Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/d1ade7-fbe2-4203-8551-b6542e6447a0/1/P3mjBMr62J-5-N-2BsJyMMPvrlY.roa
File: P3mjBMr62J-5-N-2BsJyMMPvrlY.roa (raw, json)
Hash identifier: cFVc7tUe5HWESOnGlseFT+y6nRidiacTfSMdDaIhtB8=
Subject key identifier: 3F:79:A3:04:CA:FA:D8:9F:B9:F8:DF:B6:06:C2:72:30:C3:EF:AE:56
Certificate issuer: /CN=8b19f3d7ffea957261501e91664ff6823ed936ad
Certificate serial: 018572712BCA9BD75E057D1066D921D5D4C4
Authority key identifier: 8B:19:F3:D7:FF:EA:95:72:61:50:1E:91:66:4F:F6:82:3E:D9:36:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ixnz1__qlXJhUB6RZk_2gj7ZNq0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/d1ade7-fbe2-4203-8551-b6542e6447a0/1/P3mjBMr62J-5-N-2BsJyMMPvrlY.roa
Signing time: Mon 02 Jan 2023 12:24:57 +0000
ROA not before: Mon 02 Jan 2023 12:24:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8758
IP address blocks: 185.166.96.0/22 maxlen: 22
2a0a:de00::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:71:2b:ca:9b:d7:5e:05:7d:10:66:d9:21:d5:d4:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b19f3d7ffea957261501e91664ff6823ed936ad
Validity
Not Before: Jan 2 12:24:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3f79a304cafad89fb9f8dfb606c27230c3efae56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a6:49:5a:b1:ff:f9:18:40:34:3f:e0:3e:5b:
13:27:ca:cc:29:50:82:b6:f0:d5:e6:1d:a1:91:99:
ba:13:e6:ea:7c:a9:0d:43:df:36:8c:e1:6a:55:96:
3a:38:42:e6:6c:97:2d:78:ae:d8:b2:13:a3:4e:4c:
d4:a7:18:07:88:30:f7:a7:0c:a0:67:f0:63:bb:8b:
d3:63:28:0c:be:f3:12:b9:ce:ad:85:59:44:1f:fb:
fe:a9:15:18:8b:3c:ef:a7:8a:18:ac:9b:9e:5a:84:
3e:71:a8:d4:5d:93:9f:54:7f:68:d2:3b:5d:a6:b4:
1f:38:b7:10:37:c6:28:8c:a9:88:20:58:b8:5b:1d:
46:15:f1:72:b7:b8:31:78:62:0c:1e:3d:b5:79:cc:
08:18:99:7d:a3:c0:b9:3b:4d:9b:f5:20:e1:c3:a9:
8b:28:04:8d:38:d1:6c:0a:c6:b8:c0:e9:7e:fd:d4:
d8:46:b5:29:f5:cc:55:b2:68:62:fa:ef:6f:63:48:
b2:58:24:ba:9c:6b:6d:c0:8a:3d:bf:49:3d:ae:a5:
55:94:fc:2c:07:6d:94:22:7c:ff:8d:37:f6:83:b5:
24:ff:0b:aa:01:f8:ef:f2:cc:83:93:a2:de:13:3c:
34:5c:2c:68:2c:69:5e:55:e2:21:08:b1:eb:52:e4:
11:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:79:A3:04:CA:FA:D8:9F:B9:F8:DF:B6:06:C2:72:30:C3:EF:AE:56
X509v3 Authority Key Identifier:
keyid:8B:19:F3:D7:FF:EA:95:72:61:50:1E:91:66:4F:F6:82:3E:D9:36:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ixnz1__qlXJhUB6RZk_2gj7ZNq0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/d1ade7-fbe2-4203-8551-b6542e6447a0/1/P3mjBMr62J-5-N-2BsJyMMPvrlY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/d1ade7-fbe2-4203-8551-b6542e6447a0/1/ixnz1__qlXJhUB6RZk_2gj7ZNq0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.166.96.0/22
