Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/mIUlBghFYgPkuL8OFt_ThE6mQps.roa
File: mIUlBghFYgPkuL8OFt_ThE6mQps.roa (raw, json)
Hash identifier: nPkIAu7KqWcTHOelygUOFZo/Qph31CozdYtY9X3wvC0=
Subject key identifier: 98:85:25:06:08:45:62:03:E4:B8:BF:0E:16:DF:D3:84:4E:A6:42:9B
Certificate issuer: /CN=73f210f1299a1e0aee71dc1d79e5fb12092d30a9
Certificate serial: 018D5FCD72ADE562EF8207EA46BFAFC6AE5F
Authority key identifier: 73:F2:10:F1:29:9A:1E:0A:EE:71:DC:1D:79:E5:FB:12:09:2D:30:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/mIUlBghFYgPkuL8OFt_ThE6mQps.roa
Signing time: Wed 31 Jan 2024 13:55:16 +0000
ROA not before: Wed 31 Jan 2024 13:55:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6830
IP address blocks: 83.229.113.0/24 maxlen: 24
185.90.220.0/24 maxlen: 24
185.90.221.0/24 maxlen: 24
185.90.222.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 31 Jan 2024 20:44:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:5f:cd:72:ad:e5:62:ef:82:07:ea:46:bf:af:c6:ae:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73f210f1299a1e0aee71dc1d79e5fb12092d30a9
Validity
Not Before: Jan 31 13:55:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9885250608456203e4b8bf0e16dfd3844ea6429b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:d2:3f:b9:ef:0c:25:76:60:16:5d:21:e2:44:
93:ec:db:8a:a6:58:ef:ab:2b:9d:4c:a4:66:b0:a7:
e6:96:e0:15:2d:5d:01:44:71:d3:8c:7a:e2:95:85:
86:09:0c:41:41:21:91:cf:b3:38:c0:8b:f0:65:44:
af:15:ba:c3:29:0c:b5:22:54:f6:c6:42:c1:33:9c:
a0:7b:a8:24:b1:9b:70:53:d4:e7:ea:b6:32:b8:05:
8c:e3:27:55:83:7c:77:eb:6f:31:7e:22:54:6d:19:
f4:d4:bf:82:77:e2:d9:48:bc:a5:ec:f0:7d:c8:2b:
10:7d:63:c2:0d:0e:8e:10:ee:18:e3:7a:2e:3a:ce:
c7:b2:d3:1a:4e:e5:4b:7d:1a:84:ac:88:93:2e:af:
fa:b8:42:e2:8d:cf:b1:54:85:8a:68:21:50:1d:d0:
ab:42:b6:16:cc:31:36:70:db:76:1f:7c:04:85:8a:
7b:1c:9f:2b:19:19:98:f2:38:9d:c0:b2:3e:c8:5c:
e5:7b:94:31:ea:bd:03:c5:cb:4e:ec:b2:5a:09:28:
ab:cd:c3:12:c7:94:39:9d:1d:3d:4e:d9:13:b8:d8:
3f:3d:5c:bf:34:e5:16:ee:4d:ff:06:c8:57:e9:97:
0e:cd:36:65:36:33:b2:f9:3b:95:ca:3f:3f:43:69:
f0:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:85:25:06:08:45:62:03:E4:B8:BF:0E:16:DF:D3:84:4E:A6:42:9B
X509v3 Authority Key Identifier:
keyid:73:F2:10:F1:29:9A:1E:0A:EE:71:DC:1D:79:E5:FB:12:09:2D:30:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/mIUlBghFYgPkuL8OFt_ThE6mQps.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/c_IQ8SmaHgrucdwdeeX7EgktMKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.229.113.0/24
185.90.220.0-185.90.222.255
Signature Algorithm: sha256WithRSAEncryption
