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f5:b5:c9:fc:f3:c2:9c:9d:6c:7d:38:4f:22:de:63:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c38280c5300b74888ac7eb4bfa6417d9a2e7b0be
Validity
Not Before: Jan 10 23:29:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9a820f83e0a8580e76096a178328bff68f2002c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:44:5e:a4:cc:c0:6c:ec:09:68:f1:b8:f7:96:
36:d8:86:ca:48:36:f8:e0:ee:e8:08:61:b6:83:aa:
d7:29:ba:31:50:d4:ce:7f:38:cf:0f:22:f9:53:6e:
04:f0:5b:f2:4b:e0:0f:e7:24:c7:a2:86:0a:98:e2:
d8:b5:2f:8a:c2:d4:c2:08:fa:33:60:db:d9:8c:fb:
71:30:76:29:97:f3:84:1c:2a:1f:f6:35:79:53:63:
b0:fd:54:8b:d0:42:3a:62:e5:e0:2a:6a:a7:63:41:
a6:49:6e:ff:2d:07:da:ab:25:d0:f9:59:c0:8e:fc:
b0:dd:5b:b7:a8:eb:b9:60:5b:79:80:ad:92:77:bc:
f7:b6:d4:f9:70:94:b7:ed:1a:a9:53:eb:b2:60:11:
12:9e:86:41:37:8a:dc:e6:c0:7c:dc:1d:5c:1a:43:
ed:8e:79:70:61:3b:b6:c1:32:33:f7:9b:0e:b8:3b:
88:61:fe:d5:32:b2:cf:a9:87:5f:c2:92:39:f6:dd:
52:1c:52:57:ee:fe:05:a7:89:3b:7e:fe:8b:2b:0e:
ea:ba:b7:c1:e3:14:ec:86:ef:65:20:b5:29:71:50:
b9:29:4f:e8:56:c0:eb:a5:49:2b:e2:31:de:54:e3:
97:f4:13:23:23:73:16:cf:5a:fd:b9:71:c5:3a:3f:
c6:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:82:0F:83:E0:A8:58:0E:76:09:6A:17:83:28:BF:F6:8F:20:02:C6
X509v3 Authority Key Identifier:
keyid:C3:82:80:C5:30:0B:74:88:8A:C7:EB:4B:FA:64:17:D9:A2:E7:B0:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w4KAxTALdIiKx-tL-mQX2aLnsL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/897449-e9cf-4a79-89cf-41bb21ac2801/1/moIPg-CoWA52CWoXgyi_9o8gAsY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/897449-e9cf-4a79-89cf-41bb21ac2801/1/w4KAxTALdIiKx-tL-mQX2aLnsL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:3185::/32
Signature Algorithm: sha256WithRSAEncryption
cd:4f:f8:57:62:7c:49:0e:a0:00:d4:d7:58:cd:96:6b:5c:51:
ef:30:b8:73:59:6c:67:9a:5b:bc:b4:12:23:80:6e:65:5d:4e:
7f:03:0e:a5:85:75:67:a0:a3:81:d8:98:69:35:80:83:bc:75:
de:d6:2c:a3:d1:94:cc:f2:68:79:3e:3e:c8:44:2a:d4:78:d0:
4a:6e:f3:ee:e1:ef:8a:a7:e5:2c:a8:72:45:88:60:88:b6:c9:
fb:35:a8:1c:c3:0f:bf:bd:c6:65:e3:ac:01:5a:58:9e:b9:5f:
2a:3d:98:c8:6f:8e:ad:00:1b:3e:7b:0d:3c:57:0f:90:da:88:
18:1f:2d:b7:7d:09:03:fe:d1:21:b2:7b:dc:70:be:0b:97:4c:
dd:b1:63:fd:6e:e2:0d:ca:dc:f7:91:21:fb:d5:4c:4b:17:c7:
ee:ad:13:4c:c8:e0:ce:f0:41:dc:06:c0:22:46:24:40:17:9e:
01:e8:be:dc:c6:71:00:77:88:6f:12:67:15:2f:34:c3:43:fe:
f5:54:14:a3:5a:a2:b6:84:18:d4:3f:85:1f:ed:91:0a:f2:a4:
c8:71:56:d8:e0:eb:1c:9f:2c:2d:82:63:f2:b1:bb:08:89:07:
a3:04:e0:d0:72:91:79:11:c9:5a:26:04:fa:1d:4a:2f:ca:45:
37:7a:2e:6b
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYz1tcn888KcnWx9OE8i3mOPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzODI4MGM1MzAwYjc0ODg4YWM3ZWI0YmZhNjQxN2Q5YTJl
N2IwYmUwHhcNMjQwMTEwMjMyOTQwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YTgyMGY4M2UwYTg1ODBlNzYwOTZhMTc4MzI4YmZmNjhmMjAwMmM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2kRepMzAbOwJaPG495Y22IbKSDb4
4O7oCGG2g6rXKboxUNTOfzjPDyL5U24E8FvyS+AP5yTHooYKmOLYtS+KwtTCCPoz
YNvZjPtxMHYpl/OEHCof9jV5U2Ow/VSL0EI6YuXgKmqnY0GmSW7/LQfaqyXQ+VnA
jvyw3Vu3qOu5YFt5gK2Sd7z3ttT5cJS37RqpU+uyYBESnoZBN4rc5sB83B1cGkPt
jnlwYTu2wTIz95sOuDuIYf7VMrLPqYdfwpI59t1SHFJX7v4Fp4k7fv6LKw7qurfB
4xTshu9lILUpcVC5KU/oVsDrpUkr4jHeVOOX9BMjI3MWz1r9uXHFOj/GkwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFJqCD4PgqFgOdglqF4Mov/aPIALGMB8GA1UdIwQY
MBaAFMOCgMUwC3SIisfrS/pkF9mi57C+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzRLQXhUQUxkSWlLeC10TC1tUVgyYUxuc0w0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy84OTc0NDktZTljZi00YTc5LTg5Y2Yt
NDFiYjIxYWMyODAxLzEvbW9JUGctQ29XQTUyQ1dvWGd5aV85bzhnQXNZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMy84OTc0NDktZTljZi00YTc5LTg5Y2YtNDFiYjIxYWMyODAx
LzEvdzRLQXhUQUxkSWlLeC10TC1tUVgyYUxuc0w0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhExhTAN
BgkqhkiG9w0BAQsFAAOCAQEAzU/4V2J8SQ6gANTXWM2Wa1xR7zC4c1lsZ5pbvLQS
I4BuZV1OfwMOpYV1Z6CjgdiYaTWAg7x13tYso9GUzPJoeT4+yEQq1HjQSm7z7uHv
iqflLKhyRYhgiLbJ+zWoHMMPv73GZeOsAVpYnrlfKj2YyG+OrQAbPnsNPFcPkNqI
GB8tt30JA/7RIbJ73HC+C5dM3bFj/W7iDcrc95Eh+9VMSxfH7q0TTMjgzvBB3AbA
IkYkQBeeAei+3MZxAHeIbxJnFS80w0P+9VQUo1qitoQY1D+FH+2RCvKkyHFW2ODr
HJ8sLYJj8rG7CIkHowTg0HKReRHJWiYE+h1KL8pFN3ouaw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:27 2024 by rpki-client on console-ams.rpki-client.org