Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/456eac-65df-4dd1-bf9c-0103a899c2de/1/p0MrcCDjFiQmtaB470QYjux_C5g.roa
File: p0MrcCDjFiQmtaB470QYjux_C5g.roa (raw, json)
Hash identifier: 5c9KuNopc+18ZeTpBvvvtTMR2PLjiafxh+6pOMMW5/c=
Subject key identifier: A7:43:2B:70:20:E3:16:24:26:B5:A0:78:EF:44:18:8E:EC:7F:0B:98
Certificate issuer: /CN=99fad2527eafa95215a8fed67a27fad3cfb2d37f
Certificate serial: 018C0F82D4A90C50FB82BD29140A00D3256B
Authority key identifier: 99:FA:D2:52:7E:AF:A9:52:15:A8:FE:D6:7A:27:FA:D3:CF:B2:D3:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mfrSUn6vqVIVqP7Weif608-y038.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/456eac-65df-4dd1-bf9c-0103a899c2de/1/p0MrcCDjFiQmtaB470QYjux_C5g.roa
Signing time: Mon 27 Nov 2023 06:41:21 +0000
ROA not before: Mon 27 Nov 2023 06:41:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204828
IP address blocks: 195.184.76.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:0f:82:d4:a9:0c:50:fb:82:bd:29:14:0a:00:d3:25:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99fad2527eafa95215a8fed67a27fad3cfb2d37f
Validity
Not Before: Nov 27 06:41:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a7432b7020e3162426b5a078ef44188eec7f0b98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:d9:c3:75:7c:50:cf:64:6e:b2:d2:fe:b2:75:
fc:7e:de:86:82:98:4a:42:ef:cf:57:5e:85:06:4e:
a9:71:87:81:b9:bf:6d:4c:e8:63:11:43:64:a4:f3:
46:33:6c:4d:ca:d4:ae:09:71:8d:7d:ac:31:7b:7d:
13:d0:44:22:3d:85:4b:8f:4b:0e:cf:1f:a7:c8:98:
2c:65:61:c3:62:7e:97:54:c2:6f:dc:41:f2:e7:da:
93:ac:25:4f:b7:af:28:96:a5:d8:20:8e:9d:f9:18:
49:82:b4:fc:0e:89:bf:52:68:81:6e:a4:29:83:69:
75:23:eb:83:83:33:97:ed:1a:ce:26:e2:4e:12:cb:
0f:eb:3a:f1:7f:6a:40:4b:2f:39:43:30:8f:25:86:
66:d9:45:87:47:06:7a:42:75:4d:2f:e0:58:42:0d:
19:73:6f:8a:fc:cd:1d:41:16:e7:b6:14:b8:db:7d:
79:ae:25:59:07:e6:36:d6:30:71:7a:07:1d:19:60:
8b:df:f8:60:e0:43:63:11:14:9d:b0:10:9f:72:ad:
ce:18:50:3b:bf:34:d1:ba:58:d7:24:4b:b1:f1:a3:
9a:83:9b:a9:82:f5:93:4a:e5:ac:4f:2d:bc:c9:4c:
ac:65:dd:49:3e:53:b2:51:28:3e:f2:24:05:df:bd:
3f:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:43:2B:70:20:E3:16:24:26:B5:A0:78:EF:44:18:8E:EC:7F:0B:98
X509v3 Authority Key Identifier:
keyid:99:FA:D2:52:7E:AF:A9:52:15:A8:FE:D6:7A:27:FA:D3:CF:B2:D3:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mfrSUn6vqVIVqP7Weif608-y038.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/456eac-65df-4dd1-bf9c-0103a899c2de/1/p0MrcCDjFiQmtaB470QYjux_C5g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/456eac-65df-4dd1-bf9c-0103a899c2de/1/mfrSUn6vqVIVqP7Weif608-y038.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.184.76.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:18:05:74:9c:09:4d:9f:0d:ce:e6:fb:e8:47:a8:b8:39:c7:
