Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/57688e-a964-4933-8631-850f34906229/1/DTVVmz1KzI4vCCKo00L5WxFDZyk.roa
File: DTVVmz1KzI4vCCKo00L5WxFDZyk.roa (raw, json)
Hash identifier: zJyQTDF1kVVP7DByvsqTpBEnBYlP6ur6Nb/EIF4CeuY=
Subject key identifier: 0D:35:55:9B:3D:4A:CC:8E:2F:08:22:A8:D3:42:F9:5B:11:43:67:29
Certificate issuer: /CN=311d62b7fd9fcfc87dfea987515767c838e21bb9
Certificate serial: 0189DEB962F025A100BBF1698551EA5D0186
Authority key identifier: 31:1D:62:B7:FD:9F:CF:C8:7D:FE:A9:87:51:57:67:C8:38:E2:1B:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MR1it_2fz8h9_qmHUVdnyDjiG7k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/57688e-a964-4933-8631-850f34906229/1/DTVVmz1KzI4vCCKo00L5WxFDZyk.roa
Signing time: Thu 10 Aug 2023 09:13:58 +0000
ROA not before: Thu 10 Aug 2023 09:13:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39801
IP address blocks: 45.146.32.0/22 maxlen: 24
77.95.68.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 10 Aug 2023 11:40:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:de:b9:62:f0:25:a1:00:bb:f1:69:85:51:ea:5d:01:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=311d62b7fd9fcfc87dfea987515767c838e21bb9
Validity
Not Before: Aug 10 09:13:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0d35559b3d4acc8e2f0822a8d342f95b11436729
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:9e:1c:e0:7d:e8:2f:0c:2a:91:0b:35:c0:8b:
40:68:48:92:58:84:c6:58:34:41:2e:72:9a:c0:20:
5d:2f:41:06:cd:4c:c4:c5:ff:da:c0:9c:b4:0e:d0:
c5:91:d3:f5:e4:66:94:a0:6d:87:7b:3a:a3:ab:57:
30:b6:d5:54:9d:83:48:c7:c5:2e:83:99:06:ed:5d:
5b:03:1e:02:32:c8:ef:11:60:e8:bd:07:7e:50:df:
5f:36:56:ed:67:1f:6e:87:ec:6b:fb:dd:2f:11:f7:
25:67:97:1b:07:72:e2:60:5b:cc:68:6e:32:43:f5:
52:cb:20:41:b0:3f:f2:11:42:7c:68:44:6f:b1:49:
53:36:cd:2f:f9:07:79:00:49:56:c8:f4:d6:da:d9:
17:16:63:8f:6a:09:e5:6c:47:16:4e:04:c0:7e:1e:
8d:cc:2e:88:c7:34:ef:23:1e:a8:97:d8:3f:b8:36:
a4:7b:69:6a:37:95:9e:0a:a5:96:e4:85:52:a1:e5:
fb:e8:a9:7f:36:25:63:8b:59:e2:9c:32:1a:b5:b8:
ea:5e:56:1c:37:7a:0f:08:43:f2:f3:13:57:72:38:
6c:a2:19:5a:17:35:e0:9f:47:bf:a0:33:50:79:80:
bd:f7:c4:b6:42:ef:8d:11:33:00:f7:77:58:c0:77:
48:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:35:55:9B:3D:4A:CC:8E:2F:08:22:A8:D3:42:F9:5B:11:43:67:29
X509v3 Authority Key Identifier:
keyid:31:1D:62:B7:FD:9F:CF:C8:7D:FE:A9:87:51:57:67:C8:38:E2:1B:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MR1it_2fz8h9_qmHUVdnyDjiG7k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/57688e-a964-4933-8631-850f34906229/1/DTVVmz1KzI4vCCKo00L5WxFDZyk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/57688e-a964-4933-8631-850f34906229/1/MR1it_2fz8h9_qmHUVdnyDjiG7k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.32.0/22
