Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/MmiUhk_wn9g00lx-Oc_Niagqf_E.roa
File: MmiUhk_wn9g00lx-Oc_Niagqf_E.roa (raw, json)
Hash identifier: w4pCQ7CQ9iUSR9zRxzwjJkN1+8hVdquwPtel7prP8GI=
Subject key identifier: 32:68:94:86:4F:F0:9F:D8:34:D2:5C:7E:39:CF:CD:89:A8:2A:7F:F1
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 01856F26EB0D423335287B528D2331A79485
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/MmiUhk_wn9g00lx-Oc_Niagqf_E.roa
Signing time: Sun 01 Jan 2023 21:04:59 +0000
ROA not before: Sun 01 Jan 2023 21:04:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201842
IP address blocks: 193.233.79.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:26:eb:0d:42:33:35:28:7b:52:8d:23:31:a7:94:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 1 21:04:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=326894864ff09fd834d25c7e39cfcd89a82a7ff1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:c0:fd:56:43:c3:fc:b7:bd:7f:b5:45:5e:28:
6c:f4:a5:b7:19:65:74:04:a8:0f:e2:ec:e8:c7:eb:
19:52:66:eb:be:ec:c9:c2:c4:2b:b1:78:d3:02:f8:
d6:25:6b:a2:49:31:e0:6f:aa:ad:4d:25:02:8b:2a:
fa:23:ad:39:4b:1e:78:23:1e:04:55:e4:39:a8:2f:
f2:3d:01:5e:b8:ce:ee:47:65:1c:36:03:da:ea:fc:
d4:90:6b:ff:4c:89:97:cb:b7:0d:40:2f:75:ae:9a:
23:5b:4c:b5:f7:a2:1d:9f:3f:5d:4a:bc:3c:90:08:
4f:6a:1c:da:2c:4b:51:3f:3e:30:2d:8f:9a:7e:d3:
21:b0:ad:bb:3c:81:76:ee:dd:6a:39:8c:59:7b:5c:
aa:7a:7d:2d:11:2b:fe:1d:61:aa:c1:4f:f3:c8:1c:
93:93:b9:04:4b:e8:e7:a3:db:cf:8a:4f:99:47:99:
50:6f:3f:ea:90:8d:00:1a:7d:41:e3:da:7f:e9:7d:
53:87:c0:81:19:8b:87:34:bb:0e:8b:da:21:ea:ba:
a8:43:08:92:71:13:dd:32:15:0d:0c:3f:52:28:33:
8f:6d:1c:3c:66:0b:86:91:e9:5e:1a:0e:03:a1:37:
ad:fc:90:aa:54:5e:bc:ea:f2:b5:90:b4:0c:03:67:
3c:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:68:94:86:4F:F0:9F:D8:34:D2:5C:7E:39:CF:CD:89:A8:2A:7F:F1
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/MmiUhk_wn9g00lx-Oc_Niagqf_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.79.0/24
Signature Algorithm: sha256WithRSAEncryption
56:95:3c:53:ba:59:e3:d7:0f:b5:ac:34:c9:8c:1c:c0:89:c3:
48:aa:eb:df:7b:be:f9:ba:cd:4f:d3:65:a9:6b:f1:24:4e:b6:
d2:db:98:e8:45:52:7b:ef:2c:da:d3:40:47:3a:ac:18:bf:80:
a3:3d:63:bf:c0:66:29:3b:e3:48:dd:3d:51:b3:a1:25:a9:a1:
e2:af:bf:86:67:6d:31:4f:e4:be:88:89:1d:52:99:87:62:ac:
a5:58:78:41:25:dc:f0:9d:8d:a8:c6:c0:a5:bf:86:b8:52:96:
71:8e:cc:b4:e8:dc:95:fb:93:49:8c:95:68:ca:53:31:d8:e1:
31:5b:71:67:f6:0f:65:20:85:98:d0:fb:58:9e:9d:32:bc:8f:
3a:10:5d:cc:3d:c0:73:f8:1c:37:a4:33:96:b9:9e:70:38:b8:
44:b6:8c:f7:cc:c5:59:8d:92:0b:11:cc:82:d3:4e:58:f6:28:
0e:ea:2c:b9:de:70:e5:1c:df:9e:b4:a0:e4:ed:a7:c9:66:bf:
3b:24:65:6d:8b:c0:70:d8:fe:e5:ac:8e:fb:ea:0f:47:15:54:
27:24:06:3c:06:ee:06:7d:db:a6:ab:8b:c1:2d:30:ce:88:9c:
6c:58:4b:64:0a:b9:ea:cd:69:fe:da:1c:47:b6:64:71:2b:e5:
36:a0:ac:40
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvJusNQjM1KHtSjSMxp5SFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2ZDY0OGJkYmE5NjU0NjFiMWU4YzExYjlkZDQzNmM2MTM4
Mjg3M2MwHhcNMjMwMTAxMjEwNDU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMjY4OTQ4NjRmZjA5ZmQ4MzRkMjVjN2UzOWNmY2Q4OWE4MmE3ZmYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk8D9VkPD/Le9f7VFXihs9KW3GWV0
BKgP4uzox+sZUmbrvuzJwsQrsXjTAvjWJWuiSTHgb6qtTSUCiyr6I605Sx54Ix4E
VeQ5qC/yPQFeuM7uR2UcNgPa6vzUkGv/TImXy7cNQC91rpojW0y196Idnz9dSrw8
kAhPahzaLEtRPz4wLY+aftMhsK27PIF27t1qOYxZe1yqen0tESv+HWGqwU/zyByT
k7kES+jno9vPik+ZR5lQbz/qkI0AGn1B49p/6X1Th8CBGYuHNLsOi9oh6rqoQwiS
cRPdMhUNDD9SKDOPbRw8ZguGkeleGg4DoTet/JCqVF686vK1kLQMA2c8BwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDJolIZP8J/YNNJcfjnPzYmoKn/xMB8GA1UdIwQY
MBaAFIbWSL26llRhsejBG53UNsYTgoc8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmIt
NGRlYzRkYWZlZTQ5LzEvTW1pVWhrX3duOWcwMGx4LU9jX05pYWdxZl9FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmItNGRlYzRkYWZlZTQ5
LzEvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwelPMA0G
CSqGSIb3DQEBCwUAA4IBAQBWlTxTulnj1w+1rDTJjBzAicNIquvfe775us1P02Wp
a/EkTrbS25joRVJ77yza00BHOqwYv4CjPWO/wGYpO+NI3T1Rs6ElqaHir7+GZ20x
T+S+iIkdUpmHYqylWHhBJdzwnY2oxsClv4a4UpZxjsy06NyV+5NJjJVoylMx2OEx
W3Fn9g9lIIWY0PtYnp0yvI86EF3MPcBz+Bw3pDOWuZ5wOLhEtoz3zMVZjZILEcyC
005Y9igO6iy53nDlHN+etKDk7afJZr87JGVti8Bw2P7lrI776g9HFVQnJAY8Bu4G
fdumq4vBLTDOiJxsWEtkCrnqzWn+2hxHtmRxK+U2oKxA
-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:05 2024 by rpki-client on console-fra.rpki-client.org