Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/27b39b-0449-4c64-ba79-a2aa6540f875/1/MNILFHwR3NUTC3NyTp-t1xUi9j8.roa
File: MNILFHwR3NUTC3NyTp-t1xUi9j8.roa (raw, json)
Hash identifier: E13z7qUtscAv31czhc4NYKQtpNbZo4OGAtOuY2BENA4=
Subject key identifier: 30:D2:0B:14:7C:11:DC:D5:13:0B:73:72:4E:9F:AD:D7:15:22:F6:3F
Certificate issuer: /CN=bfc470e9b58e557ea8c1dbedaeb9c6a5fc455125
Certificate serial: 01861B8DE62685A5E4BDF2E9631B4AA1CBC1
Authority key identifier: BF:C4:70:E9:B5:8E:55:7E:A8:C1:DB:ED:AE:B9:C6:A5:FC:45:51:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v8Rw6bWOVX6owdvtrrnGpfxFUSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/27b39b-0449-4c64-ba79-a2aa6540f875/1/MNILFHwR3NUTC3NyTp-t1xUi9j8.roa
Signing time: Sat 04 Feb 2023 08:32:09 +0000
ROA not before: Sat 04 Feb 2023 08:32:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50673
IP address blocks: 185.192.144.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:1b:8d:e6:26:85:a5:e4:bd:f2:e9:63:1b:4a:a1:cb:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfc470e9b58e557ea8c1dbedaeb9c6a5fc455125
Validity
Not Before: Feb 4 08:32:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=30d20b147c11dcd5130b73724e9fadd71522f63f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:e8:3d:9c:e9:0a:34:46:e8:ff:b4:10:82:7e:
80:70:07:c0:84:0d:58:da:3a:05:1c:cc:14:35:18:
30:eb:c4:ac:0a:8b:a0:6b:b0:24:f7:9b:f9:20:88:
b2:e7:f1:ac:66:5c:eb:a5:77:be:e1:b9:5f:e8:23:
fe:aa:6c:44:80:d1:f7:27:28:bb:da:fe:61:35:8f:
ec:50:b3:21:33:bf:12:e0:53:2b:0d:ac:28:e7:6a:
3e:e0:26:52:a6:e3:3c:8e:83:b9:88:c0:2d:2e:6c:
9c:d1:86:da:bb:13:e2:21:b1:20:09:0c:da:e0:35:
3a:ec:ea:cf:e2:14:f4:99:7d:14:8b:f7:d5:1d:f2:
38:8a:7b:47:81:5d:d9:90:e5:c4:05:10:dd:65:9d:
40:f6:cc:a5:42:c4:b9:a9:2d:f5:eb:f4:a1:3f:3e:
a7:f2:de:84:f6:bf:35:59:3d:4b:6d:e8:f6:f8:9d:
1f:7e:95:e0:db:06:58:4d:c3:cf:53:da:3c:b5:2d:
6d:9f:28:e2:07:5e:31:97:8b:e9:df:ae:50:6b:bc:
aa:09:99:12:7b:fb:40:a2:e7:7b:c8:3f:1d:45:d4:
59:73:d3:25:72:02:4b:c4:8f:9c:96:be:23:3d:be:
96:4a:16:4c:f6:55:b7:17:26:41:25:e4:cb:ea:c2:
aa:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:D2:0B:14:7C:11:DC:D5:13:0B:73:72:4E:9F:AD:D7:15:22:F6:3F
X509v3 Authority Key Identifier:
keyid:BF:C4:70:E9:B5:8E:55:7E:A8:C1:DB:ED:AE:B9:C6:A5:FC:45:51:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v8Rw6bWOVX6owdvtrrnGpfxFUSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/27b39b-0449-4c64-ba79-a2aa6540f875/1/MNILFHwR3NUTC3NyTp-t1xUi9j8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/27b39b-0449-4c64-ba79-a2aa6540f875/1/v8Rw6bWOVX6owdvtrrnGpfxFUSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.192.144.0/24
