Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/M7BXMSLg04a9TKt74ULPPhsibko.roa
File: M7BXMSLg04a9TKt74ULPPhsibko.roa (raw, json)
Hash identifier: 483As8De+1AfZtRHe6fT5YMUQQSSdd/Zd3W08AXreIE=
Subject key identifier: 33:B0:57:31:22:E0:D3:86:BD:4C:AB:7B:E1:42:CF:3E:1B:22:6E:4A
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0192DC7AA238753C92F88A12EB0DF4E09076
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/M7BXMSLg04a9TKt74ULPPhsibko.roa
Signing time: Wed 30 Oct 2024 08:11:17 +0000
ROA not before: Wed 30 Oct 2024 08:11:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 194.163.69.0/24 maxlen: 24
194.195.101.0/24 maxlen: 24
195.252.172.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 13:49:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:dc:7a:a2:38:75:3c:92:f8:8a:12:eb:0d:f4:e0:90:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Oct 30 08:11:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=33b0573122e0d386bd4cab7be142cf3e1b226e4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:93:b4:9e:90:30:7d:db:bc:eb:0d:0f:3e:fe:
8c:11:dc:80:4b:18:81:3d:7b:82:0c:5f:af:3d:ee:
3e:3e:4a:32:74:df:c5:1f:35:73:74:6d:fc:63:38:
d0:c3:f5:dd:4e:a1:f7:7f:a8:32:60:54:02:23:6e:
25:67:54:02:8c:fc:0d:22:20:b9:32:c7:8e:f5:6e:
af:e1:5c:c7:96:d2:29:89:fc:a5:8e:a2:4f:a8:ea:
75:7a:b3:a0:5b:9b:ba:13:89:1a:90:6b:c3:d0:6d:
23:61:ca:bc:df:d7:79:31:96:dd:32:73:fe:19:58:
d4:30:04:91:95:fa:3f:a4:9c:09:a7:e1:1e:1e:e6:
22:29:05:76:b9:6b:12:ef:c5:86:ae:50:92:d4:bb:
7b:9e:86:95:28:c5:c3:8f:2b:35:e5:f9:69:0c:2a:
53:b8:a2:56:b6:3a:c4:b7:da:75:ca:c1:1f:6e:b5:
9e:33:e4:e4:44:41:ff:68:fd:3b:ff:d3:a3:cb:b1:
d1:ee:27:0c:08:e2:51:36:d5:55:6c:8f:70:1a:5c:
8f:bf:c8:e1:f5:2e:22:e0:ce:7d:ad:c4:02:c7:1e:
7e:59:67:e9:42:97:1f:7b:ca:e2:6e:bd:cf:b6:59:
f9:62:93:e8:ef:52:45:61:84:28:73:1b:86:1c:b2:
a2:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:B0:57:31:22:E0:D3:86:BD:4C:AB:7B:E1:42:CF:3E:1B:22:6E:4A
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/M7BXMSLg04a9TKt74ULPPhsibko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.163.69.0/24
194.195.101.0/24
195.252.172.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:62:69:be:95:d2:59:0d:ad:95:c7:2f:4e:29:ea:a1:4b:44:
84:aa:12:cc:f6:62:2d:e2:1f:86:3e:db:48:c7:6d:72:27:cf:
f4:8b:65:e5:ef:7b:8a:87:5b:07:79:81:b4:70:58:66:41:87:
8d:e2:1d:97:3c:e9:b3:5e:40:9b:1f:c1:e9:4d:6f:f2:d5:d9:
fe:84:8c:2c:1d:c6:b4:5e:04:b7:ac:27:eb:ee:61:55:a2:53:
10:c3:74:79:bb:f2:0b:f9:66:4a:bd:5c:73:45:fd:4a:ae:03:
cc:e7:cc:93:c9:4e:b8:3d:11:46:67:5a:8c:4b:89:82:ea:66:
6e:b3:ae:28:80:9c:37:60:ef:13:0b:71:51:1e:0b:5f:f8:6d:
18:69:57:b6:04:b4:a1:d6:c9:d8:47:9a:38:6a:2c:b4:df:1c:
74:58:db:13:ca:1c:c9:70:8d:b3:6d:03:32:e9:b3:77:0e:1c:
c4:4d:bf:88:be:28:89:84:ee:07:9a:08:04:0a:37:23:6c:fb:
25:f2:9c:f2:cb:be:68:6a:bf:83:ba:58:c8:76:08:9f:31:57:
1b:56:68:2d:52:5b:3d:76:a2:44:08:ac:f7:ed:d6:2a:7d:2d:
80:f8:ee:ce:e3:9f:37:75:ee:63:23:b2:16:d6:19:bc:26:06:
12:e0:52:6a
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAZLceqI4dTyS+IoS6w304JB2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3NDcwMTc1NjRjNzExYmNiZDU3NjgwYTBkZmQwMGYyYTVk
MDk5ZGIwHhcNMjQxMDMwMDgxMTE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzM2IwNTczMTIyZTBkMzg2YmQ0Y2FiN2JlMTQyY2YzZTFiMjI2ZTRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnJO0npAwfdu86w0PPv6MEdyASxiB
PXuCDF+vPe4+PkoydN/FHzVzdG38YzjQw/XdTqH3f6gyYFQCI24lZ1QCjPwNIiC5
MseO9W6v4VzHltIpifyljqJPqOp1erOgW5u6E4kakGvD0G0jYcq839d5MZbdMnP+
GVjUMASRlfo/pJwJp+EeHuYiKQV2uWsS78WGrlCS1Lt7noaVKMXDjys15flpDCpT
uKJWtjrEt9p1ysEfbrWeM+TkREH/aP07/9Ojy7HR7icMCOJRNtVVbI9wGlyPv8jh
9S4i4M59rcQCxx5+WWfpQpcfe8ribr3Ptln5YpPo71JFYYQocxuGHLKiEwIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFDOwVzEi4NOGvUyre+FCzz4bIm5KMB8GA1UdIwQY
MBaAFNdHAXVkxxG8vVdoCg39APKl0JnbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMTBjQmRXVEhFYnk5VjJnS0RmMEE4cVhRbWRzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC9iYTIzNjItMGNjNS00OWJkLWE1MjIt
NGYwZThjZTExYTdkLzEvTTdCWE1TTGcwNGE5VEt0NzRVTFBQaHNpYmtvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC9iYTIzNjItMGNjNS00OWJkLWE1MjItNGYwZThjZTExYTdk
LzEvMTBjQmRXVEhFYnk5VjJnS0RmMEE4cVhRbWRzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAwqNFAwQA
wsNlAwQAw/ysMA0GCSqGSIb3DQEBCwUAA4IBAQCoYmm+ldJZDa2Vxy9OKeqhS0SE
qhLM9mIt4h+GPttIx21yJ8/0i2Xl73uKh1sHeYG0cFhmQYeN4h2XPOmzXkCbH8Hp
TW/y1dn+hIwsHca0XgS3rCfr7mFVolMQw3R5u/IL+WZKvVxzRf1KrgPM58yTyU64
PRFGZ1qMS4mC6mZus64ogJw3YO8TC3FRHgtf+G0YaVe2BLSh1snYR5o4aiy03xx0
WNsTyhzJcI2zbQMy6bN3DhzETb+IviiJhO4HmggECjcjbPsl8pzyy75oar+DuljI
dgifMVcbVmgtUls9dqJECKz37dYqfS2A+O7O4583de5jI7IW1hm8JgYS4FJq
-----END CERTIFICATE-----
Generated at Sun Feb 16 15:50:07 2025 by rpki-client