Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/AlD0brMX0L6zqGmvycZ8vTiX5JE.roa
File: AlD0brMX0L6zqGmvycZ8vTiX5JE.roa (raw, json)
Hash identifier: AkfbiA8MrNE/5h+g5LEnu4/oWkwg4SiIy7f/cTdh0C0=
Subject key identifier: 02:50:F4:6E:B3:17:D0:BE:B3:A8:69:AF:C9:C6:7C:BD:38:97:E4:91
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 01856DEF7A1B44767392C3AD1488BD91E3ED
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/AlD0brMX0L6zqGmvycZ8vTiX5JE.roa
Signing time: Sun 01 Jan 2023 15:24:49 +0000
ROA not before: Sun 01 Jan 2023 15:24:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202121
IP address blocks: 148.81.246.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ef:7a:1b:44:76:73:92:c3:ad:14:88:bd:91:e3:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Jan 1 15:24:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0250f46eb317d0beb3a869afc9c67cbd3897e491
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:de:33:6d:e3:46:d3:1a:70:30:a4:b0:7b:cf:
2f:b5:81:9c:05:0f:ce:52:bb:13:04:a8:4a:ca:0c:
06:4a:ea:07:83:53:23:b0:5f:2e:8d:4e:0f:4f:43:
42:9d:06:78:5e:93:f4:ee:89:2c:59:a3:1b:ce:e1:
7f:f5:72:ee:8b:63:a4:54:ee:18:9b:e9:e1:f3:92:
fe:26:d4:7a:4e:e7:2d:dc:6e:86:ab:04:13:e0:d2:
66:e6:f7:c9:c4:16:96:43:f5:ca:be:ad:f1:50:a2:
60:26:e8:c7:cc:ea:39:36:f1:95:17:f3:eb:d2:8e:
d1:5b:c0:da:f7:6a:71:da:69:c2:42:4f:d0:90:c0:
e9:f9:0b:be:8d:f5:27:af:41:e1:ab:ab:7e:48:15:
b5:00:cd:16:47:a5:9c:66:de:f6:38:79:69:3f:7c:
0c:df:fd:a0:70:81:98:3c:b8:29:65:07:6b:ee:9e:
16:18:a8:1d:74:29:0f:69:6e:e9:59:86:cb:2e:be:
a7:6b:5a:79:8f:1e:5a:ce:b4:fe:c6:8f:8a:f0:08:
6e:ed:5c:06:79:f5:17:2e:a8:23:55:f2:65:c5:dd:
fd:9a:c4:7b:18:95:e8:26:b3:d7:8e:89:c5:b5:02:
a5:eb:b0:24:6e:3b:9d:78:14:86:79:b2:f4:c1:6c:
e6:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:50:F4:6E:B3:17:D0:BE:B3:A8:69:AF:C9:C6:7C:BD:38:97:E4:91
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/AlD0brMX0L6zqGmvycZ8vTiX5JE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
148.81.246.0/23
Signature Algorithm: sha256WithRSAEncryption
14:fd:75:a0:9e:0d:06:2f:e9:2d:13:70:01:6f:e0:8a:a1:1a:
c9:9a:b1:b2:d3:8d:e7:65:2c:19:c5:e2:f3:73:fe:ad:26:f1:
4b:b2:f1:b0:29:ba:f0:65:2b:09:14:7b:49:bb:9f:57:a3:c8:
5e:c0:fc:5e:99:6b:38:a6:99:d5:cf:59:d9:15:eb:56:21:5f:
31:94:16:12:8f:46:c2:b7:17:45:ab:ba:73:5a:3d:98:50:2c:
a3:bd:e9:cc:4f:68:42:99:41:66:34:db:e8:c3:44:2c:17:c7:
5e:c4:61:6d:0c:05:80:25:e7:38:bb:9a:df:b0:c9:d4:5e:1d:
f3:d0:72:4f:5c:e1:b6:32:9a:2a:ce:90:6c:ad:a9:85:eb:5b:
25:d9:ab:aa:08:4a:f1:2f:5b:a0:10:04:4f:29:ba:84:bd:65:
20:28:37:40:0d:0c:29:24:9c:a0:60:38:20:a5:36:3d:96:f0:
b3:94:76:db:b2:5a:a1:15:92:5e:1d:23:0b:dc:9f:06:d7:58:
d4:51:d0:85:33:25:fd:99:fc:3c:37:6d:ff:00:15:ad:07:2d:
e3:a9:88:0d:5e:00:f2:4d:12:01:40:1b:bb:36:f6:c7:12:ba:
32:32:a8:18:b4:3b:85:11:f0:a4:75:37:70:f9:d7:86:3f:89:
67:b5:92:13
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVt73obRHZzksOtFIi9kePtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwYzQwOTYxM2ZlYTBhMmI0NDJjZTExMmU5Y2JkYjQ4NWUw
MTE4OGYwHhcNMjMwMTAxMTUyNDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMjUwZjQ2ZWIzMTdkMGJlYjNhODY5YWZjOWM2N2NiZDM4OTdlNDkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoN4zbeNG0xpwMKSwe88vtYGcBQ/O
UrsTBKhKygwGSuoHg1MjsF8ujU4PT0NCnQZ4XpP07oksWaMbzuF/9XLui2OkVO4Y
m+nh85L+JtR6Tuct3G6GqwQT4NJm5vfJxBaWQ/XKvq3xUKJgJujHzOo5NvGVF/Pr
0o7RW8Da92px2mnCQk/QkMDp+Qu+jfUnr0Hhq6t+SBW1AM0WR6WcZt72OHlpP3wM
3/2gcIGYPLgpZQdr7p4WGKgddCkPaW7pWYbLLr6na1p5jx5azrT+xo+K8Ahu7VwG
efUXLqgjVfJlxd39msR7GJXoJrPXjonFtQKl67AkbjudeBSGebL0wWzmXwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAJQ9G6zF9C+s6hpr8nGfL04l+SRMB8GA1UdIwQY
MBaAFDDECWE/6gorRCzhEunL20heARiPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTU1RSllUX3FDaXRFTE9FUzZjdmJTRjRCR0k4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9iNzhmYjUtYWZjYS00ZGI3LTg4ODYt
YzA2NzFiZjRjZjNlLzEvQWxEMGJyTVgwTDZ6cUdtdnljWjh2VGlYNUpFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS9iNzhmYjUtYWZjYS00ZGI3LTg4ODYtYzA2NzFiZjRjZjNl
LzEvTU1RSllUX3FDaXRFTE9FUzZjdmJTRjRCR0k4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBlFH2MA0G
CSqGSIb3DQEBCwUAA4IBAQAU/XWgng0GL+ktE3ABb+CKoRrJmrGy043nZSwZxeLz
c/6tJvFLsvGwKbrwZSsJFHtJu59Xo8hewPxemWs4ppnVz1nZFetWIV8xlBYSj0bC
txdFq7pzWj2YUCyjvenMT2hCmUFmNNvow0QsF8dexGFtDAWAJec4u5rfsMnUXh3z
0HJPXOG2MpoqzpBsramF61sl2auqCErxL1ugEARPKbqEvWUgKDdADQwpJJygYDgg
pTY9lvCzlHbbslqhFZJeHSML3J8G11jUUdCFMyX9mfw8N23/ABWtBy3jqYgNXgDy
TRIBQBu7NvbHEroyMqgYtDuFEfCkdTdw+deGP4lntZIT
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:40 2024 by rpki-client on console-fra.rpki-client.org