Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/mHLrxrOIsyzaivi0ybxkLqG0atQ.roa
File: mHLrxrOIsyzaivi0ybxkLqG0atQ.roa (raw, json)
Hash identifier: kmcETtYj6Nu8con1AasxjTpmL/FPbKUFHQ6IhLap+5M=
Subject key identifier: 98:72:EB:C6:B3:88:B3:2C:DA:8A:F8:B4:C9:BC:64:2E:A1:B4:6A:D4
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 018D603A66CD2EA6D33386B740530C1234F4
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/mHLrxrOIsyzaivi0ybxkLqG0atQ.roa
Signing time: Wed 31 Jan 2024 15:54:16 +0000
ROA not before: Wed 31 Jan 2024 15:54:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61002
IP address blocks: 80.96.107.0/24 maxlen: 24
80.97.54.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 29 Feb 2024 13:23:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:60:3a:66:cd:2e:a6:d3:33:86:b7:40:53:0c:12:34:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 31 15:54:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9872ebc6b388b32cda8af8b4c9bc642ea1b46ad4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:a5:37:bf:08:a0:ad:bf:72:31:13:3e:dd:51:
90:9c:df:c4:cc:f9:fa:95:05:64:f8:ad:fb:e2:08:
8c:9c:33:06:e5:a4:8e:14:b9:b5:a8:97:5e:b8:c4:
12:d2:ad:9a:ff:76:f8:19:f7:2c:9c:a2:59:2e:c6:
9f:2d:28:2f:fa:05:92:c9:d6:05:b2:e3:af:23:2e:
b4:1e:60:e7:a6:25:8b:f1:09:9a:58:12:cc:ed:cf:
a1:b2:7b:57:dc:54:41:8b:31:04:06:4e:19:d0:d6:
e1:27:0a:85:89:88:8e:d5:d8:d4:52:06:4c:88:9c:
d1:1c:5b:75:b6:8f:6b:ee:d3:3d:78:b4:f8:1c:14:
20:71:7a:c3:b6:f0:63:c4:f4:d8:1a:53:2f:9b:38:
ac:3b:8e:a4:2e:a8:8d:8b:c5:00:1f:7a:5c:5a:51:
9f:54:c8:6d:fd:09:4c:f1:a4:4e:25:41:72:64:5d:
b7:9c:77:78:b8:fd:81:be:46:cf:3f:fa:21:b2:12:
9d:33:27:a9:13:3f:67:8b:d8:66:c5:f0:33:ef:ab:
66:b1:f1:5a:aa:67:2d:1a:ed:70:27:10:c2:ca:23:
68:1f:60:21:14:a2:6c:9a:dc:8e:32:1b:54:a0:90:
be:74:82:a9:17:a3:fb:f2:29:8b:76:27:91:66:30:
e8:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:72:EB:C6:B3:88:B3:2C:DA:8A:F8:B4:C9:BC:64:2E:A1:B4:6A:D4
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/mHLrxrOIsyzaivi0ybxkLqG0atQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.107.0/24
80.97.54.0/23
Signature Algorithm: sha256WithRSAEncryption
bc:ac:cb:4e:b6:3e:b4:5e:1c:51:b3:12:c1:ac:b5:d5:ce:3d:
42:f8:12:d1:a0:20:ab:19:ee:33:f7:d0:a8:80:3c:ad:f6:b3:
6f:cb:a8:dd:60:38:1b:ce:14:1d:88:c1:e5:fc:14:74:52:d7:
b8:5c:b6:b3:80:6a:13:b7:0a:d9:ca:51:dd:1e:f0:70:c7:8e:
15:bb:96:7d:f5:42:2e:82:20:a5:eb:ef:1f:9d:0a:40:40:be:
78:3e:d9:28:29:97:d4:03:40:7d:c5:0d:57:74:27:94:e8:3f:
75:4e:62:61:ce:e9:dc:12:8b:58:7f:15:9f:91:52:aa:80:45:
4d:d7:96:df:e6:93:ad:1c:0d:ec:b0:57:4d:3c:d1:19:31:e5:
98:b1:39:96:91:d5:3f:34:96:35:0d:22:4a:29:e6:3c:bb:9d:
fc:8a:69:cf:d9:c9:99:73:a0:06:11:79:94:5b:23:9e:84:dc:
e1:c9:37:6c:f0:f9:c4:2d:e6:81:6e:c4:26:a0:dd:87:5f:0e:
a4:21:bd:f6:2f:61:8b:ca:dd:f5:89:e1:47:c4:eb:71:bd:83:
5b:36:a0:6f:2d:6f:88:32:d6:67:a5:a6:fb:0b:c7:94:9a:af:
90:a1:cc:4c:48:e0:28:28:3f:57:39:ad:ac:5e:65:d8:b0:56:
1f:3d:49:b4
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAY1gOmbNLqbTM4a3QFMMEjT0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxODM3ODU5MTZjZDk4ZDdjNzcwZDY4NTE0NTQ5OWE4YTBh
MTU3MjIwHhcNMjQwMTMxMTU1NDE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ODcyZWJjNmIzODhiMzJjZGE4YWY4YjRjOWJjNjQyZWExYjQ2YWQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA96U3vwigrb9yMRM+3VGQnN/EzPn6
lQVk+K374giMnDMG5aSOFLm1qJdeuMQS0q2a/3b4GfcsnKJZLsafLSgv+gWSydYF
suOvIy60HmDnpiWL8QmaWBLM7c+hsntX3FRBizEEBk4Z0NbhJwqFiYiO1djUUgZM
iJzRHFt1to9r7tM9eLT4HBQgcXrDtvBjxPTYGlMvmzisO46kLqiNi8UAH3pcWlGf
VMht/QlM8aROJUFyZF23nHd4uP2BvkbPP/ohshKdMyepEz9ni9hmxfAz76tmsfFa
qmctGu1wJxDCyiNoH2AhFKJsmtyOMhtUoJC+dIKpF6P78imLdieRZjDoVwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFJhy68aziLMs2or4tMm8ZC6htGrUMB8GA1UdIwQY
MBaAFDGDeFkWzZjXx3DWhRRUmaigoVciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEt
ZjUyYzQ3YzIyNWRiLzEvbUhMcnhyT0lzeXphaXZpMHlieGtMcUcwYXRRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEtZjUyYzQ3YzIyNWRi
LzEvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAUGBrAwQB
UGE2MA0GCSqGSIb3DQEBCwUAA4IBAQC8rMtOtj60XhxRsxLBrLXVzj1C+BLRoCCr
Ge4z99CogDyt9rNvy6jdYDgbzhQdiMHl/BR0Ute4XLazgGoTtwrZylHdHvBwx44V
u5Z99UIugiCl6+8fnQpAQL54PtkoKZfUA0B9xQ1XdCeU6D91TmJhzuncEotYfxWf
kVKqgEVN15bf5pOtHA3ssFdNPNEZMeWYsTmWkdU/NJY1DSJKKeY8u538imnP2cmZ
c6AGEXmUWyOehNzhyTds8PnELeaBbsQmoN2HXw6kIb32L2GLyt31ieFHxOtxvYNb
NqBvLW+IMtZnpab7C8eUmq+QocxMSOAoKD9XOa2sXmXYsFYfPUm0
-----END CERTIFICATE-----
Generated at Thu Feb 29 16:39:01 2024 by rpki-client on console-ams.rpki-client.org