Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/cfa2ae-e524-4bd0-875b-89ace38220fb/1/MTxpy8223RsfC6UAD7zSne6gUNU.roa
File: MTxpy8223RsfC6UAD7zSne6gUNU.roa (raw, json)
Hash identifier: fjx2lznUtT3sKychB9fuYVybPvYEUuYPulTnR6i08S4=
Subject key identifier: 31:3C:69:CB:CD:B6:DD:1B:1F:0B:A5:00:0F:BC:D2:9D:EE:A0:50:D5
Certificate issuer: /CN=46ba3f80039b9e784cfb24bf2c7ddb24e1900a76
Certificate serial: 01907E6667085E5C0A043D4FA400E25C7C3D
Authority key identifier: 46:BA:3F:80:03:9B:9E:78:4C:FB:24:BF:2C:7D:DB:24:E1:90:0A:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rro_gAObnnhM-yS_LH3bJOGQCnY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/cfa2ae-e524-4bd0-875b-89ace38220fb/1/MTxpy8223RsfC6UAD7zSne6gUNU.roa
Signing time: Thu 04 Jul 2024 15:39:18 +0000
ROA not before: Thu 04 Jul 2024 15:39:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201512
IP address blocks: 176.101.92.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 12 Sep 2024 15:31:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:7e:66:67:08:5e:5c:0a:04:3d:4f:a4:00:e2:5c:7c:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46ba3f80039b9e784cfb24bf2c7ddb24e1900a76
Validity
Not Before: Jul 4 15:39:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=313c69cbcdb6dd1b1f0ba5000fbcd29deea050d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:27:81:6e:5a:fa:42:81:90:3e:d2:ec:56:5c:
30:54:6f:1f:43:5d:6f:84:7f:18:1b:c1:8b:5e:3b:
58:65:05:de:a7:a5:59:5f:e8:52:32:36:e1:85:ce:
63:01:f1:1f:9d:35:46:e6:59:5c:3d:09:77:a1:98:
a3:f5:74:12:94:a1:bc:8d:d7:d5:1d:aa:9d:17:65:
88:18:6b:65:40:fb:16:c9:23:10:34:cd:fb:e0:0a:
42:e8:7e:64:c7:2e:e7:53:71:29:ff:2d:ef:78:1a:
3b:60:58:29:8e:49:ed:ca:de:12:ba:c5:5f:d1:65:
6f:a1:df:88:c6:11:0d:9b:05:40:d2:bd:96:f0:73:
80:27:3c:b5:0c:ef:84:e3:36:fc:62:b5:bd:e8:b6:
a0:76:3a:52:a9:a6:5d:c1:a4:6f:fa:e8:c6:14:d7:
6e:18:ef:c4:d4:af:61:bf:b2:82:95:56:87:1d:c8:
44:d2:3a:a7:1a:25:0e:30:2b:c8:43:df:6a:a0:93:
ea:76:56:71:0f:40:9f:54:f5:80:13:70:7e:d8:ce:
a4:a8:ec:be:90:9e:f5:e2:74:37:91:7a:46:22:ef:
60:8b:d1:aa:bb:0e:3d:7d:d1:39:fc:ea:c7:67:8f:
45:d9:e7:5e:7d:e2:7d:0b:5b:b3:5a:a8:4e:ec:6b:
ae:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:3C:69:CB:CD:B6:DD:1B:1F:0B:A5:00:0F:BC:D2:9D:EE:A0:50:D5
X509v3 Authority Key Identifier:
keyid:46:BA:3F:80:03:9B:9E:78:4C:FB:24:BF:2C:7D:DB:24:E1:90:0A:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rro_gAObnnhM-yS_LH3bJOGQCnY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/cfa2ae-e524-4bd0-875b-89ace38220fb/1/MTxpy8223RsfC6UAD7zSne6gUNU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/cfa2ae-e524-4bd0-875b-89ace38220fb/1/Rro_gAObnnhM-yS_LH3bJOGQCnY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.101.92.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:d2:e1:09:bb:29:1c:dc:2e:b4:df:d4:8c:76:fb:b5:59:ec:
