Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/9514ed-276e-4aba-897e-a4410e10b6f5/1/mo9s6gz3hq7Y82H7c45UTfHHUPM.roa
File: mo9s6gz3hq7Y82H7c45UTfHHUPM.roa (raw, json)
Hash identifier: QWhcUq9/CtGZHdBYEcze2eoW56AKQkj2Z4Twp55YD30=
Subject key identifier: 9A:8F:6C:EA:0C:F7:86:AE:D8:F3:61:FB:73:8E:54:4D:F1:C7:50:F3
Certificate issuer: /CN=f75d8b52815f3f2613e948992ec9fe660f6949b4
Certificate serial: 018CC72623DFF20BE04E85830FBC1FAC4CAD
Authority key identifier: F7:5D:8B:52:81:5F:3F:26:13:E9:48:99:2E:C9:FE:66:0F:69:49:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/912LUoFfPyYT6UiZLsn-Zg9pSbQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/9514ed-276e-4aba-897e-a4410e10b6f5/1/mo9s6gz3hq7Y82H7c45UTfHHUPM.roa
Signing time: Mon 01 Jan 2024 22:30:14 +0000
ROA not before: Mon 01 Jan 2024 22:30:14 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49505
IP address blocks: 194.50.73.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 Mar 2024 10:44:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:26:23:df:f2:0b:e0:4e:85:83:0f:bc:1f:ac:4c:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f75d8b52815f3f2613e948992ec9fe660f6949b4
Validity
Not Before: Jan 1 22:30:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9a8f6cea0cf786aed8f361fb738e544df1c750f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:81:37:f6:d6:eb:14:33:f6:30:13:5c:4d:83:
99:92:c8:66:e4:50:00:1f:af:2b:9c:40:25:aa:23:
f5:58:d1:fc:52:22:cc:64:d5:6b:46:8c:40:d2:a1:
73:21:87:4e:d6:a7:ac:a6:87:5d:3c:2e:b0:c0:53:
e7:44:6a:7a:ff:86:5f:23:bd:44:0d:45:aa:d5:c2:
66:dc:65:81:bf:68:17:49:44:72:43:7e:85:1e:a7:
8b:aa:8a:4c:77:9c:8d:72:18:42:d6:3d:06:00:44:
65:99:65:85:9e:c9:ce:70:44:84:6d:05:5d:47:09:
ee:25:42:16:a0:24:d5:b6:d3:68:08:5b:fb:12:54:
6c:c0:aa:d1:63:df:82:2a:c6:5d:b1:f1:ff:d8:2a:
df:8f:f1:4b:08:42:3d:e1:7e:d5:d9:f2:1b:2a:49:
8b:7d:eb:66:ff:8c:ea:e5:35:bd:83:c1:28:c1:26:
e6:c6:5e:25:d5:e0:b6:41:db:b7:70:75:8a:e1:93:
bd:0d:12:3f:36:61:ff:ed:d2:6c:79:54:1e:5f:f5:
df:9c:15:f4:2d:bb:cd:a3:16:a0:bf:a3:38:ab:d0:
6c:43:f2:4d:40:6d:e6:c6:d3:b6:1f:c4:ae:df:02:
97:75:25:db:19:fa:1c:6a:ef:4d:2b:60:26:15:81:
3c:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:8F:6C:EA:0C:F7:86:AE:D8:F3:61:FB:73:8E:54:4D:F1:C7:50:F3
X509v3 Authority Key Identifier:
keyid:F7:5D:8B:52:81:5F:3F:26:13:E9:48:99:2E:C9:FE:66:0F:69:49:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/912LUoFfPyYT6UiZLsn-Zg9pSbQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9514ed-276e-4aba-897e-a4410e10b6f5/1/mo9s6gz3hq7Y82H7c45UTfHHUPM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9514ed-276e-4aba-897e-a4410e10b6f5/1/912LUoFfPyYT6UiZLsn-Zg9pSbQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.73.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:3d:e1:d7:45:3a:94:09:25:3a:03:ab:70:78:39:2f:38:05:
