Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/mm1dz3NtWu3d3tFfKXRfwV6SAIY.roa
File: mm1dz3NtWu3d3tFfKXRfwV6SAIY.roa (raw, json)
Hash identifier: KnisnjVfHvzf7Um07isWmgOa5j1ucUSMBkH8t16gbTk=
Subject key identifier: 9A:6D:5D:CF:73:6D:5A:ED:DD:DE:D1:5F:29:74:5F:C1:5E:92:00:86
Certificate issuer: /CN=9e55320077696944b1613c2e8c9c606a1e06eb79
Certificate serial: 01856FA6F90F86CDB3264AB7A066F1756964
Authority key identifier: 9E:55:32:00:77:69:69:44:B1:61:3C:2E:8C:9C:60:6A:1E:06:EB:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlUyAHdpaUSxYTwujJxgah4G63k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/mm1dz3NtWu3d3tFfKXRfwV6SAIY.roa
Signing time: Sun 01 Jan 2023 23:24:51 +0000
ROA not before: Sun 01 Jan 2023 23:24:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51814
IP address blocks: 185.107.133.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:a6:f9:0f:86:cd:b3:26:4a:b7:a0:66:f1:75:69:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e55320077696944b1613c2e8c9c606a1e06eb79
Validity
Not Before: Jan 1 23:24:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9a6d5dcf736d5aedddded15f29745fc15e920086
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:17:46:be:3b:a0:8e:61:1d:9a:d6:d0:85:61:
7e:d0:12:e0:8c:19:56:9e:27:1b:85:36:f8:8a:87:
57:1d:36:04:9d:d0:fb:14:de:1c:a3:eb:85:23:42:
25:6d:f4:11:6e:68:6a:3e:10:4b:95:98:c5:53:e8:
aa:ea:a4:ac:79:9a:23:24:22:fe:0e:a8:b4:50:70:
24:55:0d:2f:68:cc:5a:58:83:49:d7:fc:67:0e:e6:
bf:3f:83:d2:38:11:cd:76:fd:11:a0:a2:d8:73:fb:
87:3c:7c:15:fe:89:27:36:b6:a2:d5:86:be:1e:cd:
d5:1c:22:84:aa:ce:7a:05:5f:d7:62:89:80:49:a5:
bd:df:7f:54:e9:41:f3:69:69:62:d5:fc:7e:60:61:
b1:fb:2c:7c:86:a9:7e:af:bf:b2:a2:35:3a:a0:3e:
69:ff:f5:03:c5:17:3a:35:07:3b:48:80:23:17:74:
94:a7:88:ae:49:a3:3e:70:b0:24:05:2c:d3:21:33:
65:84:83:d6:26:79:6e:41:82:8c:04:d3:58:c3:b1:
41:5b:ec:78:84:bb:a1:0b:77:83:94:22:1f:a6:e1:
78:b5:59:a8:d8:02:42:20:67:60:13:47:d5:47:0f:
c3:a1:b3:fc:35:d4:31:f9:27:0e:62:b4:3d:be:9f:
ef:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:6D:5D:CF:73:6D:5A:ED:DD:DE:D1:5F:29:74:5F:C1:5E:92:00:86
X509v3 Authority Key Identifier:
keyid:9E:55:32:00:77:69:69:44:B1:61:3C:2E:8C:9C:60:6A:1E:06:EB:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlUyAHdpaUSxYTwujJxgah4G63k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/mm1dz3NtWu3d3tFfKXRfwV6SAIY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/nlUyAHdpaUSxYTwujJxgah4G63k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.107.133.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:fd:0d:43:a0:21:ca:cb:c4:c9:cc:f3:7f:ba:4f:50:45:dc:
