Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/MprxgcwwXuXb-dyVC1pQ3lQzmWY.roa
File: MprxgcwwXuXb-dyVC1pQ3lQzmWY.roa (raw, json)
Hash identifier: y8N4GDyG+aKSLL2TGtrPMg69hcHsCXhzqlhpLCZTUMs=
Subject key identifier: 32:9A:F1:81:CC:30:5E:E5:DB:F9:DC:95:0B:5A:50:DE:54:33:99:66
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0186037867679B9D04DE942B5BDF9C23DD64
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/MprxgcwwXuXb-dyVC1pQ3lQzmWY.roa
Signing time: Mon 30 Jan 2023 16:17:47 +0000
ROA not before: Mon 30 Jan 2023 16:17:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7411
IP address blocks: 188.212.121.0/24 maxlen: 24
128.0.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 Mar 2023 15:05:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:03:78:67:67:9b:9d:04:de:94:2b:5b:df:9c:23:dd:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 30 16:17:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=329af181cc305ee5dbf9dc950b5a50de54339966
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:a9:86:38:63:f9:2c:93:e1:e8:68:cd:b8:f6:
5e:24:01:8d:7a:1b:19:a5:93:40:2b:29:c4:ea:7d:
db:10:14:3c:62:80:ab:e6:b4:98:00:82:61:3f:9f:
46:36:ea:23:a1:13:59:53:e5:e4:88:53:4d:b4:8b:
4f:c8:1a:24:44:82:71:41:a9:8f:2f:59:7b:d8:a1:
83:07:3b:e7:91:19:e1:f9:75:9f:ed:70:ce:b5:63:
22:1a:8e:e3:46:f3:17:8b:48:e1:cc:91:3b:e3:a3:
10:73:5a:52:b3:43:83:6b:32:3f:81:ea:ed:42:5f:
bc:d9:f4:10:b5:c9:a5:20:0c:10:7d:09:08:12:6c:
d8:fe:fd:28:f3:45:ae:18:cf:54:51:25:b2:12:d0:
d1:5b:cc:76:52:16:51:38:71:74:fc:f1:85:6c:83:
bd:8a:12:17:4d:e1:6d:67:27:2f:89:6b:20:33:cb:
7b:f0:d1:0e:1d:2a:e6:5a:cf:68:3d:69:42:05:d5:
a2:6e:7d:3d:22:18:65:9a:48:31:2f:27:46:97:d5:
82:cd:47:d0:3e:44:25:19:d5:6b:90:e8:f2:a6:64:
b8:15:b6:d1:79:8e:f1:5f:92:06:74:6b:c7:30:4d:
fc:25:12:95:59:22:30:29:46:57:aa:82:34:3e:90:
fe:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:9A:F1:81:CC:30:5E:E5:DB:F9:DC:95:0B:5A:50:DE:54:33:99:66
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/MprxgcwwXuXb-dyVC1pQ3lQzmWY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
128.0.41.0/24
188.212.121.0/24
Signature Algorithm: sha256WithRSAEncryption
25:82:67:be:77:72:dd:5f:05:7f:d1:d2:a3:41:8c:59:b4:4a:
67:a3:18:8e:d0:ea:ef:a7:52:2b:e5:3a:aa:45:3d:d3:85:be:
c7:14:13:90:4b:02:f8:3d:d6:ec:f3:be:58:38:8d:24:9d:88:
6b:e5:17:ba:95:1d:0c:4b:aa:be:10:0e:f2:bc:6e:0d:eb:b7:
8f:9c:74:27:3f:cc:c6:89:8b:97:22:f8:9c:89:1e:f0:e8:b6:
ab:56:76:8f:b1:7c:20:a1:c9:19:27:53:49:17:2f:00:e0:0b:
55:98:61:c4:aa:e4:3e:77:fe:b2:ef:8a:d9:e3:e4:9f:f0:89:
0c:9d:7b:3e:7b:f5:20:fd:11:6f:32:19:13:98:a5:11:4b:7a:
71:70:42:ce:6e:27:e3:ea:02:12:1b:f9:33:64:b8:35:ad:59:
e7:fd:40:ab:f4:c7:30:47:10:21:30:f9:bf:61:9d:8d:12:87:
de:95:b3:e8:fb:52:ca:64:69:8d:3f:95:f6:58:95:54:59:50:
fe:c1:4e:d2:ae:0d:50:eb:81:92:ec:e2:96:5d:04:f7:5d:53:
f4:30:07:a5:34:27:37:c3:e1:9d:b4:80:98:24:ca:43:91:7e:
29:3b:36:c7:25:d2:d7:b4:00:0b:2e:c2:9e:5e:99:63:25:70:
0a:c5:2f:45
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYYDeGdnm50E3pQrW9+cI91kMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjMwMTMwMTYxNzQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMjlhZjE4MWNjMzA1ZWU1ZGJmOWRjOTUwYjVhNTBkZTU0MzM5OTY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo6mGOGP5LJPh6GjNuPZeJAGNehsZ
pZNAKynE6n3bEBQ8YoCr5rSYAIJhP59GNuojoRNZU+XkiFNNtItPyBokRIJxQamP
L1l72KGDBzvnkRnh+XWf7XDOtWMiGo7jRvMXi0jhzJE746MQc1pSs0ODazI/gert
Ql+82fQQtcmlIAwQfQkIEmzY/v0o80WuGM9UUSWyEtDRW8x2UhZROHF0/PGFbIO9
ihIXTeFtZycviWsgM8t78NEOHSrmWs9oPWlCBdWibn09IhhlmkgxLydGl9WCzUfQ
PkQlGdVrkOjypmS4FbbReY7xX5IGdGvHME38JRKVWSIwKUZXqoI0PpD+vQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFDKa8YHMMF7l2/nclQtaUN5UM5lmMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvTXByeGdjd3dYdVhiLWR5VkMxcFEzbFF6bVdZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAgAApAwQA
vNR5MA0GCSqGSIb3DQEBCwUAA4IBAQAlgme+d3LdXwV/0dKjQYxZtEpnoxiO0Orv
p1Ir5TqqRT3Thb7HFBOQSwL4Pdbs875YOI0knYhr5Re6lR0MS6q+EA7yvG4N67eP
nHQnP8zGiYuXIviciR7w6LarVnaPsXwgockZJ1NJFy8A4AtVmGHEquQ+d/6y74rZ
4+Sf8IkMnXs+e/Ug/RFvMhkTmKURS3pxcELObifj6gISG/kzZLg1rVnn/UCr9Mcw
RxAhMPm/YZ2NEofelbPo+1LKZGmNP5X2WJVUWVD+wU7Srg1Q64GS7OKWXQT3XVP0
MAelNCc3w+GdtICYJMpDkX4pOzbHJdLXtAALLsKeXpljJXAKxS9F
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:12 2024 by rpki-client on console-ams.rpki-client.org