Signature Algorithm: sha256WithRSAEncryption
82:7e:89:84:e6:db:a9:57:37:9d:35:29:02:5e:c7:02:ae:b8:
ad:77:02:72:f5:c3:9b:fc:f9:41:38:d8:84:cb:cf:3c:70:31:
62:81:e7:39:97:96:7b:36:e1:0b:e8:71:bc:22:dd:36:5b:07:
08:a2:5b:af:6a:da:5c:d3:6d:49:d5:2e:88:86:ae:00:40:f3:
6d:26:44:df:6c:03:6d:a8:89:7e:64:10:6c:86:b4:d1:58:b0:
ff:85:78:62:b4:8b:6f:53:da:fa:bd:47:a6:ca:94:51:a2:18:
b3:47:a7:ec:e7:da:1a:d7:8a:5e:75:61:05:36:59:4c:8f:bc:
92:80:ed:be:00:ad:a8:b1:ed:29:b9:ec:a8:5c:85:4d:db:ad:
c9:57:fc:97:26:d6:43:64:69:10:0f:6c:31:9d:18:7f:48:14:
fc:ac:12:e9:4b:a0:ec:9d:8f:22:47:b7:88:8d:c8:66:a9:c3:
cf:d4:e9:ab:7b:1c:7e:ad:d8:9d:6f:e6:e6:2c:fc:c8:e7:24:
e3:ee:c4:51:f8:90:5e:0d:04:d7:d0:2f:62:1b:bc:c5:fc:73:
d5:d4:9b:72:2e:56:36:c3:27:36:3c:f9:15:de:a8:c6:13:a0:
95:d9:47:19:5f:16:38:72:24:84:63:fa:76:b4:38:ea:14:2e:
81:75:1f:d9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYYbjeYmhaXkvfLpYxtKocvBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmYzQ3MGU5YjU4ZTU1N2VhOGMxZGJlZGFlYjljNmE1ZmM0
NTUxMjUwHhcNMjMwMjA0MDgzMjA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMGQyMGIxNDdjMTFkY2Q1MTMwYjczNzI0ZTlmYWRkNzE1MjJmNjNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgug9nOkKNEbo/7QQgn6AcAfAhA1Y
2joFHMwUNRgw68SsCouga7Ak95v5IIiy5/GsZlzrpXe+4blf6CP+qmxEgNH3Jyi7
2v5hNY/sULMhM78S4FMrDawo52o+4CZSpuM8joO5iMAtLmyc0YbauxPiIbEgCQza
4DU67OrP4hT0mX0Ui/fVHfI4intHgV3ZkOXEBRDdZZ1A9sylQsS5qS316/ShPz6n
8t6E9r81WT1Lbej2+J0ffpXg2wZYTcPPU9o8tS1tnyjiB14xl4vp365Qa7yqCZkS
e/tAoud7yD8dRdRZc9MlcgJLxI+clr4jPb6WShZM9lW3FyZBJeTL6sKq6wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDDSCxR8EdzVEwtzck6frdcVIvY/MB8GA1UdIwQY
MBaAFL/EcOm1jlV+qMHb7a65xqX8RVElMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdjhSdzZiV09WWDZvd2R2dHJybkdwZnhGVVNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi8yN2IzOWItMDQ0OS00YzY0LWJhNzkt
YTJhYTY1NDBmODc1LzEvTU5JTEZId1IzTlVUQzNOeVRwLXQxeFVpOWo4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi8yN2IzOWItMDQ0OS00YzY0LWJhNzktYTJhYTY1NDBmODc1
LzEvdjhSdzZiV09WWDZvd2R2dHJybkdwZnhGVVNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAucCQMA0G
CSqGSIb3DQEBCwUAA4IBAQCCfomE5tupVzedNSkCXscCrritdwJy9cOb/PlBONiE
y888cDFigec5l5Z7NuEL6HG8It02WwcIoluvatpc021J1S6Ihq4AQPNtJkTfbANt
qIl+ZBBshrTRWLD/hXhitItvU9r6vUemypRRohizR6fs59oa14pedWEFNllMj7yS
gO2+AK2ose0pueyoXIVN263JV/yXJtZDZGkQD2wxnRh/SBT8rBLpS6DsnY8iR7eI
jchmqcPP1Omrexx+rdidb+bmLPzI5yTj7sRR+JBeDQTX0C9iG7zF/HPV1JtyLlY2
wyc2PPkV3qjGE6CV2UcZXxY4ciSEY/p2tDjqFC6BdR/Z
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:18 2023 by rpki-client on console-ams.rpki-client.org