Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/kMdVmwhQwNfjP_NMX7FvmIhoki0.roa
File: kMdVmwhQwNfjP_NMX7FvmIhoki0.roa (raw, json)
Hash identifier: wTXxQUhoTV86xbD+J6ZR6wDJXyT1AmtISwM7eIxMjdU=
Subject key identifier: 90:C7:55:9B:08:50:C0:D7:E3:3F:F3:4C:5F:B1:6F:98:88:68:92:2D
Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Certificate serial: 018607A929DF67F797ADC131EF14FF8CC628
Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/kMdVmwhQwNfjP_NMX7FvmIhoki0.roa
Signing time: Tue 31 Jan 2023 11:49:32 +0000
ROA not before: Tue 31 Jan 2023 11:49:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202029
IP address blocks: 188.212.97.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 14 Aug 2023 10:35:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:07:a9:29:df:67:f7:97:ad:c1:31:ef:14:ff:8c:c6:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Validity
Not Before: Jan 31 11:49:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=90c7559b0850c0d7e33ff34c5fb16f988868922d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:cf:c2:1e:5f:d1:0d:4a:46:34:c8:7c:72:c2:
ac:86:51:92:32:1d:ca:13:48:56:dd:aa:0a:2f:a6:
93:b9:e3:71:db:b7:b6:85:f4:da:ee:26:33:21:bd:
80:13:c9:d0:71:f7:32:e2:ce:08:b2:00:9d:a1:76:
d3:00:2d:46:b0:e4:a2:11:b1:a0:c0:47:27:36:4d:
e9:14:6c:8d:8f:c0:76:42:17:ae:2d:d4:8c:f4:05:
1d:bf:85:5e:bf:81:7d:05:d9:10:fa:37:cf:2b:8b:
28:c0:cd:c5:dd:37:97:da:e0:09:89:19:27:1d:4c:
69:9f:d9:5c:94:ca:ff:42:ff:da:e7:aa:74:90:63:
dc:3c:27:4a:01:b7:be:09:b0:d9:0c:19:47:f4:ef:
97:29:6a:43:e7:87:c5:e0:19:3a:5e:25:93:d0:57:
3e:f8:25:fb:e9:44:52:3a:a8:f7:22:76:31:2f:39:
f7:b4:b3:13:8c:b2:6b:16:fd:20:03:9a:77:22:db:
4b:b5:3f:13:0e:67:90:cc:82:52:ff:42:4f:f9:83:
75:75:b3:7c:2e:c9:b2:c2:f1:0b:f5:4f:dd:24:61:
e5:9f:f7:ae:bd:1c:f5:54:66:79:9d:30:39:56:90:
d9:93:7d:7f:91:e3:c4:29:80:40:83:7d:66:dc:b2:
ed:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:C7:55:9B:08:50:C0:D7:E3:3F:F3:4C:5F:B1:6F:98:88:68:92:2D
X509v3 Authority Key Identifier:
keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/kMdVmwhQwNfjP_NMX7FvmIhoki0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.212.97.0/24
Signature Algorithm: sha256WithRSAEncryption
78:35:31:22:d6:6e:80:d7:98:b8:ee:a8:cd:b6:a3:4d:8c:c5:
27:b4:0a:0d:20:5c:6d:ec:ff:9e:1a:12:34:77:42:44:9e:bd:
c5:0e:fe:93:46:f6:86:c2:13:24:58:51:e4:5f:15:f5:b2:52:
c9:24:3f:c8:d9:d7:31:b1:e0:e9:b1:62:dd:42:93:4e:5e:3d:
bb:88:7c:4c:38:a8:6f:c3:2d:d0:da:92:b3:9e:8b:17:f7:fe:
82:41:7c:89:06:94:10:2a:d6:bb:70:d3:8a:95:b0:a0:5d:99:
a4:d1:fe:bd:8d:ae:cf:ec:7d:73:8c:48:de:8d:b2:7d:4b:58:
4b:ea:ba:c1:f8:75:19:52:d5:2c:2f:fe:10:87:96:e7:b1:b8:
34:76:0f:4e:a3:18:33:37:0a:ed:45:de:f2:dd:a4:fd:30:f1:
c6:cb:2b:66:01:15:b9:08:de:f5:01:71:e9:f4:44:4e:8a:55:
19:9d:9f:b9:8b:c9:d0:75:c8:e8:6f:8e:ae:f3:16:8d:9a:04:
6c:80:c4:df:a2:3c:53:ae:e0:1c:dc:d8:93:26:03:8f:ea:8b:
8f:7d:40:99:72:01:2f:7d:d7:9d:52:02:89:3b:f0:3c:e1:b8:
4c:81:76:1c:60:0b:54:f0:41:51:3c:a6:f3:97:ce:63:cf:2b:
63:4e:db:a5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYYHqSnfZ/eXrcEx7xT/jMYoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkZGIzOGIzNDNkYTJkMTE5MzA5ZWRhYTE5YzdhNzg4NzAz
MjdlYmUwHhcNMjMwMTMxMTE0OTMyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MGM3NTU5YjA4NTBjMGQ3ZTMzZmYzNGM1ZmIxNmY5ODg4Njg5MjJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4c/CHl/RDUpGNMh8csKshlGSMh3K
E0hW3aoKL6aTueNx27e2hfTa7iYzIb2AE8nQcfcy4s4IsgCdoXbTAC1GsOSiEbGg
wEcnNk3pFGyNj8B2QheuLdSM9AUdv4Vev4F9BdkQ+jfPK4sowM3F3TeX2uAJiRkn
HUxpn9lclMr/Qv/a56p0kGPcPCdKAbe+CbDZDBlH9O+XKWpD54fF4Bk6XiWT0Fc+
+CX76URSOqj3InYxLzn3tLMTjLJrFv0gA5p3IttLtT8TDmeQzIJS/0JP+YN1dbN8
LsmywvEL9U/dJGHln/euvRz1VGZ5nTA5VpDZk31/kePEKYBAg31m3LLtUQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJDHVZsIUMDX4z/zTF+xb5iIaJItMB8GA1UdIwQY
MBaAFG3bOLND2i0RkwntqhnHp4hwMn6+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmRzNHMwUGFMUkdUQ2UycUdjZW5pSEF5ZnI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9jOTYxYTAtNGY1My00MjJhLWI3ZGQt
M2RmYTUxMGQ2YjE2LzEva01kVm13aFF3TmZqUF9OTVg3RnZtSWhva2kwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi9jOTYxYTAtNGY1My00MjJhLWI3ZGQtM2RmYTUxMGQ2YjE2
LzEvYmRzNHMwUGFMUkdUQ2UycUdjZW5pSEF5ZnI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvNRhMA0G
CSqGSIb3DQEBCwUAA4IBAQB4NTEi1m6A15i47qjNtqNNjMUntAoNIFxt7P+eGhI0
d0JEnr3FDv6TRvaGwhMkWFHkXxX1slLJJD/I2dcxseDpsWLdQpNOXj27iHxMOKhv
wy3Q2pKznosX9/6CQXyJBpQQKta7cNOKlbCgXZmk0f69ja7P7H1zjEjejbJ9S1hL
6rrB+HUZUtUsL/4Qh5bnsbg0dg9OoxgzNwrtRd7y3aT9MPHGyytmARW5CN71AXHp
9EROilUZnZ+5i8nQdcjob46u8xaNmgRsgMTfojxTruAc3NiTJgOP6ouPfUCZcgEv
fdedUgKJO/A84bhMgXYcYAtU8EFRPKbzl85jzytjTtul
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:49 2024 by rpki-client on console-ams.rpki-client.org