Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/MwP2zsoDh8jszi64Rwi4Iyjhfwo.roa
File: MwP2zsoDh8jszi64Rwi4Iyjhfwo.roa (raw, json)
Hash identifier: FpPgiB+QueRWa54hWxOhCGCzTzBTn3uqRjSlgB83Vck=
Subject key identifier: 33:03:F6:CE:CA:03:87:C8:EC:CE:2E:B8:47:08:B8:23:28:E1:7F:0A
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 018570950A8E8CCBFEA2D285B11C22ABA103
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/MwP2zsoDh8jszi64Rwi4Iyjhfwo.roa
Signing time: Mon 02 Jan 2023 03:44:53 +0000
ROA not before: Mon 02 Jan 2023 03:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20536
IP address blocks: 93.171.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 27 Oct 2023 09:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:0a:8e:8c:cb:fe:a2:d2:85:b1:1c:22:ab:a1:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3303f6ceca0387c8ecce2eb84708b82328e17f0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:e3:a5:5a:f8:e7:51:b0:27:09:77:cd:d0:b8:
20:2e:10:45:1c:af:e8:5d:66:be:c2:58:e7:ff:c5:
84:75:71:97:5e:a4:6c:9d:15:98:72:68:4e:42:e7:
e4:a0:08:e3:59:e0:8c:17:95:8b:0e:62:28:cb:b3:
b8:85:26:c8:79:df:a3:9c:85:e2:c8:b4:b5:c0:31:
48:ae:03:3d:b4:94:4d:bc:bf:0f:dc:53:f3:bb:03:
87:ce:b5:77:39:20:66:d9:93:da:d8:e1:42:6a:1d:
e8:c4:63:44:80:07:f8:d5:5c:3b:2d:58:95:e3:3f:
d4:0f:ea:f9:21:ac:21:21:49:2d:65:30:8d:c2:42:
4b:2c:b2:1c:4f:23:6e:15:d5:c0:91:69:e7:0b:2a:
56:eb:c4:f4:23:38:5f:51:fd:c3:d7:32:0b:36:2b:
1c:c3:97:21:eb:77:59:3a:21:4b:d2:4c:2f:45:c8:
04:d8:7b:1f:8f:be:6d:6d:17:c4:fb:f4:eb:c8:a9:
f0:ad:a3:99:c8:5f:a2:a1:18:cd:53:a9:85:ce:f7:
ec:ac:d5:dc:59:d9:d6:5a:5c:6c:bf:92:66:c9:20:
31:48:85:5c:df:19:6f:12:49:f4:72:d5:82:78:75:
c0:6f:1d:e6:19:6c:01:f7:1f:c9:ec:51:5a:00:73:
0e:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:03:F6:CE:CA:03:87:C8:EC:CE:2E:B8:47:08:B8:23:28:E1:7F:0A
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/MwP2zsoDh8jszi64Rwi4Iyjhfwo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.5.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:6b:6d:19:7f:d0:6f:97:6d:77:83:ce:4a:38:97:4c:14:9e:
39:32:00:55:a1:cf:74:f6:4f:60:d2:48:5f:40:2a:75:86:ad:
71:f1:a4:29:d9:4f:47:b0:02:91:1b:4e:c7:d6:cd:44:57:2c:
97:29:f1:ca:28:92:68:3f:6e:2a:e2:4a:6b:8e:b8:16:7c:72:
e6:e2:2f:0f:07:f1:90:21:a4:0e:7f:34:b5:9f:cf:f0:3b:0d:
d1:18:32:9b:9b:5e:45:06:d2:01:27:74:33:28:dd:cc:1b:f1:
c0:26:53:82:63:f6:c0:de:b8:36:7d:ce:19:ba:9f:e8:4f:c2:
a8:8d:2a:de:5f:f2:3e:e1:be:7c:ba:99:e8:53:22:ed:27:3d:
ff:1c:86:af:fb:de:b5:e4:f0:6b:7e:7f:36:71:0b:16:95:8e:
25:57:cb:85:86:42:ff:cf:f4:1b:ba:6b:5b:29:f9:be:97:e2:
d1:a4:66:c5:84:de:63:b2:54:b9:36:8d:23:c9:5c:cf:18:3d:
7f:3a:1c:b7:65:10:91:0c:db:03:c6:96:04:06:49:b8:59:0c:
0e:72:90:f5:44:ab:25:e6:b7:6a:b8:23:01:28:de:a0:89:e1:
3a:77:77:18:14:e0:e5:48:e4:8f:e0:57:a6:7f:d0:3b:61:7a:
c0:58:a6:d6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwlQqOjMv+otKFsRwiq6EDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh
YWVmNDIwHhcNMjMwMTAyMDM0NDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMzAzZjZjZWNhMDM4N2M4ZWNjZTJlYjg0NzA4YjgyMzI4ZTE3ZjBhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj+OlWvjnUbAnCXfN0LggLhBFHK/o
XWa+wljn/8WEdXGXXqRsnRWYcmhOQufkoAjjWeCMF5WLDmIoy7O4hSbIed+jnIXi
yLS1wDFIrgM9tJRNvL8P3FPzuwOHzrV3OSBm2ZPa2OFCah3oxGNEgAf41Vw7LViV
4z/UD+r5IawhIUktZTCNwkJLLLIcTyNuFdXAkWnnCypW68T0IzhfUf3D1zILNisc
w5ch63dZOiFL0kwvRcgE2Hsfj75tbRfE+/TryKnwraOZyF+ioRjNU6mFzvfsrNXc
WdnWWlxsv5JmySAxSIVc3xlvEkn0ctWCeHXAbx3mGWwB9x/J7FFaAHMOxwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDMD9s7KA4fI7M4uuEcIuCMo4X8KMB8GA1UdIwQY
MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt
MDYyYzY5MzNhYmVkLzEvTXdQMnpzb0RoOGpzemk2NFJ3aTRJeWpoZndvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk
LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXasFMA0G
CSqGSIb3DQEBCwUAA4IBAQAMa20Zf9Bvl213g85KOJdMFJ45MgBVoc909k9g0khf
QCp1hq1x8aQp2U9HsAKRG07H1s1EVyyXKfHKKJJoP24q4kprjrgWfHLm4i8PB/GQ
IaQOfzS1n8/wOw3RGDKbm15FBtIBJ3QzKN3MG/HAJlOCY/bA3rg2fc4Zup/oT8Ko
jSreX/I+4b58upnoUyLtJz3/HIav+9615PBrfn82cQsWlY4lV8uFhkL/z/Qbumtb
Kfm+l+LRpGbFhN5jslS5No0jyVzPGD1/Ohy3ZRCRDNsDxpYEBkm4WQwOcpD1RKsl
5rdquCMBKN6gieE6d3cYFODlSOSP4Femf9A7YXrAWKbW
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:36 2024 by rpki-client on console-fra.rpki-client.org