2e:50:13:93:be:ae:0a:18:e9:21:81:d6:c5:b4:6f:14:ce:67:
77:29:86:1a:57:9d:eb:84:b9:c3:18:fe:df:a6:0f:86:d5:8d:
5c:6d:b3:3b:fb:da:e2:4f:c3:13:75:59:b8:da:2d:2c:1f:15:
46:9a:0b:ae:f7:c8:0b:74:b0:f3:cf:84:8f:d1:b4:6f:94:77:
34:88:f5:2a:fb:ac:be:dd:f8:a9:f2:7e:ec:83:18:9e:cd:f2:
87:e6:a8:61:44:a2:b3:3e:d4:a4:6c:d1:6e:3b:66:f0:6e:a9:
ce:6a:0e:3f:e7:ed:5e:1f:66:da:0f:e1:59:cb:34:b9:12:e0:
27:35:42:18:e3:9c:67:7b:66:77:1e:21:ee:f6:84:14:ae:64:
68:27:6b:8d:3a:bd:05:e4:7a:f9:35:22:4a:10:92:eb:f2:c6:
66:79:cd:36:ee:a5:88:24:76:d4:ee:ae:09:89:6c:88:a9:ed:
76:d7:63:44:1f:bc:40:42:6d:c8:12:2d:93:d7:7f:4a:4d:99:
a7:7b:ea:f5:ce:4c:96:a1:e3:80:f2:e9:24:2f:99:4e:75:7b:
e8:7a:bb:d0:0d:95:7e:b9:d6:b9:23:ee:9c:f6:85:8f:2a:ff:
de:36:f1:9e:b1:a6:3c:ca:95:71:33:88:80:65:67:2c:57:7e:
c2:8b:dd:ea
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgISAY1fzXKt5WLvggfqRr+vxq5fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczZjIxMGYxMjk5YTFlMGFlZTcxZGMxZDc5ZTVmYjEyMDky
ZDMwYTkwHhcNMjQwMTMxMTM1NTE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ODg1MjUwNjA4NDU2MjAzZTRiOGJmMGUxNmRmZDM4NDRlYTY0MjliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA49I/ue8MJXZgFl0h4kST7NuKpljv
qyudTKRmsKfmluAVLV0BRHHTjHrilYWGCQxBQSGRz7M4wIvwZUSvFbrDKQy1IlT2
xkLBM5yge6gksZtwU9Tn6rYyuAWM4ydVg3x3628xfiJUbRn01L+Cd+LZSLyl7PB9
yCsQfWPCDQ6OEO4Y43ouOs7HstMaTuVLfRqErIiTLq/6uELijc+xVIWKaCFQHdCr
QrYWzDE2cNt2H3wEhYp7HJ8rGRmY8jidwLI+yFzle5Qx6r0DxctO7LJaCSirzcMS
x5Q5nR09TtkTuNg/PVy/NOUW7k3/BshX6ZcOzTZlNjOy+TuVyj8/Q2nw1wIDAQAB
o4ICFzCCAhMwHQYDVR0OBBYEFJiFJQYIRWID5Li/Dhbf04ROpkKbMB8GA1UdIwQY
MBaAFHPyEPEpmh4K7nHcHXnl+xIJLTCpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY19JUThTbWFIZ3J1Y2R3ZGVlWDdFZ2t0TUtrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC9kYjFiNDgtMWNjNS00ODMzLTkzZDkt
Yjk0NjQ3MThiYTM3LzEvbUlVbEJnaEZZZ1BrdUw4T0Z0X1RoRTZtUXBzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC9kYjFiNDgtMWNjNS00ODMzLTkzZDktYjk0NjQ3MThiYTM3
LzEvY19JUThTbWFIZ3J1Y2R3ZGVlWDdFZ2t0TUtrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUAwQAU+VxMAwD
BAK5WtwDBAC5Wt4wDQYJKoZIhvcNAQELBQADggEBAC5QE5O+rgoY6SGB1sW0bxTO
Z3cphhpXneuEucMY/t+mD4bVjVxtszv72uJPwxN1WbjaLSwfFUaaC673yAt0sPPP
hI/RtG+UdzSI9Sr7rL7d+KnyfuyDGJ7N8ofmqGFEorM+1KRs0W47ZvBuqc5qDj/n
7V4fZtoP4VnLNLkS4Cc1QhjjnGd7ZnceIe72hBSuZGgna406vQXkevk1IkoQkuvy
xmZ5zTbupYgkdtTurgmJbIip7XbXY0QfvEBCbcgSLZPXf0pNmad76vXOTJah44Dy
6SQvmU51e+h6u9ANlX651rkj7pz2hY8q/9428Z6xpjzKlXEziIBlZyxXfsKL3eo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:07 2024 by rpki-client on console-fra.rpki-client.org