f0:66:8b:b1:cb:f4:79:ee:34:f1:67:67:6a:d9:64:45:b6:69:
d4:f1:af:70:7a:71:82:72:36:86:12:ba:ec:3c:e2:63:cb:b1:
29:d1:6c:d5:5e:65:52:b0:d7:50:f4:fc:aa:e7:a8:77:2d:da:
5d:65:65:97:e1:1f:e5:28:83:9c:70:63:e1:fa:98:89:72:ae:
79:e4:d8:fe:50:48:40:00:a1:15:9e:a1:70:ab:ef:41:99:e1:
21:9f:ad:f8:64:46:f6:fd:c6:fe:92:a1:6c:da:c9:f0:b6:86:
3e:c7:57:61:35:35:25:aa:8e:78:4e:db:2e:a3:50:59:57:ce:
9a:91:2a:b9:f9:6f:d3:56:48:e8:56:de:ff:e1:d4:68:0a:9f:
d6:7c:33:6d:59:1a:fd:30:e3:d0:e0:25:cb:6c:88:0d:20:a0:
73:c6:28:dc:b4:20:93:5b:ca:44:45:0f:4e:50:8e:61:39:7c:
5e:c8:e8:95:76:d3:52:c0:23:7c:8c:25:ef:fa:cb:80:7a:99:
44:c6:4c:33:a4:62:49:41:bb:2a:78:8a:b2:56:ac:0e:54:ea:
4e:fc:31:d5:d4:c9:76:d3:03:c2:a5:c2:ee:55:c5:25:c3:b8:
ee:88:eb:38
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvpvkPhs2zJkq3oGbxdWlkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDllNTUzMjAwNzc2OTY5NDRiMTYxM2MyZThjOWM2MDZhMWUw
NmViNzkwHhcNMjMwMTAxMjMyNDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YTZkNWRjZjczNmQ1YWVkZGRkZWQxNWYyOTc0NWZjMTVlOTIwMDg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkBdGvjugjmEdmtbQhWF+0BLgjBlW
nicbhTb4iodXHTYEndD7FN4co+uFI0IlbfQRbmhqPhBLlZjFU+iq6qSseZojJCL+
Dqi0UHAkVQ0vaMxaWINJ1/xnDua/P4PSOBHNdv0RoKLYc/uHPHwV/oknNrai1Ya+
Hs3VHCKEqs56BV/XYomASaW9339U6UHzaWli1fx+YGGx+yx8hql+r7+yojU6oD5p
//UDxRc6NQc7SIAjF3SUp4iuSaM+cLAkBSzTITNlhIPWJnluQYKMBNNYw7FBW+x4
hLuhC3eDlCIfpuF4tVmo2AJCIGdgE0fVRw/DobP8NdQx+ScOYrQ9vp/vfQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJptXc9zbVrt3d7RXyl0X8FekgCGMB8GA1UdIwQY
MBaAFJ5VMgB3aWlEsWE8LoycYGoeBut5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbmxVeUFIZHBhVVN4WVR3dWpKeGdhaDRHNjNrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC8yNjBiNjEtYTM0OC00ZDQ3LTkyZjYt
MWUwZThiOTA5ZTM0LzEvbW0xZHozTnRXdTNkM3RGZktYUmZ3VjZTQUlZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC8yNjBiNjEtYTM0OC00ZDQ3LTkyZjYtMWUwZThiOTA5ZTM0
LzEvbmxVeUFIZHBhVVN4WVR3dWpKeGdhaDRHNjNrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuWuFMA0G
CSqGSIb3DQEBCwUAA4IBAQC//Q1DoCHKy8TJzPN/uk9QRdzwZouxy/R57jTxZ2dq
2WRFtmnU8a9wenGCcjaGErrsPOJjy7Ep0WzVXmVSsNdQ9Pyq56h3LdpdZWWX4R/l
KIOccGPh+piJcq555Nj+UEhAAKEVnqFwq+9BmeEhn634ZEb2/cb+kqFs2snwtoY+
x1dhNTUlqo54Ttsuo1BZV86akSq5+W/TVkjoVt7/4dRoCp/WfDNtWRr9MOPQ4CXL
bIgNIKBzxijctCCTW8pERQ9OUI5hOXxeyOiVdtNSwCN8jCXv+suAeplExkwzpGJJ
QbsqeIqyVqwOVOpO/DHV1Ml20wPCpcLuVcUlw7juiOs4
-----END CERTIFICATE-----
Generated at Tue Jan 2 01:40:18 2024 by rpki-client on console-ams.rpki-client.org