1e:4f:fd:40:6d:31:86:91:72:a1:4c:7e:3e:1d:12:88:dc:e9:
09:d0:07:9c:da:c2:0d:e7:7f:ec:81:f0:54:b8:cb:0e:60:cb:
c9:21:17:cb:f3:b7:06:01:91:1d:a6:79:7b:db:7d:50:89:c2:
c2:32:ed:76:a9:3b:66:03:5d:fa:4e:40:25:34:fc:4e:4a:cb:
8f:f5:dc:13:25:2f:4c:52:e2:0f:d9:cb:1c:4c:d8:aa:63:04:
bf:7b:9a:ca:ce:1b:46:ae:41:28:82:dd:03:8d:eb:6b:a0:75:
61:7d:be:36:9c:0f:d5:54:9a:a8:f2:23:6b:99:f1:90:66:e9:
66:2b:60:8d:7b:0b:d7:57:35:ad:19:60:26:fe:a3:77:c3:bb:
bb:da:88:fa:04:d9:06:8f:85:09:fe:19:f2:fe:df:00:ee:bb:
c7:34:b6:f3:1b:6e:11:9b:ca:e9:59:8e:ef:5c:b9:3e:4b:47:
57:e6:ec:0c:5b:80:d9:56:20:09:84:4a:81:d3:e2:38:f6:49:
50:b4:97:eb:60:a0:72:e4:45:5e:e0:fd:8f:33:b7:f2:ea:5d:
8a:46:51:7a:2c:c7:25:54:d9:15:e9:b8:20:68:e6:6f:59:82:
9b:a1:ed:53
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZB+ZmcIXlwKBD1PpADiXHw9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ2YmEzZjgwMDM5YjllNzg0Y2ZiMjRiZjJjN2RkYjI0ZTE5
MDBhNzYwHhcNMjQwNzA0MTUzOTE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMTNjNjljYmNkYjZkZDFiMWYwYmE1MDAwZmJjZDI5ZGVlYTA1MGQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4CeBblr6QoGQPtLsVlwwVG8fQ11v
hH8YG8GLXjtYZQXep6VZX+hSMjbhhc5jAfEfnTVG5llcPQl3oZij9XQSlKG8jdfV
HaqdF2WIGGtlQPsWySMQNM374ApC6H5kxy7nU3Ep/y3veBo7YFgpjkntyt4SusVf
0WVvod+IxhENmwVA0r2W8HOAJzy1DO+E4zb8YrW96LagdjpSqaZdwaRv+ujGFNdu
GO/E1K9hv7KClVaHHchE0jqnGiUOMCvIQ99qoJPqdlZxD0CfVPWAE3B+2M6kqOy+
kJ714nQ3kXpGIu9gi9Gquw49fdE5/OrHZ49F2edefeJ9C1uzWqhO7GuugQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDE8acvNtt0bHwulAA+80p3uoFDVMB8GA1UdIwQY
MBaAFEa6P4ADm554TPskvyx92yThkAp2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUnJvX2dBT2JubmhNLXlTX0xIM2JKT0dRQ25ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NS9jZmEyYWUtZTUyNC00YmQwLTg3NWIt
ODlhY2UzODIyMGZiLzEvTVR4cHk4MjIzUnNmQzZVQUQ3elNuZTZnVU5VLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NS9jZmEyYWUtZTUyNC00YmQwLTg3NWItODlhY2UzODIyMGZi
LzEvUnJvX2dBT2JubmhNLXlTX0xIM2JKT0dRQ25ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsGVcMA0G
CSqGSIb3DQEBCwUAA4IBAQCN0uEJuykc3C6039SMdvu1WeweT/1AbTGGkXKhTH4+
HRKI3OkJ0Aec2sIN53/sgfBUuMsOYMvJIRfL87cGAZEdpnl7231QicLCMu12qTtm
A136TkAlNPxOSsuP9dwTJS9MUuIP2cscTNiqYwS/e5rKzhtGrkEogt0DjetroHVh
fb42nA/VVJqo8iNrmfGQZulmK2CNewvXVzWtGWAm/qN3w7u72oj6BNkGj4UJ/hny
/t8A7rvHNLbzG24Rm8rpWY7vXLk+S0dX5uwMW4DZViAJhEqB0+I49klQtJfrYKBy
5EVe4P2PM7fy6l2KRlF6LMclVNkV6bggaOZvWYKboe1T
-----END CERTIFICATE-----
Generated at Thu Sep 12 18:15:30 2024 by rpki-client on console-fra.rpki-client.org