Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/a7ddf6-2394-48d3-bfa1-6d655cd94468/1/mJdBLHRo0n9k5-2HnFp6BEnkptM.roa
File: mJdBLHRo0n9k5-2HnFp6BEnkptM.roa (raw, json)
Hash identifier: mnjSQIJwTgWCqTXJE21mH2nxpEr72Hi55DEh3EALEg8=
Subject key identifier: 98:97:41:2C:74:68:D2:7F:64:E7:ED:87:9C:5A:7A:04:49:E4:A6:D3
Certificate issuer: /CN=d513872512f1f2d037b401c2603ca8994e721e55
Certificate serial: 0185EA10483AB0DC3C181DAE2BDCB898AECE
Authority key identifier: D5:13:87:25:12:F1:F2:D0:37:B4:01:C2:60:3C:A8:99:4E:72:1E:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1ROHJRLx8tA3tAHCYDyomU5yHlU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/a7ddf6-2394-48d3-bfa1-6d655cd94468/1/mJdBLHRo0n9k5-2HnFp6BEnkptM.roa
Signing time: Wed 25 Jan 2023 17:53:33 +0000
ROA not before: Wed 25 Jan 2023 17:53:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31034
IP address blocks: 185.8.196.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 May 2023 14:32:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ea:10:48:3a:b0:dc:3c:18:1d:ae:2b:dc:b8:98:ae:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d513872512f1f2d037b401c2603ca8994e721e55
Validity
Not Before: Jan 25 17:53:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9897412c7468d27f64e7ed879c5a7a0449e4a6d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:06:c5:f7:55:3f:67:23:cf:cc:6d:13:8f:4c:
2d:bf:4f:b8:2c:43:9c:c3:ad:d5:06:2c:be:6c:ae:
ff:0f:d6:a5:3b:db:84:2a:87:a3:55:d5:10:76:07:
ea:82:ba:22:46:33:99:fc:31:5c:87:6a:6e:ad:c9:
81:1a:a1:8f:e3:09:60:a1:0e:4d:0d:eb:4c:8e:0d:
81:66:e9:a9:3d:b2:eb:a2:2d:ec:78:65:4d:fb:aa:
5f:02:eb:56:20:d7:a5:37:b4:e9:59:d8:41:65:5f:
87:0b:bc:0f:03:c1:41:73:f9:16:32:a0:e3:ea:b9:
37:29:09:91:db:66:c6:1e:56:91:ad:30:11:96:38:
7d:ee:11:23:19:fe:6e:c2:67:1a:fa:1d:33:b0:65:
61:e1:31:d7:42:6f:03:24:8a:09:a9:18:0e:05:b4:
4f:43:8e:50:3f:83:d7:eb:a5:f1:59:9f:79:aa:3b:
d1:71:ef:9a:44:af:c9:97:6c:27:1b:6b:11:fa:56:
af:b3:d8:77:4a:a1:74:ac:1b:ce:18:51:2f:3f:5c:
16:ed:0c:5c:af:0e:17:d0:63:dc:5c:65:a5:34:31:
64:b1:ec:18:f2:99:93:64:8e:5a:08:6a:3c:6d:49:
74:d1:59:25:dd:e3:e3:28:a8:43:c5:2f:be:98:00:
ec:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:97:41:2C:74:68:D2:7F:64:E7:ED:87:9C:5A:7A:04:49:E4:A6:D3
X509v3 Authority Key Identifier:
keyid:D5:13:87:25:12:F1:F2:D0:37:B4:01:C2:60:3C:A8:99:4E:72:1E:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1ROHJRLx8tA3tAHCYDyomU5yHlU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/a7ddf6-2394-48d3-bfa1-6d655cd94468/1/mJdBLHRo0n9k5-2HnFp6BEnkptM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/a7ddf6-2394-48d3-bfa1-6d655cd94468/1/1ROHJRLx8tA3tAHCYDyomU5yHlU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.8.196.0/22
