Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/9786da-1f4c-408c-b202-00d2fac5f010/1/mTLOeDJ9TxhXjzOYKhkVVkOYkno.roa
File: mTLOeDJ9TxhXjzOYKhkVVkOYkno.roa (raw, json)
Hash identifier: VHknBz9u0y53j5Qt1zHi7Lf553xTmI/3bcE/uzLC8lo=
Subject key identifier: 99:32:CE:78:32:7D:4F:18:57:8F:33:98:2A:19:15:56:43:98:92:7A
Certificate issuer: /CN=5e67660af7523c61b7f95d08488d583e9d514f6b
Certificate serial: 018C82417280E47FE64821DAE9E8FA949411
Authority key identifier: 5E:67:66:0A:F7:52:3C:61:B7:F9:5D:08:48:8D:58:3E:9D:51:4F:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XmdmCvdSPGG3-V0ISI1YPp1RT2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/9786da-1f4c-408c-b202-00d2fac5f010/1/mTLOeDJ9TxhXjzOYKhkVVkOYkno.roa
Signing time: Tue 19 Dec 2023 13:26:16 +0000
ROA not before: Tue 19 Dec 2023 13:26:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56971
IP address blocks: 185.31.200.0/24 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:82:41:72:80:e4:7f:e6:48:21:da:e9:e8:fa:94:94:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e67660af7523c61b7f95d08488d583e9d514f6b
Validity
Not Before: Dec 19 13:26:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9932ce78327d4f18578f33982a1915564398927a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:21:03:03:70:32:63:db:14:2e:99:59:fe:6a:
78:f8:8c:e2:8a:49:ad:ec:ea:58:f0:75:79:d7:e0:
da:e8:25:8a:a4:79:64:39:43:bd:4a:25:40:8d:dc:
1d:8e:e8:d5:33:ef:07:8d:77:cc:3c:16:b1:f5:8e:
39:d8:97:3a:53:b1:e2:5b:d1:83:cc:e5:43:86:0c:
9a:8b:99:1d:71:78:c5:9f:f5:51:fb:62:5b:10:84:
1f:f7:64:32:98:7d:69:bd:e5:5f:c2:93:2f:0c:9a:
14:0d:57:37:4a:42:b3:d5:eb:85:8b:41:d5:18:4f:
5a:19:05:0b:b8:9b:1d:9f:48:8d:1e:f3:fb:60:0c:
93:00:76:97:43:85:2b:99:4e:1d:fa:4f:e0:25:53:
d9:db:03:06:24:27:04:67:b6:6b:ab:5f:21:23:4f:
d5:f6:cc:f9:83:be:6c:f9:c8:d1:3c:ba:2c:03:3a:
fc:71:8f:7e:aa:86:db:1e:8d:e5:a6:54:b0:84:f0:
7d:3b:36:23:c8:2f:a2:6f:e1:24:2c:8f:6e:51:ec:
4b:8c:40:e7:36:11:25:dc:99:58:7c:73:63:6b:85:
46:c1:ed:35:1d:92:1f:ef:c1:72:2b:e2:0d:af:0d:
58:ac:38:89:a2:3c:b6:20:29:80:9c:dc:b1:37:a5:
0e:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:32:CE:78:32:7D:4F:18:57:8F:33:98:2A:19:15:56:43:98:92:7A
X509v3 Authority Key Identifier:
keyid:5E:67:66:0A:F7:52:3C:61:B7:F9:5D:08:48:8D:58:3E:9D:51:4F:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XmdmCvdSPGG3-V0ISI1YPp1RT2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/9786da-1f4c-408c-b202-00d2fac5f010/1/mTLOeDJ9TxhXjzOYKhkVVkOYkno.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/9786da-1f4c-408c-b202-00d2fac5f010/1/XmdmCvdSPGG3-V0ISI1YPp1RT2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.31.200.0/24
