Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/IIMJPiyy4tPjEvjT6mV--wsSZ4E.roa
File: IIMJPiyy4tPjEvjT6mV--wsSZ4E.roa (raw, json)
Hash identifier: CT1X0nOsTS+gNNt/IdAMd+FsuzofevuHyTeapLQJ8eE=
Subject key identifier: 20:83:09:3E:2C:B2:E2:D3:E3:12:F8:D3:EA:65:7E:FB:0B:12:67:81
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 01916F9DDFDC26DE5A7E2A9EBF77AE50A9BE
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/IIMJPiyy4tPjEvjT6mV--wsSZ4E.roa
Signing time: Tue 20 Aug 2024 11:48:23 +0000
ROA not before: Tue 20 Aug 2024 11:48:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205275
IP address blocks: 81.181.66.0/23 maxlen: 24
194.102.33.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 01:47:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:6f:9d:df:dc:26:de:5a:7e:2a:9e:bf:77:ae:50:a9:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Aug 20 11:48:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2083093e2cb2e2d3e312f8d3ea657efb0b126781
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:83:63:31:a0:2b:67:8f:e7:03:a8:89:cf:07:
41:d4:d5:3e:8c:4e:50:f1:85:74:ba:e6:a5:1d:96:
52:99:45:6c:56:71:20:50:c7:96:21:a1:16:b7:15:
f8:3d:ca:82:c9:08:22:24:f8:d5:09:06:a7:f0:b1:
cd:c4:2a:e7:5f:45:20:0a:f4:91:89:ab:e9:ba:07:
9c:a5:c1:a0:9f:68:e9:67:c7:e5:d9:e1:8f:48:5d:
01:b2:70:3e:3a:d1:80:a5:a0:ee:3c:5c:5d:a9:28:
60:f4:b1:3e:62:4b:14:ec:cc:44:e3:1b:69:43:04:
d4:0d:57:55:81:e4:3a:ab:ea:cf:32:d2:fb:3e:bc:
ad:a2:1d:e1:d9:03:51:26:9e:43:1f:70:a2:58:4b:
c6:69:01:36:05:8e:cb:42:d3:dc:5c:ef:36:1c:cc:
4a:a5:d3:62:ea:1c:d3:a8:4b:c1:51:25:98:79:f6:
38:86:3b:e3:59:d3:e1:7e:78:ae:8c:33:9a:7a:1f:
b2:c2:cf:87:b7:66:02:c3:90:20:a7:b4:89:5c:dd:
7b:2d:88:ab:2d:22:7c:39:cc:4b:2b:7a:10:e5:a7:
c0:cd:a9:05:f3:e7:15:34:02:52:e0:fc:c2:f0:fe:
92:2c:57:ce:b2:bd:b8:96:87:3f:48:65:35:1e:74:
b2:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:83:09:3E:2C:B2:E2:D3:E3:12:F8:D3:EA:65:7E:FB:0B:12:67:81
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/IIMJPiyy4tPjEvjT6mV--wsSZ4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.181.66.0/23
194.102.33.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:04:db:ff:e7:dc:46:3e:54:b0:fd:95:5c:ff:d9:89:f9:27:
5e:a5:49:5e:10:3b:0e:b1:5d:56:00:7a:f3:f5:ae:10:93:0e:
9d:b4:21:9a:5a:08:e5:09:0b:fc:30:d4:61:ba:4d:26:5a:86:
2c:81:fa:3a:da:67:a5:f5:00:5b:17:97:f4:8b:32:18:a1:37:
85:cb:48:4b:e5:9c:7e:55:1b:96:f0:2f:fa:2e:b9:8d:39:e2:
86:cc:88:76:39:49:45:51:ae:74:d6:71:a7:3b:10:3c:9d:87:
a0:c7:00:f7:99:a1:1c:8a:a4:ef:34:a1:14:3c:5a:01:d3:6c:
18:89:54:73:7a:a7:32:27:ce:28:a0:5d:03:89:c4:77:02:b8:
97:95:cf:01:e6:1f:bb:e5:77:95:67:66:92:16:40:0e:21:44:
3e:66:93:1e:a1:87:c2:d3:84:d4:50:fa:1d:a4:6e:53:cb:43:
f8:94:90:68:08:da:9b:0d:7f:d6:3b:c6:41:d4:ea:b6:7b:d0:
a2:73:0e:9d:c7:29:f2:49:4d:c6:33:66:0d:ff:56:78:60:94:
3e:fd:06:66:5f:f6:50:b1:15:e5:0c:84:91:28:59:f6:73:b0:
de:80:0b:a0:3a:ec:f4:3c:44:f4:3b:32:61:b7:8b:4c:c8:27:
f2:18:ad:53
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZFvnd/cJt5afiqev3euUKm+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxODM3ODU5MTZjZDk4ZDdjNzcwZDY4NTE0NTQ5OWE4YTBh
MTU3MjIwHhcNMjQwODIwMTE0ODIzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMDgzMDkzZTJjYjJlMmQzZTMxMmY4ZDNlYTY1N2VmYjBiMTI2NzgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt4NjMaArZ4/nA6iJzwdB1NU+jE5Q
8YV0uualHZZSmUVsVnEgUMeWIaEWtxX4PcqCyQgiJPjVCQan8LHNxCrnX0UgCvSR
iavpugecpcGgn2jpZ8fl2eGPSF0BsnA+OtGApaDuPFxdqShg9LE+YksU7MxE4xtp
QwTUDVdVgeQ6q+rPMtL7Prytoh3h2QNRJp5DH3CiWEvGaQE2BY7LQtPcXO82HMxK
pdNi6hzTqEvBUSWYefY4hjvjWdPhfniujDOaeh+yws+Ht2YCw5Agp7SJXN17LYir
LSJ8OcxLK3oQ5afAzakF8+cVNAJS4PzC8P6SLFfOsr24loc/SGU1HnSy1wIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFCCDCT4ssuLT4xL40+plfvsLEmeBMB8GA1UdIwQY
MBaAFDGDeFkWzZjXx3DWhRRUmaigoVciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEt
ZjUyYzQ3YzIyNWRiLzEvSUlNSlBpeXk0dFBqRXZqVDZtVi0td3NTWjRFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEtZjUyYzQ3YzIyNWRi
LzEvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBUbVCAwQA
wmYhMA0GCSqGSIb3DQEBCwUAA4IBAQBdBNv/59xGPlSw/ZVc/9mJ+SdepUleEDsO
sV1WAHrz9a4Qkw6dtCGaWgjlCQv8MNRhuk0mWoYsgfo62mel9QBbF5f0izIYoTeF
y0hL5Zx+VRuW8C/6LrmNOeKGzIh2OUlFUa501nGnOxA8nYegxwD3maEciqTvNKEU
PFoB02wYiVRzeqcyJ84ooF0DicR3AriXlc8B5h+75XeVZ2aSFkAOIUQ+ZpMeoYfC
04TUUPodpG5Ty0P4lJBoCNqbDX/WO8ZB1Oq2e9Cicw6dxynySU3GM2YN/1Z4YJQ+
/QZmX/ZQsRXlDISRKFn2c7DegAugOuz0PET0OzJht4tMyCfyGK1T
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:34:47 2025 by rpki-client