Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/Mt7wKVYJkP9ZyBiyF0oDEd7CZlY.roa
File: Mt7wKVYJkP9ZyBiyF0oDEd7CZlY.roa (raw, json)
Hash identifier: NgFzJeBu/JMp/zJ61DiLbiA3zQv+7y23FqHOEM765Hc=
Subject key identifier: 32:DE:F0:29:56:09:90:FF:59:C8:18:B2:17:4A:03:11:DE:C2:66:56
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 018DF009278D6EF130373B4451B5D1B86FD9
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/Mt7wKVYJkP9ZyBiyF0oDEd7CZlY.roa
Signing time: Wed 28 Feb 2024 14:05:48 +0000
ROA not before: Wed 28 Feb 2024 14:05:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 188.209.134.0/24 maxlen: 24
194.15.97.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 29 Mar 2024 19:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:f0:09:27:8d:6e:f1:30:37:3b:44:51:b5:d1:b8:6f:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Feb 28 14:05:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=32def029560990ff59c818b2174a0311dec26656
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:6b:3b:3b:4b:88:fb:ee:e3:61:34:8b:67:90:
77:63:a5:ea:48:aa:da:1d:fc:d2:ba:71:eb:91:30:
ba:bb:18:0e:2b:b0:b7:c1:6d:3a:ed:7f:f8:d9:3d:
56:0b:0e:43:92:87:7a:1d:c5:e0:a3:75:86:07:43:
3b:f8:08:df:9a:98:bb:8d:e0:1b:35:19:f5:4d:a9:
52:7f:76:e5:71:89:69:21:d6:b9:59:9e:4a:b3:3c:
a9:da:cb:83:77:7d:62:31:2f:76:c3:07:37:f9:06:
28:70:2b:9e:46:58:ea:33:40:3a:14:ac:cd:9d:66:
01:18:b8:72:10:c2:0e:16:6b:d1:d9:77:7a:73:ab:
2d:5d:56:4f:45:52:9c:6d:ec:d8:e7:b5:1d:2f:48:
93:08:22:0e:0c:6d:ea:27:b8:49:23:5f:9f:9d:cf:
4e:80:0f:a0:84:57:f9:12:20:bb:31:10:98:42:1a:
29:57:5a:01:45:30:a5:46:fb:c3:0c:ce:ad:7b:a7:
ca:d6:c1:69:44:1f:3a:3f:c4:f5:25:3b:67:ee:5c:
7b:9d:26:55:f9:ea:37:56:ae:5e:b9:e3:ce:bd:5d:
bc:16:22:29:4f:5e:bb:ec:9b:c1:6e:15:5f:b4:c3:
cb:f4:3d:56:13:e7:7d:ba:af:32:b3:71:9a:9d:77:
00:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:DE:F0:29:56:09:90:FF:59:C8:18:B2:17:4A:03:11:DE:C2:66:56
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/Mt7wKVYJkP9ZyBiyF0oDEd7CZlY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.209.134.0/24
194.15.97.0/24
Signature Algorithm: sha256WithRSAEncryption
74:e5:a1:c1:85:4d:7c:be:4f:2f:e3:a7:fb:6c:97:7c:cb:c0:
f9:57:63:71:3f:9a:48:d5:9c:d4:8e:66:7d:5e:32:01:20:7e:
22:96:f8:67:21:ff:6d:3e:82:5e:13:ca:40:3f:9f:70:2f:0f:
ea:0a:4f:2b:92:6b:81:61:0c:17:2a:ff:3c:97:dd:6b:ed:9b:
