Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/b2064b-be09-43d9-b087-a4e991b0f144/1/3ZRModlTLJWsmcJHaou6t-Q7h_M.roa
File: 3ZRModlTLJWsmcJHaou6t-Q7h_M.roa (raw, json)
Hash identifier: cMXNjmqYb5kkVnhCxESAt7f9j1dpas3USuDxwyEG974=
Subject key identifier: DD:94:4C:A1:D9:53:2C:95:AC:99:C2:47:6A:8B:BA:B7:E4:3B:87:F3
Certificate issuer: /CN=02930f8c688c04d17433a2b9c7249bc625bce316
Certificate serial: 01856C6EF7DBDE8EBD5EAE256153F0E4A1E4
Authority key identifier: 02:93:0F:8C:68:8C:04:D1:74:33:A2:B9:C7:24:9B:C6:25:BC:E3:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ApMPjGiMBNF0M6K5xySbxiW84xY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/b2064b-be09-43d9-b087-a4e991b0f144/1/3ZRModlTLJWsmcJHaou6t-Q7h_M.roa
Signing time: Sun 01 Jan 2023 08:24:49 +0000
ROA not before: Sun 01 Jan 2023 08:24:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50889
IP address blocks: 37.186.111.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:6e:f7:db:de:8e:bd:5e:ae:25:61:53:f0:e4:a1:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02930f8c688c04d17433a2b9c7249bc625bce316
Validity
Not Before: Jan 1 08:24:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dd944ca1d9532c95ac99c2476a8bbab7e43b87f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:8c:22:27:71:d3:9b:f6:0a:78:21:8a:d1:02:
39:af:63:76:13:25:f1:ad:77:77:c0:29:f2:77:85:
6f:07:7f:f4:c3:a3:8a:85:b8:8e:dd:23:8a:b5:a1:
86:3a:a6:45:6e:7c:db:d9:f1:07:cf:48:dd:be:c6:
3a:4e:f9:f0:71:eb:6a:f7:db:44:01:e1:c8:7c:3d:
38:4e:1b:71:d1:bb:46:f8:7c:5a:1a:bb:05:86:9a:
ca:3b:ed:17:82:d4:fc:a2:5d:91:99:12:99:a0:d7:
77:ce:79:53:8d:0c:78:75:e3:a7:7b:ce:9d:9a:56:
63:74:de:97:e8:1e:d8:61:11:1f:19:d9:e9:87:2a:
1a:ca:79:23:68:e2:7b:b4:95:33:87:5d:55:b8:4f:
7f:f6:9a:1a:cf:27:53:ce:10:09:3e:74:18:5d:e7:
f5:66:b6:31:45:db:c2:4f:0f:6b:46:21:a1:ce:50:
f9:d9:92:01:5b:77:0d:24:bf:17:a9:0e:2e:47:db:
2c:77:74:b6:c6:23:e8:99:02:2d:8c:f7:d7:15:30:
99:84:dc:d8:bc:b9:8a:f3:5c:17:86:31:2d:c1:98:
3e:1d:78:33:43:16:82:f4:1f:f5:a3:3c:c3:9c:02:
c5:a8:49:ba:41:13:99:fd:e2:d1:a2:00:14:04:82:
b3:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:94:4C:A1:D9:53:2C:95:AC:99:C2:47:6A:8B:BA:B7:E4:3B:87:F3
X509v3 Authority Key Identifier:
keyid:02:93:0F:8C:68:8C:04:D1:74:33:A2:B9:C7:24:9B:C6:25:BC:E3:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ApMPjGiMBNF0M6K5xySbxiW84xY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/b2064b-be09-43d9-b087-a4e991b0f144/1/3ZRModlTLJWsmcJHaou6t-Q7h_M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/b2064b-be09-43d9-b087-a4e991b0f144/1/ApMPjGiMBNF0M6K5xySbxiW84xY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.186.111.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:55:cf:04:dd:fa:d0:c2:d1:ea:72:cf:15:06:0e:89:0b:79:
