Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/537191-1179-48ec-ad9f-ffe43a52d3f6/1/mC7fg91quCcDkOACMF0naAgWzIM.roa
File: mC7fg91quCcDkOACMF0naAgWzIM.roa (raw, json)
Hash identifier: zQ1UB9j/cIW361+psOdYzExm/Ni7nXL1nQPMFN0EeGo=
Subject key identifier: 98:2E:DF:83:DD:6A:B8:27:03:90:E0:02:30:5D:27:68:08:16:CC:83
Certificate issuer: /CN=b9ac49d1ccdcaedd9a13f4803df1aedce6dc1112
Certificate serial: 018A8DA5876F87E67EBB5041CE3AFE4341B5
Authority key identifier: B9:AC:49:D1:CC:DC:AE:DD:9A:13:F4:80:3D:F1:AE:DC:E6:DC:11:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uaxJ0czcrt2aE_SAPfGu3ObcERI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/537191-1179-48ec-ad9f-ffe43a52d3f6/1/mC7fg91quCcDkOACMF0naAgWzIM.roa
Signing time: Wed 13 Sep 2023 08:25:50 +0000
ROA not before: Wed 13 Sep 2023 08:25:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52157
IP address blocks: 5.100.188.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:8d:a5:87:6f:87:e6:7e:bb:50:41:ce:3a:fe:43:41:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9ac49d1ccdcaedd9a13f4803df1aedce6dc1112
Validity
Not Before: Sep 13 08:25:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=982edf83dd6ab8270390e002305d27680816cc83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:1b:89:d2:a1:7e:aa:8e:9b:6c:d4:8c:05:13:
55:93:4c:cb:ae:ac:85:a5:27:0c:4f:a2:8d:95:89:
4f:12:7c:b9:01:a4:4f:2e:f0:8f:9b:23:8e:49:58:
56:43:f7:77:c5:0c:fe:8d:56:c8:5a:3b:a9:a9:90:
dc:7d:96:1d:86:6a:4e:a2:85:dc:ea:75:ab:50:a7:
7a:f8:79:f7:02:bd:94:df:76:1b:c4:64:c0:b5:e9:
0e:a0:99:e0:6a:f0:a9:4e:cd:5d:2d:08:c7:a8:fc:
a6:53:2b:22:06:f3:58:c2:53:6c:81:56:ae:98:24:
0c:9e:3f:7d:b1:e8:2b:fe:4f:d0:b8:4e:93:4f:12:
19:ad:82:59:6c:40:bd:90:bf:a6:c0:f3:6f:cf:13:
a9:75:2b:38:d6:a8:54:82:36:9d:e6:f1:fb:b7:a7:
c9:6d:1e:d0:4c:e6:b5:a2:10:a1:24:26:b5:6a:9f:
41:26:7f:d0:ee:cf:04:50:0f:b7:15:d5:87:fb:6f:
c1:d5:99:ee:a5:e1:0c:89:cb:29:e7:a3:bb:6c:b2:
c4:4c:8d:db:82:e1:52:82:d7:8d:67:96:75:8e:99:
c0:c9:ac:cf:88:49:79:b0:6b:8a:1e:6f:4c:ed:bc:
01:20:6a:13:70:12:8b:cb:26:97:0e:60:e3:71:9a:
f3:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:2E:DF:83:DD:6A:B8:27:03:90:E0:02:30:5D:27:68:08:16:CC:83
X509v3 Authority Key Identifier:
keyid:B9:AC:49:D1:CC:DC:AE:DD:9A:13:F4:80:3D:F1:AE:DC:E6:DC:11:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uaxJ0czcrt2aE_SAPfGu3ObcERI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/537191-1179-48ec-ad9f-ffe43a52d3f6/1/mC7fg91quCcDkOACMF0naAgWzIM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/537191-1179-48ec-ad9f-ffe43a52d3f6/1/uaxJ0czcrt2aE_SAPfGu3ObcERI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.100.188.0/22