94:e7:d8:ca:b3:89:0c:75:d0:1e:07:19:f9:44:95:da:f6:e3:
0e:f0:d9:ad:a0:99:5c:3c:29:c9:20:42:a5:62:d1:6a:fd:27:
68:98:ae:f4:d2:d0:89:b5:a7:bd:25:f6:64:01:0f:e5:e0:6f:
b5:fe:62:ba:51:fc:57:4b:aa:bc:02:15:8a:a4:61:72:7b:df:
82:2e:80:12:e3:0d:bc:47:04:2b:49:6c:58:71:45:fd:ac:c2:
29:6c:14:5a:fe:73:ef:f6:6f:27:f1:57:16:06:32:30:aa:b5:
ad:2b:b0:4f:a3:df:a0:13:f6:6e:fe:bc:49:92:ca:69:fd:af:
a7:2d:06:97:f9:97:69:7c:98:1f:2a:c9:ab:ac:4a:4c:eb:9a:
f1:c3:ff:d6:59:ad:16:ac:c0:90:c7:f2:bd:88:d0:d7:d1:ed:
2d:5b:ef:17:81:d0:78:9e:b8:b9:10:4d:a4:51:ef:b8:7e:3e:
a7:08:1e:95:ff:93:9b:67:27:9b:48:e3:ce:96:a8:5d:f6:64:
be:c0:69:fb:bf:e2:29:9c:9f:5d:67:ed:93:a7:4c:59:47:06:
32:3e:8a:fd:36:19:5b:2e:47:c3:14:0b:64:9a:be:df:11:54:
c2:f9:cb:7b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYwPgtSpDFD7gr0pFAoA0yVrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5ZmFkMjUyN2VhZmE5NTIxNWE4ZmVkNjdhMjdmYWQzY2Zi
MmQzN2YwHhcNMjMxMTI3MDY0MTIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNzQzMmI3MDIwZTMxNjI0MjZiNWEwNzhlZjQ0MTg4ZWVjN2YwYjk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgNnDdXxQz2RustL+snX8ft6GgphK
Qu/PV16FBk6pcYeBub9tTOhjEUNkpPNGM2xNytSuCXGNfawxe30T0EQiPYVLj0sO
zx+nyJgsZWHDYn6XVMJv3EHy59qTrCVPt68olqXYII6d+RhJgrT8Dom/UmiBbqQp
g2l1I+uDgzOX7RrOJuJOEssP6zrxf2pASy85QzCPJYZm2UWHRwZ6QnVNL+BYQg0Z
c2+K/M0dQRbnthS42315riVZB+Y21jBxegcdGWCL3/hg4ENjERSdsBCfcq3OGFA7
vzTRuljXJEux8aOag5upgvWTSuWsTy28yUysZd1JPlOyUSg+8iQF370/WQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKdDK3Ag4xYkJrWgeO9EGI7sfwuYMB8GA1UdIwQY
MBaAFJn60lJ+r6lSFaj+1non+tPPstN/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbWZyU1VuNnZxVklWcVA3V2VpZjYwOC15MDM4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi80NTZlYWMtNjVkZi00ZGQxLWJmOWMt
MDEwM2E4OTljMmRlLzEvcDBNcmNDRGpGaVFtdGFCNDcwUVlqdXhfQzVnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi80NTZlYWMtNjVkZi00ZGQxLWJmOWMtMDEwM2E4OTljMmRl
LzEvbWZyU1VuNnZxVklWcVA3V2VpZjYwOC15MDM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw7hMMA0G
CSqGSIb3DQEBCwUAA4IBAQALGAV0nAlNnw3O5vvoR6i4OceU59jKs4kMddAeBxn5
RJXa9uMO8NmtoJlcPCnJIEKlYtFq/SdomK700tCJtae9JfZkAQ/l4G+1/mK6UfxX
S6q8AhWKpGFye9+CLoAS4w28RwQrSWxYcUX9rMIpbBRa/nPv9m8n8VcWBjIwqrWt
K7BPo9+gE/Zu/rxJkspp/a+nLQaX+ZdpfJgfKsmrrEpM65rxw//WWa0WrMCQx/K9
iNDX0e0tW+8XgdB4nri5EE2kUe+4fj6nCB6V/5ObZyebSOPOlqhd9mS+wGn7v+Ip
nJ9dZ+2Tp0xZRwYyPor9NhlbLkfDFAtkmr7fEVTC+ct7
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:30 2024 by rpki-client on console-fra.rpki-client.org