ee:c7:c8:99:03:2a:b3:84:87:62:9f:2f:d7:e6:c7:79:c8:8c:
61:24:d3:48:54:43:d9:3d:83:ac:d8:07:47:c6:c6:a9:15:0d:
16:44:99:50:09:80:64:4e:6a:5b:7d:ec:76:87:cd:ff:4c:f1:
fc:33:1d:15:b6:42:b1:1f:6b:50:ed:87:1e:46:39:0f:3e:6d:
26:32:48:24:c1:4d:b4:a8:b2:c9:ab:cb:b5:43:f2:f6:7f:2d:
6f:1d:0a:cb:a0:57:e9:27:91:69:fd:c0:ee:b8:11:cb:5c:0b:
c7:d9:c5:85:30:4f:c3:af:66:cd:dc:f5:8e:22:fa:ae:15:63:
e7:af:e7:9e:ec:a6:e6:70:8d:a3:13:54:72:1b:66:fb:28:0b:
37:61:00:e3:84:27:e7:85:b5:1c:a1:98:9a:60:27:18:52:de:
01:10:40:e1:e5:92:bb:60:ef:42:42:b5:a0:4d:04:0d:56:7f:
97:28:17:10
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAY3wCSeNbvEwNztEUbXRuG/ZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5M2RhMjAxOTkwOWQ5ZmMzNzgyOWZkOWVjMjlkOTQ4ZWNm
ZjdjOTIwHhcNMjQwMjI4MTQwNTQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMmRlZjAyOTU2MDk5MGZmNTljODE4YjIxNzRhMDMxMWRlYzI2NjU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkWs7O0uI++7jYTSLZ5B3Y6XqSKra
HfzSunHrkTC6uxgOK7C3wW067X/42T1WCw5Dkod6HcXgo3WGB0M7+Ajfmpi7jeAb
NRn1TalSf3blcYlpIda5WZ5Kszyp2suDd31iMS92wwc3+QYocCueRljqM0A6FKzN
nWYBGLhyEMIOFmvR2Xd6c6stXVZPRVKcbezY57UdL0iTCCIODG3qJ7hJI1+fnc9O
gA+ghFf5EiC7MRCYQhopV1oBRTClRvvDDM6te6fK1sFpRB86P8T1JTtn7lx7nSZV
+eo3Vq5euePOvV28FiIpT1677JvBbhVftMPL9D1WE+d9uq8ys3GanXcAyQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFDLe8ClWCZD/WcgYshdKAxHewmZWMB8GA1UdIwQY
MBaAFNk9ogGZCdn8N4Kf2ewp2Ujs/3ySMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlQyaUFaa0oyZnczZ3BfWjdDblpTT3pfZkpJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi80N2FmYTMtY2UzMS00MDYwLWEwNzgt
ZjVhZGRkZGYxZWM1LzEvTXQ3d0tWWUprUDlaeUJpeUYwb0RFZDdDWmxZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi80N2FmYTMtY2UzMS00MDYwLWEwNzgtZjVhZGRkZGYxZWM1
LzEvMlQyaUFaa0oyZnczZ3BfWjdDblpTT3pfZkpJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAvNGGAwQA
wg9hMA0GCSqGSIb3DQEBCwUAA4IBAQB05aHBhU18vk8v46f7bJd8y8D5V2NxP5pI
1ZzUjmZ9XjIBIH4ilvhnIf9tPoJeE8pAP59wLw/qCk8rkmuBYQwXKv88l91r7Zvu
x8iZAyqzhIdiny/X5sd5yIxhJNNIVEPZPYOs2AdHxsapFQ0WRJlQCYBkTmpbfex2
h83/TPH8Mx0VtkKxH2tQ7YceRjkPPm0mMkgkwU20qLLJq8u1Q/L2fy1vHQrLoFfp
J5Fp/cDuuBHLXAvH2cWFME/Dr2bN3PWOIvquFWPnr+ee7KbmcI2jE1RyG2b7KAs3
YQDjhCfnhbUcoZiaYCcYUt4BEEDh5ZK7YO9CQrWgTQQNVn+XKBcQ
-----END CERTIFICATE-----
Generated at Fri Mar 29 21:53:15 2024 by rpki-client on console-ams.rpki-client.org