Signature Algorithm: sha256WithRSAEncryption
49:39:bb:66:35:3a:27:2a:dd:8e:3a:a2:12:50:fa:9f:36:d9:
15:4a:8d:2f:19:b7:ab:d8:01:64:06:2e:a8:34:9b:8b:9b:49:
6c:75:06:70:a6:68:d4:3e:d8:d9:b3:25:20:c5:0c:46:a0:68:
dd:22:b1:67:33:ac:5a:12:e3:3b:a0:09:7d:f4:20:08:3e:5c:
c6:94:35:9b:d6:75:18:35:a5:3a:2b:af:81:0a:b9:e3:b5:aa:
64:e1:3d:6e:e4:c0:86:9e:3a:ca:31:0d:fb:eb:52:bc:b2:a3:
93:93:2f:d0:e0:ff:49:63:29:05:9f:ec:ff:73:fa:97:13:e0:
e3:16:f4:b2:8f:5d:e4:1a:39:45:72:48:c6:fe:08:e5:22:ee:
9d:34:c1:32:8f:67:3f:a6:20:3d:d1:5a:f8:8d:b1:38:87:fa:
ec:85:56:96:4d:bd:43:42:15:a7:81:c3:f1:e4:bd:5c:95:75:
18:7f:78:70:8e:4b:95:97:31:87:08:08:0e:15:22:29:ef:00:
c1:08:da:84:65:15:4b:51:e9:7f:12:87:8b:9e:88:96:52:66:
ff:4a:97:09:20:f1:d5:25:d5:74:f4:93:05:9a:54:d8:a1:f6:
a5:e5:90:5b:3f:90:e5:7a:6b:f6:71:c1:41:78:51:30:43:46:
46:a4:0a:39
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYqNpYdvh+Z+u1BBzjr+Q0G1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5YWM0OWQxY2NkY2FlZGQ5YTEzZjQ4MDNkZjFhZWRjZTZk
YzExMTIwHhcNMjMwOTEzMDgyNTUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ODJlZGY4M2RkNmFiODI3MDM5MGUwMDIzMDVkMjc2ODA4MTZjYzgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAohuJ0qF+qo6bbNSMBRNVk0zLrqyF
pScMT6KNlYlPEny5AaRPLvCPmyOOSVhWQ/d3xQz+jVbIWjupqZDcfZYdhmpOooXc
6nWrUKd6+Hn3Ar2U33YbxGTAtekOoJngavCpTs1dLQjHqPymUysiBvNYwlNsgVau
mCQMnj99segr/k/QuE6TTxIZrYJZbEC9kL+mwPNvzxOpdSs41qhUgjad5vH7t6fJ
bR7QTOa1ohChJCa1ap9BJn/Q7s8EUA+3FdWH+2/B1ZnupeEMicsp56O7bLLETI3b
guFSgteNZ5Z1jpnAyazPiEl5sGuKHm9M7bwBIGoTcBKLyyaXDmDjcZrzqwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJgu34PdargnA5DgAjBdJ2gIFsyDMB8GA1UdIwQY
MBaAFLmsSdHM3K7dmhP0gD3xrtzm3BESMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdWF4SjBjemNydDJhRV9TQVBmR3UzT2JjRVJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC81MzcxOTEtMTE3OS00OGVjLWFkOWYt
ZmZlNDNhNTJkM2Y2LzEvbUM3Zmc5MXF1Q2NEa09BQ01GMG5hQWdXeklNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOC81MzcxOTEtMTE3OS00OGVjLWFkOWYtZmZlNDNhNTJkM2Y2
LzEvdWF4SjBjemNydDJhRV9TQVBmR3UzT2JjRVJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCBWS8MA0G
CSqGSIb3DQEBCwUAA4IBAQBJObtmNTonKt2OOqISUPqfNtkVSo0vGber2AFkBi6o
NJuLm0lsdQZwpmjUPtjZsyUgxQxGoGjdIrFnM6xaEuM7oAl99CAIPlzGlDWb1nUY
NaU6K6+BCrnjtapk4T1u5MCGnjrKMQ3761K8sqOTky/Q4P9JYykFn+z/c/qXE+Dj
FvSyj13kGjlFckjG/gjlIu6dNMEyj2c/piA90Vr4jbE4h/rshVaWTb1DQhWngcPx
5L1clXUYf3hwjkuVlzGHCAgOFSIp7wDBCNqEZRVLUel/EoeLnoiWUmb/SpcJIPHV
JdV09JMFmlTYofal5ZBbP5Dlemv2ccFBeFEwQ0ZGpAo5
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:39 2024 by rpki-client on console-ams.rpki-client.org