94:17:fb:47:0f:3e:96:d2:5e:69:4d:9b:66:a7:26:11:28:33:
e9:d1:5b:4b:fc:dd:ab:8b:3b:a5:9a:c8:fa:b3:d6:91:1e:27:
ba:b8:5f:11:27:d7:87:ba:0a:2f:38:de:e5:44:4f:96:23:10:
2f:45:7f:77:5c:bf:df:28:9f:f7:bf:72:c2:bf:76:2a:32:fb:
25:51:82:15:34:ec:b1:4d:d2:b1:4f:4e:5b:56:e7:f1:5b:ad:
27:1d:f8:40:cc:37:2b:12:0c:6c:24:96:fd:d9:bc:44:fa:3d:
d9:80:5d:e6:38:9d:6c:85:f6:8d:5d:08:5e:19:4a:f2:80:6f:
af:ca:78:36:9e:d0:ad:0c:ba:85:f3:11:03:60:cc:98:e2:bb:
6c:df:2b:86:f9:0f:ca:7d:4f:cb:bb:51:d7:9d:5b:55:b2:2c:
a8:6e:4c:d0:e4:01:49:87:2c:e9:bc:da:99:29:be:74:f8:df:
af:8c:ff:d2:c8:a1:ac:e6:cb:09:f5:18:4e:62:c9:49:df:ee:
d2:62:a5:3d:94:dd:95:5a:67:95:d4:71:b1:d6:f1:0d:30:b5:
d9:23:c6:71:57:36:c2:f6:15:7e:47:0f:44:fb:7f:cd:f5:ec:
01:40:3f:75
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsbvfb3o69Xq4lYVPw5KHkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyOTMwZjhjNjg4YzA0ZDE3NDMzYTJiOWM3MjQ5YmM2MjVi
Y2UzMTYwHhcNMjMwMTAxMDgyNDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZDk0NGNhMWQ5NTMyYzk1YWM5OWMyNDc2YThiYmFiN2U0M2I4N2YzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg4wiJ3HTm/YKeCGK0QI5r2N2EyXx
rXd3wCnyd4VvB3/0w6OKhbiO3SOKtaGGOqZFbnzb2fEHz0jdvsY6Tvnwcetq99tE
AeHIfD04Thtx0btG+HxaGrsFhprKO+0XgtT8ol2RmRKZoNd3znlTjQx4deOne86d
mlZjdN6X6B7YYREfGdnphyoaynkjaOJ7tJUzh11VuE9/9poazydTzhAJPnQYXef1
ZrYxRdvCTw9rRiGhzlD52ZIBW3cNJL8XqQ4uR9ssd3S2xiPomQItjPfXFTCZhNzY
vLmK81wXhjEtwZg+HXgzQxaC9B/1ozzDnALFqEm6QROZ/eLRogAUBIKzowIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN2UTKHZUyyVrJnCR2qLurfkO4fzMB8GA1UdIwQY
MBaAFAKTD4xojATRdDOiucckm8YlvOMWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQXBNUGpHaU1CTkYwTTZLNXh5U2J4aVc4NHhZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS9iMjA2NGItYmUwOS00M2Q5LWIwODct
YTRlOTkxYjBmMTQ0LzEvM1pSTW9kbFRMSldzbWNKSGFvdTZ0LVE3aF9NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS9iMjA2NGItYmUwOS00M2Q5LWIwODctYTRlOTkxYjBmMTQ0
LzEvQXBNUGpHaU1CTkYwTTZLNXh5U2J4aVc4NHhZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJbpvMA0G
CSqGSIb3DQEBCwUAA4IBAQCmVc8E3frQwtHqcs8VBg6JC3mUF/tHDz6W0l5pTZtm
pyYRKDPp0VtL/N2rizulmsj6s9aRHie6uF8RJ9eHugovON7lRE+WIxAvRX93XL/f
KJ/3v3LCv3YqMvslUYIVNOyxTdKxT05bVufxW60nHfhAzDcrEgxsJJb92bxE+j3Z
gF3mOJ1shfaNXQheGUrygG+vyng2ntCtDLqF8xEDYMyY4rts3yuG+Q/KfU/Lu1HX
nVtVsiyobkzQ5AFJhyzpvNqZKb50+N+vjP/SyKGs5ssJ9RhOYslJ3+7SYqU9lN2V
WmeV1HGx1vENMLXZI8ZxVzbC9hV+Rw9E+3/N9ewBQD91
-----END CERTIFICATE-----
Generated at Tue Jan 2 06:32:41 2024 by rpki-client on console-ams.rpki-client.org