Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/mFQhhOZslMdYNElrDTSaujdVhRo.roa
File: mFQhhOZslMdYNElrDTSaujdVhRo.roa (raw, json)
Hash identifier: V/p1ltt6Z11SZbGSXF+l6TZA5egxnjQuBV4ZYEcuAUM=
Subject key identifier: 98:54:21:84:E6:6C:94:C7:58:34:49:6B:0D:34:9A:BA:37:55:85:1A
Certificate issuer: /CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Certificate serial: 0185719E75F2C649EC58241F283E3002B039
Authority key identifier: BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/mFQhhOZslMdYNElrDTSaujdVhRo.roa
Signing time: Mon 02 Jan 2023 08:34:48 +0000
ROA not before: Mon 02 Jan 2023 08:34:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30723
IP address blocks: 213.16.104.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 Nov 2023 12:28:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:9e:75:f2:c6:49:ec:58:24:1f:28:3e:30:02:b0:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Validity
Not Before: Jan 2 08:34:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=98542184e66c94c75834496b0d349aba3755851a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:ae:c8:4f:7a:2c:57:cc:b9:db:73:7b:d4:2d:
fa:c2:9f:54:08:82:08:b7:aa:3f:c8:fb:84:65:8f:
f1:1b:0f:39:f2:17:30:cf:03:af:19:c9:04:d4:33:
ad:5c:3b:2a:e7:68:da:cb:8f:fc:bd:cf:8f:7f:a6:
9a:a1:f4:7d:44:de:1c:58:48:0b:4e:62:60:ae:91:
68:0a:83:26:01:0e:5a:8c:5a:17:59:3f:6d:9f:89:
c7:76:8d:3c:08:3d:36:4b:f6:d8:6e:87:de:6d:18:
a3:a2:e1:ab:b0:6f:d1:26:23:a5:ae:a5:55:68:45:
c8:a7:7a:3f:df:b8:e4:5d:fa:ba:3d:d1:9c:96:b2:
af:75:c4:98:f1:8d:66:fe:5e:d7:20:39:bd:93:57:
8f:3b:d5:13:02:1b:d3:f9:54:19:26:72:8c:50:df:
06:bf:78:c9:2c:53:30:a9:e3:ce:c5:cc:37:6e:97:
3f:e6:cc:e9:d6:92:6e:62:34:60:79:95:f6:e5:5f:
92:6e:6b:c3:cc:55:6b:d6:0f:4e:25:e5:b7:66:c6:
f6:6f:bc:2b:06:09:55:40:59:28:84:d1:a0:f4:36:
f1:b3:35:45:6d:a6:8a:ad:a2:7f:da:55:68:ba:0c:
d9:18:39:29:42:35:63:fb:57:a1:40:9c:b0:f9:1a:
59:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:54:21:84:E6:6C:94:C7:58:34:49:6B:0D:34:9A:BA:37:55:85:1A
X509v3 Authority Key Identifier:
keyid:BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/mFQhhOZslMdYNElrDTSaujdVhRo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.16.104.0/24
Signature Algorithm: sha256WithRSAEncryption
42:44:96:5c:e6:55:25:a7:ce:fc:2e:df:b9:0f:81:4c:7a:00:
c4:ef:80:90:37:26:16:01:1b:8d:d5:cd:ec:78:62:b1:2e:53:
ad:bf:05:5f:78:e9:fc:a6:a6:a7:bd:63:58:5d:77:c4:62:81:
ac:fc:db:6c:18:96:a4:aa:d4:ab:ee:c7:b9:fc:26:ea:8f:f2:
b4:30:0b:eb:80:ce:68:85:40:39:6f:0f:45:39:43:1d:96:78:
84:34:c5:4c:22:6d:01:d4:e9:9c:be:f7:b9:32:4a:2b:13:c4:
5f:02:fe:4b:41:04:1b:94:3c:3d:1d:1d:bd:4c:68:ce:bf:e9:
5e:4d:03:dc:90:fd:85:c1:5b:23:07:35:ad:04:e3:02:46:17:
67:b6:db:98:3c:fc:12:44:d7:c0:ae:d3:77:68:a5:cb:9c:63:
29:f3:77:50:df:c0:f7:1b:4d:a4:49:ed:29:bb:e9:62:d8:ac:
ec:a6:bb:01:39:75:3b:07:67:97:25:e6:17:e1:37:95:cb:8e:
33:e0:3e:3c:40:80:26:de:44:98:37:97:0f:11:34:ed:af:91:
2c:eb:d6:fa:be:85:91:db:8d:fa:36:24:32:99:36:ed:aa:61:
58:49:33:89:ee:cd:2c:89:a7:54:f6:69:1f:5f:77:57:4a:15:
85:c4:71:f6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxnnXyxknsWCQfKD4wArA5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmYjA5N2EzNmMyMzI1ZDEwMzFmZjQwOTFiYTAwYTg2NDU5
ZDQyODgwHhcNMjMwMTAyMDgzNDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ODU0MjE4NGU2NmM5NGM3NTgzNDQ5NmIwZDM0OWFiYTM3NTU4NTFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2q7IT3osV8y523N71C36wp9UCIII
t6o/yPuEZY/xGw858hcwzwOvGckE1DOtXDsq52jay4/8vc+Pf6aaofR9RN4cWEgL
TmJgrpFoCoMmAQ5ajFoXWT9tn4nHdo08CD02S/bYbofebRijouGrsG/RJiOlrqVV
aEXIp3o/37jkXfq6PdGclrKvdcSY8Y1m/l7XIDm9k1ePO9UTAhvT+VQZJnKMUN8G
v3jJLFMwqePOxcw3bpc/5szp1pJuYjRgeZX25V+SbmvDzFVr1g9OJeW3Zsb2b7wr
BglVQFkohNGg9DbxszVFbaaKraJ/2lVougzZGDkpQjVj+1ehQJyw+RpZwwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJhUIYTmbJTHWDRJaw00mro3VYUaMB8GA1UdIwQY
MBaAFL+wl6NsIyXRAx/0CRugCoZFnUKIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdjdDWG8yd2pKZEVESF9RSkc2QUtoa1dkUW9nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9mMmM1ZTgtOGQzNy00ODM4LWEzM2It
ZWNjNDliZGMyYWQ4LzEvbUZRaGhPWnNsTWRZTkVsckRUU2F1amRWaFJvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy9mMmM1ZTgtOGQzNy00ODM4LWEzM2ItZWNjNDliZGMyYWQ4
LzEvdjdDWG8yd2pKZEVESF9RSkc2QUtoa1dkUW9nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1RBoMA0G
CSqGSIb3DQEBCwUAA4IBAQBCRJZc5lUlp878Lt+5D4FMegDE74CQNyYWARuN1c3s
eGKxLlOtvwVfeOn8pqanvWNYXXfEYoGs/NtsGJakqtSr7se5/Cbqj/K0MAvrgM5o
hUA5bw9FOUMdlniENMVMIm0B1Omcvve5MkorE8RfAv5LQQQblDw9HR29TGjOv+le
TQPckP2FwVsjBzWtBOMCRhdnttuYPPwSRNfArtN3aKXLnGMp83dQ38D3G02kSe0p
u+li2KzsprsBOXU7B2eXJeYX4TeVy44z4D48QIAm3kSYN5cPETTtr5Es69b6voWR
2436NiQymTbtqmFYSTOJ7s0siadU9mkfX3dXShWFxHH2
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:02 2024 by rpki-client on console-fra.rpki-client.org