Signature Algorithm: sha256WithRSAEncryption
9f:fb:b1:97:5b:67:74:ee:6a:fb:f0:24:cf:a4:0e:4f:8e:7e:
dd:9e:0c:76:ef:6a:36:f6:11:f0:03:65:58:05:42:66:69:70:
ea:51:18:0a:17:33:f6:ef:d3:ed:89:3c:1f:73:0d:64:9e:5e:
ef:61:af:b3:24:a8:64:63:05:10:c8:52:af:03:bb:12:8d:e0:
f9:f0:d3:d8:c4:3a:87:83:92:3e:07:c6:57:06:e7:ce:65:d2:
0d:51:00:9e:32:7b:13:c2:44:c6:7b:af:28:56:fb:6b:bd:d6:
91:c2:a6:df:58:1d:6a:3e:0b:95:bb:3e:78:9e:8a:5e:10:db:
3e:8c:ac:ec:ff:57:63:08:d9:cc:a1:ce:2a:d1:47:50:6b:28:
7b:e7:b2:ec:80:78:59:3c:37:b3:d1:94:72:79:f7:88:62:93:
91:6c:7f:9d:a3:b4:31:a5:c4:8d:03:9a:4d:39:e8:f4:5e:e6:
f7:0a:6c:7e:21:9d:2e:dc:1f:46:7a:b2:be:ed:f6:86:0a:be:
59:17:9e:cb:4c:7a:39:5c:df:2a:0d:6e:38:1c:6a:27:3c:78:
bf:87:75:9d:5c:5b:03:1a:9d:17:7a:b9:ac:03:a4:d1:b2:3c:
e2:85:f5:a8:a7:7b:df:51:f9:b5:77:2c:3c:3d:a9:19:a8:28:
2e:7d:d8:8c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYXqEEg6sNw8GB2uK9y4mK7OMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1MTM4NzI1MTJmMWYyZDAzN2I0MDFjMjYwM2NhODk5NGU3
MjFlNTUwHhcNMjMwMTI1MTc1MzMzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ODk3NDEyYzc0NjhkMjdmNjRlN2VkODc5YzVhN2EwNDQ5ZTRhNmQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3AbF91U/ZyPPzG0Tj0wtv0+4LEOc
w63VBiy+bK7/D9alO9uEKoejVdUQdgfqgroiRjOZ/DFch2purcmBGqGP4wlgoQ5N
DetMjg2BZumpPbLroi3seGVN+6pfAutWINelN7TpWdhBZV+HC7wPA8FBc/kWMqDj
6rk3KQmR22bGHlaRrTARljh97hEjGf5uwmca+h0zsGVh4THXQm8DJIoJqRgOBbRP
Q45QP4PX66XxWZ95qjvRce+aRK/Jl2wnG2sR+lavs9h3SqF0rBvOGFEvP1wW7Qxc
rw4X0GPcXGWlNDFksewY8pmTZI5aCGo8bUl00Vkl3ePjKKhDxS++mADsVwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJiXQSx0aNJ/ZOfth5xaegRJ5KbTMB8GA1UdIwQY
MBaAFNUThyUS8fLQN7QBwmA8qJlOch5VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVJPSEpSTHg4dEEzdEFIQ1lEeW9tVTV5SGxVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS9hN2RkZjYtMjM5NC00OGQzLWJmYTEt
NmQ2NTVjZDk0NDY4LzEvbUpkQkxIUm8wbjlrNS0ySG5GcDZCRW5rcHRNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS9hN2RkZjYtMjM5NC00OGQzLWJmYTEtNmQ2NTVjZDk0NDY4
LzEvMVJPSEpSTHg4dEEzdEFIQ1lEeW9tVTV5SGxVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuQjEMA0G
CSqGSIb3DQEBCwUAA4IBAQCf+7GXW2d07mr78CTPpA5Pjn7dngx272o29hHwA2VY
BUJmaXDqURgKFzP279PtiTwfcw1knl7vYa+zJKhkYwUQyFKvA7sSjeD58NPYxDqH
g5I+B8ZXBufOZdINUQCeMnsTwkTGe68oVvtrvdaRwqbfWB1qPguVuz54nopeENs+
jKzs/1djCNnMoc4q0UdQayh757LsgHhZPDez0ZRyefeIYpORbH+do7QxpcSNA5pN
Oej0Xub3Cmx+IZ0u3B9GerK+7faGCr5ZF57LTHo5XN8qDW44HGonPHi/h3WdXFsD
Gp0XermsA6TRsjzihfWop3vfUfm1dyw8PakZqCgufdiM
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:56 2024 by rpki-client on console-fra.rpki-client.org