Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/MB-x_-HToWLURuhzyI2W-RZIRKY.roa
File: MB-x_-HToWLURuhzyI2W-RZIRKY.roa (raw, json)
Hash identifier: IqZAV/Uey3yYoqvXiJ3wJMAFChT9RTun9kcPkFC21Pg=
Subject key identifier: 30:1F:B1:FF:E1:D3:A1:62:D4:46:E8:73:C8:8D:96:F9:16:48:44:A6
Certificate issuer: /CN=4cf8ffc088591e4f243baafa21b4298bfb366026
Certificate serial: 018CC3B6D4ACA2A3838C5DE083389216D587
Authority key identifier: 4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/MB-x_-HToWLURuhzyI2W-RZIRKY.roa
Signing time: Mon 01 Jan 2024 06:29:48 +0000
ROA not before: Mon 01 Jan 2024 06:29:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 46852
IP address blocks: 193.118.167.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 31 Oct 2024 14:26:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:d4:ac:a2:a3:83:8c:5d:e0:83:38:92:16:d5:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cf8ffc088591e4f243baafa21b4298bfb366026
Validity
Not Before: Jan 1 06:29:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=301fb1ffe1d3a162d446e873c88d96f9164844a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d2:9a:23:80:55:d3:3a:6b:62:24:e6:68:d8:
ba:00:8c:b6:a3:9a:e0:cf:d8:ed:32:41:17:70:de:
26:72:ea:77:d8:e4:df:5a:9e:33:75:90:73:d1:49:
6a:76:a8:a9:98:67:c4:b6:55:fb:5a:eb:d8:39:79:
52:52:9b:b5:41:39:3f:0f:8d:5f:72:06:6f:d8:a5:
3c:cd:cd:c1:ec:83:ac:9a:71:83:74:9b:5c:6f:f1:
a0:3b:d1:0c:84:e3:30:11:a6:46:44:83:c7:ae:99:
bd:07:3c:62:e3:e5:70:3e:d9:ce:24:62:7b:85:45:
aa:07:5c:96:4c:cb:af:bd:4b:8a:54:18:8c:07:00:
8d:6a:ae:59:9d:c7:41:00:ec:be:b3:62:4f:3a:dd:
75:1c:ed:0e:8b:ba:9f:ec:a1:31:26:f9:e2:42:90:
6f:ef:04:e0:7a:6e:ce:75:27:6b:8f:a2:4a:d1:4f:
f1:37:4c:a9:53:c8:5b:17:17:a2:f4:41:c8:1a:36:
43:33:67:16:55:ff:7d:e4:19:5e:3b:5d:7f:d5:86:
a2:f1:83:3f:ce:35:7a:7d:94:00:bd:30:2a:5e:8a:
47:e8:ef:ec:1f:2c:74:75:06:a3:6a:88:31:21:4a:
85:c1:89:85:a1:6a:44:d9:1c:44:0a:50:05:32:54:
27:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:1F:B1:FF:E1:D3:A1:62:D4:46:E8:73:C8:8D:96:F9:16:48:44:A6
X509v3 Authority Key Identifier:
keyid:4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/MB-x_-HToWLURuhzyI2W-RZIRKY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/TPj_wIhZHk8kO6r6IbQpi_s2YCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.118.167.0/24
Signature Algorithm: sha256WithRSAEncryption
68:94:0b:57:f5:60:0f:f1:85:9b:07:78:ed:44:1d:52:70:2e:
bc:98:df:36:ad:6b:91:3f:a7:5b:83:fc:43:d8:e7:08:9e:50:
4b:6f:a5:ea:cf:49:38:c3:e0:1b:bf:88:03:e3:f9:c5:2c:8d:
57:cd:7c:11:af:06:44:47:ad:9c:0d:a5:00:6f:93:9e:0a:02:
ee:10:aa:ae:3c:70:0e:b7:2e:69:a5:93:c9:56:11:03:a9:4a:
39:7b:7d:d9:f6:4d:13:e2:00:bb:7a:70:0f:05:c6:73:ec:23:
67:79:e2:cb:bc:37:41:99:be:b8:30:ac:78:53:01:2d:46:c2:
c5:ca:15:c2:26:b4:56:d8:0d:4d:a7:b9:50:e5:ba:de:f5:6b:
67:dd:b3:60:12:b7:ca:4e:3f:32:48:81:7b:d9:c1:1c:a9:6e:
6a:ca:7a:be:a9:3e:3d:00:ef:17:38:ae:4e:04:31:ea:d9:5b:
8d:39:94:b6:ca:48:2d:35:5e:b6:5c:91:47:ad:88:2a:74:9a:
b8:2f:8f:ae:28:fa:8e:6e:d2:07:13:b4:5a:e8:a8:76:75:45:
03:f4:af:c8:d1:e7:a5:70:0a:bf:4d:2f:e7:b3:8f:f9:5a:58:
5b:72:5c:de:d1:12:75:7e:e9:7d:2e:41:a8:da:b2:12:99:94:
a8:29:67:35
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzDttSsoqODjF3ggziSFtWHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjZjhmZmMwODg1OTFlNGYyNDNiYWFmYTIxYjQyOThiZmIz
NjYwMjYwHhcNMjQwMTAxMDYyOTQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMDFmYjFmZmUxZDNhMTYyZDQ0NmU4NzNjODhkOTZmOTE2NDg0NGE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApNKaI4BV0zprYiTmaNi6AIy2o5rg
z9jtMkEXcN4mcup32OTfWp4zdZBz0UlqdqipmGfEtlX7WuvYOXlSUpu1QTk/D41f
cgZv2KU8zc3B7IOsmnGDdJtcb/GgO9EMhOMwEaZGRIPHrpm9Bzxi4+VwPtnOJGJ7
hUWqB1yWTMuvvUuKVBiMBwCNaq5ZncdBAOy+s2JPOt11HO0Oi7qf7KExJvniQpBv
7wTgem7OdSdrj6JK0U/xN0ypU8hbFxei9EHIGjZDM2cWVf995BleO11/1Yai8YM/
zjV6fZQAvTAqXopH6O/sHyx0dQajaogxIUqFwYmFoWpE2RxEClAFMlQntQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDAfsf/h06Fi1Eboc8iNlvkWSESmMB8GA1UdIwQY
MBaAFEz4/8CIWR5PJDuq+iG0KYv7NmAmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVFBqX3dJaFpIazhrTzZyNkliUXBpX3MyWUNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9hMGEzOWMtYmUwMy00N2JiLWJkYjMt
YjNiNzhiMGI2NmVhLzEvTUIteF8tSFRvV0xVUnVoenlJMlctUlpJUktZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi9hMGEzOWMtYmUwMy00N2JiLWJkYjMtYjNiNzhiMGI2NmVh
LzEvVFBqX3dJaFpIazhrTzZyNkliUXBpX3MyWUNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwXanMA0G
CSqGSIb3DQEBCwUAA4IBAQBolAtX9WAP8YWbB3jtRB1ScC68mN82rWuRP6dbg/xD
2OcInlBLb6Xqz0k4w+Abv4gD4/nFLI1XzXwRrwZER62cDaUAb5OeCgLuEKquPHAO
ty5ppZPJVhEDqUo5e33Z9k0T4gC7enAPBcZz7CNneeLLvDdBmb64MKx4UwEtRsLF
yhXCJrRW2A1Np7lQ5bre9Wtn3bNgErfKTj8ySIF72cEcqW5qynq+qT49AO8XOK5O
BDHq2VuNOZS2ykgtNV62XJFHrYgqdJq4L4+uKPqObtIHE7Ra6Kh2dUUD9K/I0eel
cAq/TS/ns4/5Wlhbclze0RJ1ful9LkGo2rISmZSoKWc1
-----END CERTIFICATE-----
Generated at Thu Oct 31 19:17:33 2024 by rpki-client on console-ams.rpki-client.org