IPv6:
2a0a:de00::/32
Signature Algorithm: sha256WithRSAEncryption
16:07:01:62:9b:01:12:86:6b:8c:ce:8c:c0:b6:73:0a:7e:5b:
a0:88:e5:cb:44:cd:0f:ea:a8:94:67:3a:df:31:a9:e0:14:7a:
0f:f4:11:b9:5d:47:e6:a4:93:60:1f:9a:09:ef:b1:2a:25:74:
b3:f7:d7:52:35:4b:32:d6:b6:de:12:8e:09:19:cd:e1:3d:24:
be:2f:f3:d9:9a:32:c8:56:0f:6f:d6:1c:ea:bf:1b:67:8c:39:
07:dc:ce:87:c2:25:c7:65:f4:84:e0:54:74:03:30:a5:a0:62:
c1:99:c7:0b:32:14:19:fb:58:c4:62:4f:2e:e6:69:66:4e:d5:
5a:79:1b:9c:da:d0:92:6f:ec:c8:26:01:50:4c:3e:f2:f9:e6:
cb:09:9e:85:9c:1a:7d:36:29:68:e1:d5:3c:3a:69:72:78:7b:
ca:fb:06:4f:1a:52:32:e5:8b:80:bb:6e:37:45:9a:46:68:ec:
79:e8:81:e2:71:38:d7:75:f0:5e:34:31:62:70:00:2b:67:8f:
99:4a:e4:29:86:05:0e:7c:ac:65:e0:78:c5:6b:75:21:9f:f7:
17:31:77:54:0a:bc:12:8c:09:7a:c7:ad:d9:2c:ae:7e:18:2b:
7a:3f:03:3d:13:a4:df:ca:6c:06:09:e1:cf:5d:05:1f:31:d3:
ec:68:27:85
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVycSvKm9deBX0QZtkh1dTEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiMTlmM2Q3ZmZlYTk1NzI2MTUwMWU5MTY2NGZmNjgyM2Vk
OTM2YWQwHhcNMjMwMTAyMTIyNDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZjc5YTMwNGNhZmFkODlmYjlmOGRmYjYwNmMyNzIzMGMzZWZhZTU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs6ZJWrH/+RhAND/gPlsTJ8rMKVCC
tvDV5h2hkZm6E+bqfKkNQ982jOFqVZY6OELmbJcteK7YshOjTkzUpxgHiDD3pwyg
Z/Bju4vTYygMvvMSuc6thVlEH/v+qRUYizzvp4oYrJueWoQ+cajUXZOfVH9o0jtd
prQfOLcQN8YojKmIIFi4Wx1GFfFyt7gxeGIMHj21ecwIGJl9o8C5O02b9SDhw6mL
KASNONFsCsa4wOl+/dTYRrUp9cxVsmhi+u9vY0iyWCS6nGttwIo9v0k9rqVVlPws
B22UInz/jTf2g7Uk/wuqAfjv8syDk6LeEzw0XCxoLGleVeIhCLHrUuQR2QIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFD95owTK+tifufjftgbCcjDD765WMB8GA1UdIwQY
MBaAFIsZ89f/6pVyYVAekWZP9oI+2TatMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaXhuejFfX3FsWEpoVUI2UlprXzJnajdaTnEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9kMWFkZTctZmJlMi00MjAzLTg1NTEt
YjY1NDJlNjQ0N2EwLzEvUDNtakJNcjYySi01LU4tMkJzSnlNTVB2cmxZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNi9kMWFkZTctZmJlMi00MjAzLTg1NTEtYjY1NDJlNjQ0N2Ew
LzEvaXhuejFfX3FsWEpoVUI2UlprXzJnajdaTnEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuaZgMA0E
AgACMAcDBQAqCt4AMA0GCSqGSIb3DQEBCwUAA4IBAQAWBwFimwEShmuMzozAtnMK
flugiOXLRM0P6qiUZzrfMangFHoP9BG5XUfmpJNgH5oJ77EqJXSz99dSNUsy1rbe
Eo4JGc3hPSS+L/PZmjLIVg9v1hzqvxtnjDkH3M6HwiXHZfSE4FR0AzCloGLBmccL
MhQZ+1jEYk8u5mlmTtVaeRuc2tCSb+zIJgFQTD7y+ebLCZ6FnBp9Nilo4dU8Omly
eHvK+wZPGlIy5YuAu243RZpGaOx56IHicTjXdfBeNDFicAArZ4+ZSuQphgUOfKxl
4HjFa3Uhn/cXMXdUCrwSjAl6x63ZLK5+GCt6PwM9E6TfymwGCeHPXQUfMdPsaCeF
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:01 2024 by rpki-client on console-fra.rpki-client.org