Signature Algorithm: sha256WithRSAEncryption
91:a7:ac:d8:9a:78:29:e7:48:41:24:1b:9d:78:35:33:2e:6e:
92:20:d8:89:89:aa:37:45:ef:47:9f:dd:4f:6e:33:be:91:2a:
b5:18:7a:38:08:91:af:76:80:17:82:22:3f:2a:c0:14:fb:a0:
65:0d:40:77:de:22:98:9e:d6:a7:15:17:b9:41:d9:79:ab:3c:
8b:be:0b:58:52:17:cf:65:39:95:74:0a:92:b4:98:80:02:db:
9d:84:2d:ac:22:b8:59:e5:e8:fc:4f:70:15:d7:f8:5c:78:51:
27:23:0e:b4:2c:72:30:a9:8c:b1:ba:7e:8e:5e:7c:02:58:51:
8c:e6:94:41:ba:23:0f:6a:1d:e5:bd:46:00:c0:46:d6:98:f4:
74:b4:13:97:83:09:f5:ad:79:26:d2:d7:03:68:ad:5c:64:5a:
61:90:83:1e:9e:5d:97:14:c3:a2:55:51:82:ef:dd:b1:de:7f:
67:9c:31:5e:9a:29:aa:58:7a:14:fe:99:71:ab:09:4d:27:49:
3a:2b:f1:58:10:61:0f:a3:97:e6:23:b9:8b:82:f8:bb:22:04:
2c:00:94:8a:a0:be:11:b2:fd:b5:24:6f:e9:f8:91:c6:d5:b4:
63:ac:fb:24:e3:67:f3:ea:58:21:47:c9:cc:f5:7f:4c:d6:56:
b6:5d:01:36
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYyCQXKA5H/mSCHa6ej6lJQRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlNjc2NjBhZjc1MjNjNjFiN2Y5NWQwODQ4OGQ1ODNlOWQ1
MTRmNmIwHhcNMjMxMjE5MTMyNjE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5OTMyY2U3ODMyN2Q0ZjE4NTc4ZjMzOTgyYTE5MTU1NjQzOTg5MjdhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoCEDA3AyY9sULplZ/mp4+Iziikmt
7OpY8HV51+Da6CWKpHlkOUO9SiVAjdwdjujVM+8HjXfMPBax9Y452Jc6U7HiW9GD
zOVDhgyai5kdcXjFn/VR+2JbEIQf92QymH1pveVfwpMvDJoUDVc3SkKz1euFi0HV
GE9aGQULuJsdn0iNHvP7YAyTAHaXQ4UrmU4d+k/gJVPZ2wMGJCcEZ7Zrq18hI0/V
9sz5g75s+cjRPLosAzr8cY9+qobbHo3lplSwhPB9OzYjyC+ib+EkLI9uUexLjEDn
NhEl3JlYfHNja4VGwe01HZIf78FyK+INrw1YrDiJojy2ICmAnNyxN6UOIwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJkyzngyfU8YV48zmCoZFVZDmJJ6MB8GA1UdIwQY
MBaAFF5nZgr3Ujxht/ldCEiNWD6dUU9rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWG1kbUN2ZFNQR0czLVYwSVNJMVlQcDFSVDJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85Nzg2ZGEtMWY0Yy00MDhjLWIyMDIt
MDBkMmZhYzVmMDEwLzEvbVRMT2VESjlUeGhYanpPWUtoa1ZWa09Za25vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85Nzg2ZGEtMWY0Yy00MDhjLWIyMDItMDBkMmZhYzVmMDEw
LzEvWG1kbUN2ZFNQR0czLVYwSVNJMVlQcDFSVDJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuR/IMA0G
CSqGSIb3DQEBCwUAA4IBAQCRp6zYmngp50hBJBudeDUzLm6SINiJiao3Re9Hn91P
bjO+kSq1GHo4CJGvdoAXgiI/KsAU+6BlDUB33iKYntanFRe5Qdl5qzyLvgtYUhfP
ZTmVdAqStJiAAtudhC2sIrhZ5ej8T3AV1/hceFEnIw60LHIwqYyxun6OXnwCWFGM
5pRBuiMPah3lvUYAwEbWmPR0tBOXgwn1rXkm0tcDaK1cZFphkIMenl2XFMOiVVGC
792x3n9nnDFemimqWHoU/plxqwlNJ0k6K/FYEGEPo5fmI7mLgvi7IgQsAJSKoL4R
sv21JG/p+JHG1bRjrPsk42fz6lghR8nM9X9M1la2XQE2
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:55 2024 by rpki-client on console-ams.rpki-client.org