77.95.68.0/23
Signature Algorithm: sha256WithRSAEncryption
c1:ea:94:1f:18:57:5c:fd:75:00:cc:75:3b:1f:48:3a:c2:a4:
4c:dc:16:e9:b9:1f:08:70:00:8c:90:05:a4:28:69:70:4f:fe:
ea:28:c3:11:04:90:56:27:41:af:d9:6a:73:0b:12:4b:4e:85:
51:c8:65:bd:46:e8:0c:f3:45:62:1a:9e:b8:d5:47:8f:7d:85:
d7:e9:ed:eb:e6:9b:ef:01:f6:13:9c:78:08:a4:27:ec:f7:10:
32:eb:4b:43:34:e1:04:35:f3:33:22:4b:cc:6d:4b:7a:e5:54:
e3:3b:dc:42:62:03:bd:82:8c:f4:ed:c4:ea:88:fa:88:fa:88:
8c:f9:ea:fc:fd:1b:79:d7:b8:d1:a0:76:e7:8a:04:a4:2a:ab:
5e:96:44:da:0f:21:d7:aa:54:16:61:9e:6e:bd:4c:8f:f0:98:
a9:76:cc:dc:b4:6f:bc:d2:25:53:cc:56:1f:2e:2d:b5:c7:ee:
08:76:2f:92:95:aa:48:ad:8a:a5:e1:a4:47:47:b6:40:0f:92:
4e:c1:34:2b:af:e8:2d:1f:13:79:65:a9:b1:90:f8:2e:dd:73:
b9:f9:62:6b:6d:2b:ff:dc:6f:88:b2:b2:83:2a:e4:ba:90:a0:
98:c5:0f:45:85:5a:64:0e:86:ec:55:67:99:2f:fd:c3:88:88:
59:68:96:26
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYneuWLwJaEAu/FphVHqXQGGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxMWQ2MmI3ZmQ5ZmNmYzg3ZGZlYTk4NzUxNTc2N2M4Mzhl
MjFiYjkwHhcNMjMwODEwMDkxMzU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZDM1NTU5YjNkNGFjYzhlMmYwODIyYThkMzQyZjk1YjExNDM2NzI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhp4c4H3oLwwqkQs1wItAaEiSWITG
WDRBLnKawCBdL0EGzUzExf/awJy0DtDFkdP15GaUoG2Hezqjq1cwttVUnYNIx8Uu
g5kG7V1bAx4CMsjvEWDovQd+UN9fNlbtZx9uh+xr+90vEfclZ5cbB3LiYFvMaG4y
Q/VSyyBBsD/yEUJ8aERvsUlTNs0v+Qd5AElWyPTW2tkXFmOPagnlbEcWTgTAfh6N
zC6IxzTvIx6ol9g/uDake2lqN5WeCqWW5IVSoeX76Kl/NiVji1ninDIatbjqXlYc
N3oPCEPy8xNXcjhsohlaFzXgn0e/oDNQeYC998S2Qu+NETMA93dYwHdIWwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFA01VZs9SsyOLwgiqNNC+VsRQ2cpMB8GA1UdIwQY
MBaAFDEdYrf9n8/Iff6ph1FXZ8g44hu5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVIxaXRfMmZ6OGg5X3FtSFVWZG55RGppRzdrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy81NzY4OGUtYTk2NC00OTMzLTg2MzEt
ODUwZjM0OTA2MjI5LzEvRFRWVm16MUt6STR2Q0NLbzAwTDVXeEZEWnlrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy81NzY4OGUtYTk2NC00OTMzLTg2MzEtODUwZjM0OTA2MjI5
LzEvTVIxaXRfMmZ6OGg5X3FtSFVWZG55RGppRzdrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCLZIgAwQB
TV9EMA0GCSqGSIb3DQEBCwUAA4IBAQDB6pQfGFdc/XUAzHU7H0g6wqRM3BbpuR8I
cACMkAWkKGlwT/7qKMMRBJBWJ0Gv2WpzCxJLToVRyGW9RugM80ViGp641UePfYXX
6e3r5pvvAfYTnHgIpCfs9xAy60tDNOEENfMzIkvMbUt65VTjO9xCYgO9goz07cTq
iPqI+oiM+er8/Rt517jRoHbnigSkKqtelkTaDyHXqlQWYZ5uvUyP8JipdszctG+8
0iVTzFYfLi21x+4Idi+SlapIrYql4aRHR7ZAD5JOwTQrr+gtHxN5ZamxkPgu3XO5
+WJrbSv/3G+IsrKDKuS6kKCYxQ9FhVpkDobsVWeZL/3DiIhZaJYm
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:35 2024 by rpki-client on console-ams.rpki-client.org