Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/MJu1_4QVFMgt9rGw19hcK3yPyno.roa
File: MJu1_4QVFMgt9rGw19hcK3yPyno.roa (raw, json)
Hash identifier: pktAIBjMyVrBm4oKGudxV0hJEdEjoqaCms7J7v7Kt4w=
Subject key identifier: 30:9B:B5:FF:84:15:14:C8:2D:F6:B1:B0:D7:D8:5C:2B:7C:8F:CA:7A
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 018D11CD75C30EB7AA32DFDA00CB0DE43C13
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/MJu1_4QVFMgt9rGw19hcK3yPyno.roa
Signing time: Tue 16 Jan 2024 10:24:54 +0000
ROA not before: Tue 16 Jan 2024 10:24:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200239
IP address blocks: 81.29.159.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 15 Feb 2024 11:05:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:11:cd:75:c3:0e:b7:aa:32:df:da:00:cb:0d:e4:3c:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Jan 16 10:24:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=309bb5ff841514c82df6b1b0d7d85c2b7c8fca7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:e6:e7:ff:58:3f:2b:1e:d1:58:63:d9:f0:76:
9b:ce:b4:93:cb:5c:75:45:07:21:9c:bf:dd:00:63:
4d:40:a1:c6:8e:f0:e2:d3:df:a2:1a:e7:5a:94:18:
97:81:8a:cf:16:2e:a5:95:ed:60:99:a1:f1:05:a6:
89:3a:2a:b0:d2:8d:4d:0e:be:84:18:4c:20:e1:2d:
d6:83:91:a6:5d:90:41:9e:87:c0:bd:b9:f2:ae:46:
aa:8f:41:d8:94:5a:fd:db:5d:cb:35:b3:b7:fb:a0:
75:61:c7:19:df:e0:e4:65:9a:fe:ec:09:01:b8:5d:
12:1f:28:72:db:ac:35:c9:46:ce:b5:64:10:ee:80:
54:2d:f2:0a:6f:d5:42:f2:c3:d5:a6:00:55:28:6f:
90:81:e8:b6:59:18:f6:10:bf:83:aa:46:02:fe:ed:
7c:6f:86:af:d3:5c:58:9b:76:89:1d:4e:82:2c:bb:
0d:88:09:f6:c7:aa:33:aa:0c:4b:31:97:4b:2d:37:
fd:23:5e:9d:0d:f6:76:53:1c:43:b1:ff:5b:57:fe:
99:b2:ac:38:89:32:fe:f8:95:5f:87:79:a8:52:2c:
ff:f3:83:53:3e:64:fe:fd:b8:ce:76:91:de:21:cf:
05:69:3c:70:b6:79:c7:19:14:08:5e:07:4e:21:ba:
9f:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:9B:B5:FF:84:15:14:C8:2D:F6:B1:B0:D7:D8:5C:2B:7C:8F:CA:7A
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/MJu1_4QVFMgt9rGw19hcK3yPyno.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.29.159.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:d3:75:7a:4a:ba:9a:0a:72:39:12:32:07:b4:8d:24:52:d6:
78:cc:3e:8c:54:9e:c6:91:3b:d4:ce:c0:f0:3f:ce:f0:89:f0:
64:93:e4:93:e3:8d:80:de:a4:75:04:37:56:33:ae:6a:40:ff:
8e:1a:9e:64:5b:23:01:b9:19:58:a5:bb:ad:f3:d7:2f:f7:0e:
96:52:28:78:cf:d0:45:fa:54:81:fe:13:53:8c:0e:9d:ae:62:
9d:d9:f7:49:30:27:67:2e:1e:ee:e1:b4:b1:16:0e:7f:ae:2b:
c5:4a:31:78:d7:ce:fd:a1:34:b5:41:c7:d6:bd:b4:4f:8a:9d:
67:b3:4d:75:dd:1b:2f:9e:0c:e7:bb:3e:73:95:0a:f5:a6:e7:
de:8f:5b:7b:45:69:8f:d3:e4:e5:32:c9:2f:b1:de:fc:f1:85:
32:c7:4e:25:12:b9:7d:6a:8d:2e:f7:8a:00:2e:2f:71:43:22:
73:d2:42:83:dd:2f:f4:6a:c8:a4:50:57:4d:ba:af:0d:e1:cb:
59:c2:f6:b1:09:e4:a0:5b:34:0a:a2:72:91:bc:fa:7e:55:a6:
48:d5:8c:b9:93:9c:c2:72:df:a9:67:83:22:0a:ab:0f:51:e9:
a3:22:8d:a0:1a:25:c3:a6:66:b5:96:dc:f3:c2:6b:14:42:9a:
79:3c:ad:c4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY0RzXXDDreqMt/aAMsN5DwTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5ZTUxNjk0YzRkNDZiNGZjYzAyZmFlNzFlNWRiOTQyYTcx
MDhlNDcwHhcNMjQwMTE2MTAyNDU0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMDliYjVmZjg0MTUxNGM4MmRmNmIxYjBkN2Q4NWMyYjdjOGZjYTdhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ubn/1g/Kx7RWGPZ8HabzrSTy1x1
RQchnL/dAGNNQKHGjvDi09+iGudalBiXgYrPFi6lle1gmaHxBaaJOiqw0o1NDr6E
GEwg4S3Wg5GmXZBBnofAvbnyrkaqj0HYlFr9213LNbO3+6B1YccZ3+DkZZr+7AkB
uF0SHyhy26w1yUbOtWQQ7oBULfIKb9VC8sPVpgBVKG+Qgei2WRj2EL+DqkYC/u18
b4av01xYm3aJHU6CLLsNiAn2x6ozqgxLMZdLLTf9I16dDfZ2UxxDsf9bV/6Zsqw4
iTL++JVfh3moUiz/84NTPmT+/bjOdpHeIc8FaTxwtnnHGRQIXgdOIbqfnQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDCbtf+EFRTILfaxsNfYXCt8j8p6MB8GA1UdIwQY
MBaAFEnlFpTE1GtPzAL65x5duUKnEI5HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2VVV2xNVFVhMF9NQXZybkhsMjVRcWNRamtjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni85ZGI1MjUtMTA1OS00YzA3LWE1YWQt
MTkxODliM2M5YzdkLzEvTUp1MV80UVZGTWd0OXJHdzE5aGNLM3lQeW5vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni85ZGI1MjUtMTA1OS00YzA3LWE1YWQtMTkxODliM2M5Yzdk
LzEvU2VVV2xNVFVhMF9NQXZybkhsMjVRcWNRamtjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUR2fMA0G
CSqGSIb3DQEBCwUAA4IBAQAr03V6SrqaCnI5EjIHtI0kUtZ4zD6MVJ7GkTvUzsDw
P87wifBkk+ST442A3qR1BDdWM65qQP+OGp5kWyMBuRlYpbut89cv9w6WUih4z9BF
+lSB/hNTjA6drmKd2fdJMCdnLh7u4bSxFg5/rivFSjF41879oTS1QcfWvbRPip1n
s0113Rsvngznuz5zlQr1pufej1t7RWmP0+TlMskvsd788YUyx04lErl9ao0u94oA
Li9xQyJz0kKD3S/0asikUFdNuq8N4ctZwvaxCeSgWzQKonKRvPp+VaZI1Yy5k5zC
ct+pZ4MiCqsPUemjIo2gGiXDpma1ltzzwmsUQpp5PK3E
-----END CERTIFICATE-----
Generated at Thu Feb 15 15:57:08 2024 by rpki-client on console-ams.rpki-client.org