81:1c:7f:2f:e8:71:ee:07:81:a1:83:ae:02:6c:32:bb:01:02:
9d:4a:9a:7b:d5:c7:27:9b:d8:4e:bd:c7:75:b6:cc:c9:ec:e9:
63:12:a5:53:36:63:95:73:41:1d:14:cb:bf:9d:52:c0:45:bd:
56:c9:70:8a:ed:86:95:65:69:a8:b1:f1:c8:7b:60:f6:b9:a0:
a0:98:81:40:f6:d9:6d:d0:66:a3:f3:85:81:72:c7:53:03:bb:
0b:e3:cf:73:76:c6:32:c2:f5:5d:15:9e:c1:7a:6e:0e:bf:67:
28:8a:d7:7c:13:94:26:e5:e2:01:0a:27:0c:28:8b:a9:1a:a2:
8f:c2:19:d3:5d:44:41:c9:a9:39:51:00:54:75:51:68:a1:21:
78:8d:2f:85:db:78:18:9c:3f:5c:3a:e3:77:9c:bb:c8:3f:f1:
1a:74:8d:90:87:64:25:82:a2:b9:bf:8a:24:4f:25:76:e4:17:
16:f1:6a:69:df:45:83:27:2b:ac:32:d3:a5:73:37:41:b2:61:
2d:ee:b7:a4:64:6b:a6:e1:8c:d7:df:e5:d5:73:2a:9f:d5:44:
fb:53:cb:4a:11:4c:14:dc:92:e3:d2:4a:c8:68:2b:f4:2c:d4:
a7:2d:63:96
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzHJiPf8gvgToWDD7wfrEytMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY3NWQ4YjUyODE1ZjNmMjYxM2U5NDg5OTJlYzlmZTY2MGY2
OTQ5YjQwHhcNMjQwMTAxMjIzMDE0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YThmNmNlYTBjZjc4NmFlZDhmMzYxZmI3MzhlNTQ0ZGYxYzc1MGYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg4E39tbrFDP2MBNcTYOZkshm5FAA
H68rnEAlqiP1WNH8UiLMZNVrRoxA0qFzIYdO1qespoddPC6wwFPnRGp6/4ZfI71E
DUWq1cJm3GWBv2gXSURyQ36FHqeLqopMd5yNchhC1j0GAERlmWWFnsnOcESEbQVd
RwnuJUIWoCTVttNoCFv7ElRswKrRY9+CKsZdsfH/2Crfj/FLCEI94X7V2fIbKkmL
fetm/4zq5TW9g8EowSbmxl4l1eC2Qdu3cHWK4ZO9DRI/NmH/7dJseVQeX/XfnBX0
LbvNoxagv6M4q9BsQ/JNQG3mxtO2H8Su3wKXdSXbGfocau9NK2AmFYE8xwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJqPbOoM94au2PNh+3OOVE3xx1DzMB8GA1UdIwQY
MBaAFPddi1KBXz8mE+lImS7J/mYPaUm0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOTEyTFVvRmZQeVlUNlVpWkxzbi1aZzlwU2JRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC85NTE0ZWQtMjc2ZS00YWJhLTg5N2Ut
YTQ0MTBlMTBiNmY1LzEvbW85czZnejNocTdZODJIN2M0NVVUZkhIVVBNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOC85NTE0ZWQtMjc2ZS00YWJhLTg5N2UtYTQ0MTBlMTBiNmY1
LzEvOTEyTFVvRmZQeVlUNlVpWkxzbi1aZzlwU2JRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwjJJMA0G
CSqGSIb3DQEBCwUAA4IBAQCpPeHXRTqUCSU6A6tweDkvOAWBHH8v6HHuB4Ghg64C
bDK7AQKdSpp71ccnm9hOvcd1tszJ7OljEqVTNmOVc0EdFMu/nVLARb1WyXCK7YaV
ZWmosfHIe2D2uaCgmIFA9tlt0Gaj84WBcsdTA7sL489zdsYywvVdFZ7Bem4Ov2co
itd8E5Qm5eIBCicMKIupGqKPwhnTXURByak5UQBUdVFooSF4jS+F23gYnD9cOuN3
nLvIP/EadI2Qh2QlgqK5v4okTyV25BcW8Wpp30WDJyusMtOlczdBsmEt7rekZGum
4YzX3+XVcyqf1UT7U8tKEUwU3JLj0krIaCv0LNSnLWOW
-----END CERTIFICATE-----
Generated at Tue Mar 12 14:23:32 2024 by rpki-client on console-fra.rpki-client.org