Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/cb31da-4491-4f3e-bae5-3d57b66b2134/1/mOAIYO7s_Av6K7KnOtISheA3U1A.roa
File: mOAIYO7s_Av6K7KnOtISheA3U1A.roa (raw, json)
Hash identifier: JVvb2e8UZ9w/ddgMXgM2ez1rrRa9BOZowgF8AoBcSOI=
Subject key identifier: 98:E0:08:60:EE:EC:FC:0B:FA:2B:B2:A7:3A:D2:12:85:E0:37:53:50
Certificate issuer: /CN=45e3a0c1f1d81ee069643b40c323999bb5584631
Certificate serial: 018A1CE7ADDFF0E17E6506AF20078CAFA01E
Authority key identifier: 45:E3:A0:C1:F1:D8:1E:E0:69:64:3B:40:C3:23:99:9B:B5:58:46:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ReOgwfHYHuBpZDtAwyOZm7VYRjE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/cb31da-4491-4f3e-bae5-3d57b66b2134/1/mOAIYO7s_Av6K7KnOtISheA3U1A.roa
Signing time: Tue 22 Aug 2023 11:00:59 +0000
ROA not before: Tue 22 Aug 2023 11:00:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204152
IP address blocks: 185.112.232.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:1c:e7:ad:df:f0:e1:7e:65:06:af:20:07:8c:af:a0:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45e3a0c1f1d81ee069643b40c323999bb5584631
Validity
Not Before: Aug 22 11:00:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=98e00860eeecfc0bfa2bb2a73ad21285e0375350
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:74:f2:2c:d9:ab:c0:02:93:49:80:15:14:59:
f2:69:52:4c:e2:5f:49:5b:95:3b:cb:82:88:21:30:
f0:47:bb:30:5c:32:82:a6:1c:a6:28:60:96:96:56:
d1:ec:76:f9:b9:f1:5b:cf:40:73:d7:5f:a7:de:58:
b8:9a:ff:bf:23:34:fc:57:95:60:18:b3:9b:f2:59:
c5:2b:19:1a:88:9d:62:80:e4:34:11:2f:a5:ec:d2:
b1:9e:ca:10:81:22:16:9a:16:42:f6:0c:20:67:2a:
99:31:af:77:c4:fc:aa:0f:e3:67:ab:d6:58:f5:73:
18:e2:9a:dc:dd:cc:fa:1b:aa:51:6f:02:5e:3f:99:
ea:a2:bc:80:6a:d7:60:60:26:28:c2:17:6f:8d:06:
61:d5:71:32:45:26:3d:cf:45:91:b5:75:19:49:4a:
aa:72:4a:a2:ee:20:6d:26:ed:c8:c0:69:68:17:df:
d5:fd:e1:33:a5:24:f3:cc:d4:99:d7:16:72:5f:7a:
a6:97:85:78:21:11:7a:f0:9d:ba:73:f6:43:56:00:
86:1a:1a:4d:f0:b3:96:58:09:be:33:0d:d8:e6:8a:
56:e8:c9:3a:bc:7d:2d:60:0f:28:af:a0:b2:62:5e:
7a:27:f0:43:2e:70:99:87:65:71:91:20:8a:b9:3f:
55:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:E0:08:60:EE:EC:FC:0B:FA:2B:B2:A7:3A:D2:12:85:E0:37:53:50
X509v3 Authority Key Identifier:
keyid:45:E3:A0:C1:F1:D8:1E:E0:69:64:3B:40:C3:23:99:9B:B5:58:46:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ReOgwfHYHuBpZDtAwyOZm7VYRjE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/cb31da-4491-4f3e-bae5-3d57b66b2134/1/mOAIYO7s_Av6K7KnOtISheA3U1A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/cb31da-4491-4f3e-bae5-3d57b66b2134/1/ReOgwfHYHuBpZDtAwyOZm7VYRjE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.112.232.0/22
Signature Algorithm: sha256WithRSAEncryption
a4:eb:5f:6c:81:82:8a:b8:32:95:1c:6b:2d:33:63:91:a3:aa:
c7:5e:99:89:87:ce:a9:9a:74:70:b2:92:fe:fa:72:7b:6c:0b:
bc:8a:5d:02:47:51:8e:13:78:c7:b2:c7:5c:6f:c0:24:24:5e:
07:22:43:4f:36:9e:50:b8:b0:f8:f0:71:d7:70:86:56:74:00:
4b:60:70:9b:e5:d7:14:89:7d:3a:cc:2b:b2:f2:2a:dc:80:19:
49:07:f2:64:3b:1c:fd:bb:4d:f7:89:45:03:a9:ea:10:a1:7a:
1f:be:f0:58:b3:8b:8d:6f:d1:92:01:0d:d8:f3:2e:6c:db:9e:
10:87:98:43:b2:ec:96:03:c7:7c:25:0d:32:16:76:ee:90:51:
07:6b:37:64:31:e7:24:a7:72:66:c0:32:78:09:de:1e:a4:5d:
42:5f:00:55:49:81:60:0f:6a:84:3a:51:c8:11:11:83:4f:fd:
c4:d8:24:6d:19:23:80:ce:8d:4b:6e:88:ad:54:3d:f7:3d:ef:
ff:45:e7:f5:fa:0f:dd:e1:f3:35:6e:21:6f:a7:a6:a2:e6:ad:
5b:9f:a1:f0:df:3e:d0:a8:1a:f1:e7:cc:08:a1:00:05:2c:20:
81:c2:55:0b:bb:de:1e:5e:1f:3d:b4:3c:03:44:aa:3e:f5:2f:
c0:85:61:c3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYoc563f8OF+ZQavIAeMr6AeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ1ZTNhMGMxZjFkODFlZTA2OTY0M2I0MGMzMjM5OTliYjU1
ODQ2MzEwHhcNMjMwODIyMTEwMDU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5OGUwMDg2MGVlZWNmYzBiZmEyYmIyYTczYWQyMTI4NWUwMzc1MzUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAknTyLNmrwAKTSYAVFFnyaVJM4l9J
W5U7y4KIITDwR7swXDKCphymKGCWllbR7Hb5ufFbz0Bz11+n3li4mv+/IzT8V5Vg
GLOb8lnFKxkaiJ1igOQ0ES+l7NKxnsoQgSIWmhZC9gwgZyqZMa93xPyqD+Nnq9ZY
9XMY4prc3cz6G6pRbwJeP5nqoryAatdgYCYowhdvjQZh1XEyRSY9z0WRtXUZSUqq
ckqi7iBtJu3IwGloF9/V/eEzpSTzzNSZ1xZyX3qml4V4IRF68J26c/ZDVgCGGhpN
8LOWWAm+Mw3Y5opW6Mk6vH0tYA8or6CyYl56J/BDLnCZh2VxkSCKuT9V3QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJjgCGDu7PwL+iuypzrSEoXgN1NQMB8GA1UdIwQY
MBaAFEXjoMHx2B7gaWQ7QMMjmZu1WEYxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUmVPZ3dmSFlIdUJwWkR0QXd5T1ptN1ZZUmpFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny9jYjMxZGEtNDQ5MS00ZjNlLWJhZTUt
M2Q1N2I2NmIyMTM0LzEvbU9BSVlPN3NfQXY2SzdLbk90SVNoZUEzVTFBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny9jYjMxZGEtNDQ5MS00ZjNlLWJhZTUtM2Q1N2I2NmIyMTM0
LzEvUmVPZ3dmSFlIdUJwWkR0QXd5T1ptN1ZZUmpFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuXDoMA0G
CSqGSIb3DQEBCwUAA4IBAQCk619sgYKKuDKVHGstM2ORo6rHXpmJh86pmnRwspL+
+nJ7bAu8il0CR1GOE3jHssdcb8AkJF4HIkNPNp5QuLD48HHXcIZWdABLYHCb5dcU
iX06zCuy8ircgBlJB/JkOxz9u033iUUDqeoQoXofvvBYs4uNb9GSAQ3Y8y5s254Q
h5hDsuyWA8d8JQ0yFnbukFEHazdkMeckp3JmwDJ4Cd4epF1CXwBVSYFgD2qEOlHI
ERGDT/3E2CRtGSOAzo1LboitVD33Pe//Ref1+g/d4fM1biFvp6ai5q1bn6Hw3z7Q
qBrx58wIoQAFLCCBwlULu94eXh89tDwDRKo+9S/AhWHD
-----END CERTIFICATE-----
Generated at Tue Jan 2 14:36:36 2024 by rpki-client on console-fra.rpki-client.org