Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/e4af0a-a170-4ca3-ab57-54853c47661f/1/mpJzO1LYK3Vu8opDRnAXUZFbRDQ.roa
File: mpJzO1LYK3Vu8opDRnAXUZFbRDQ.roa (raw, json)
Hash identifier: 73hk36zyrPzGwDC8GKg2/2yg5HshdhhQRSJ+JTjTwJs=
Subject key identifier: 9A:92:73:3B:52:D8:2B:75:6E:F2:8A:43:46:70:17:51:91:5B:44:34
Certificate issuer: /CN=a45ded68e2260321bca39e8465b49c25d58a56e6
Certificate serial: 01857215651B275B6575EA65987B8F63BBD2
Authority key identifier: A4:5D:ED:68:E2:26:03:21:BC:A3:9E:84:65:B4:9C:25:D5:8A:56:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pF3taOImAyG8o56EZbScJdWKVuY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/e4af0a-a170-4ca3-ab57-54853c47661f/1/mpJzO1LYK3Vu8opDRnAXUZFbRDQ.roa
Signing time: Mon 02 Jan 2023 10:44:42 +0000
ROA not before: Mon 02 Jan 2023 10:44:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 185.128.227.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Feb 2023 03:04:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:15:65:1b:27:5b:65:75:ea:65:98:7b:8f:63:bb:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a45ded68e2260321bca39e8465b49c25d58a56e6
Validity
Not Before: Jan 2 10:44:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9a92733b52d82b756ef28a4346701751915b4434
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:3c:02:ae:cf:c7:15:39:92:21:b9:21:4c:31:
52:06:95:fb:d7:db:00:f2:60:27:5c:fe:96:0b:d5:
ce:6e:07:c0:04:07:5d:88:c1:5f:b6:5c:5b:8b:0c:
02:52:3c:fe:f3:5d:bb:82:ba:99:b9:41:0a:27:dc:
77:01:5d:bc:82:48:c7:c4:16:d5:49:7f:dc:b8:60:
fd:13:50:eb:77:f6:9d:3c:fd:d2:9e:d9:3f:ff:64:
3b:38:ca:db:c3:08:70:fe:a9:c6:c6:9e:5a:2a:40:
27:b6:eb:76:47:f5:b4:66:c7:f2:a3:ce:99:bb:3e:
77:05:2e:04:15:b9:57:ba:9f:56:26:f4:4e:41:99:
24:1a:de:b8:7c:2b:68:53:6e:d7:b9:d7:a7:1e:b4:
0f:3d:57:e7:ec:04:e4:32:8a:e7:b1:62:9d:3a:83:
2d:1a:12:d7:b0:a4:e5:03:f9:29:14:ef:44:0b:b7:
2a:26:3c:ae:8e:43:27:2a:be:6b:d9:73:b6:64:cc:
92:0d:30:df:21:cd:a3:93:0a:02:87:03:70:c9:56:
f0:8e:94:d6:01:f3:45:c1:90:ab:44:d5:98:2d:70:
b4:ed:a2:3f:25:5c:f1:5d:bc:b1:1a:62:e2:ea:4e:
88:66:9b:74:37:8e:9e:2a:af:11:00:73:02:9b:53:
a3:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:92:73:3B:52:D8:2B:75:6E:F2:8A:43:46:70:17:51:91:5B:44:34
X509v3 Authority Key Identifier:
keyid:A4:5D:ED:68:E2:26:03:21:BC:A3:9E:84:65:B4:9C:25:D5:8A:56:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pF3taOImAyG8o56EZbScJdWKVuY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/e4af0a-a170-4ca3-ab57-54853c47661f/1/mpJzO1LYK3Vu8opDRnAXUZFbRDQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/e4af0a-a170-4ca3-ab57-54853c47661f/1/pF3taOImAyG8o56EZbScJdWKVuY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.128.227.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:dd:b1:50:eb:e6:38:e0:6d:2c:ed:e7:ba:4a:fb:29:9d:af:
07:dd:c1:fa:c6:ee:98:33:31:33:49:5b:c9:96:99:a7:c4:79:
4b:2a:39:96:3d:ad:2f:63:12:28:c6:bc:bb:58:3f:0f:be:c6:
11:a3:f6:dd:29:35:c7:65:2f:e5:e7:65:7c:d2:61:90:81:d6:
e0:10:e7:2e:13:67:e5:9f:6b:7d:08:78:d4:26:5b:84:34:ad:
c9:b5:2e:50:94:37:b5:f9:fc:49:3c:c8:f6:33:03:87:99:79:
4e:1d:e5:86:42:30:4b:6f:95:b8:04:0b:cf:53:c2:50:63:42:
fb:8c:66:95:a9:43:9c:a1:7d:e1:48:ed:c5:20:1b:2b:c6:6d:
da:fd:92:1f:46:5d:f1:98:ff:3f:41:2d:99:f8:17:6a:1a:df:
b5:e6:1d:6a:0b:6f:8a:ff:a5:5b:16:cb:4f:d8:2c:9b:48:c5:
6a:69:28:3e:14:e1:6e:8e:80:01:0b:88:22:a5:da:8f:82:79:
05:eb:24:c6:d1:c7:e3:32:30:53:08:5b:78:8b:c5:21:fe:cc:
af:8c:d0:96:58:2b:56:02:3a:97:9b:f6:c3:3c:31:30:1d:33:
22:c5:ba:14:45:48:63:fa:82:d1:bb:0e:c4:18:f0:4e:9f:db:
a2:0e:94:53
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyFWUbJ1tldeplmHuPY7vSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE0NWRlZDY4ZTIyNjAzMjFiY2EzOWU4NDY1YjQ5YzI1ZDU4
YTU2ZTYwHhcNMjMwMTAyMTA0NDQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YTkyNzMzYjUyZDgyYjc1NmVmMjhhNDM0NjcwMTc1MTkxNWI0NDM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgjwCrs/HFTmSIbkhTDFSBpX719sA
8mAnXP6WC9XObgfABAddiMFftlxbiwwCUjz+8127grqZuUEKJ9x3AV28gkjHxBbV
SX/cuGD9E1Drd/adPP3Sntk//2Q7OMrbwwhw/qnGxp5aKkAntut2R/W0Zsfyo86Z
uz53BS4EFblXup9WJvROQZkkGt64fCtoU27XudenHrQPPVfn7ATkMornsWKdOoMt
GhLXsKTlA/kpFO9EC7cqJjyujkMnKr5r2XO2ZMySDTDfIc2jkwoChwNwyVbwjpTW
AfNFwZCrRNWYLXC07aI/JVzxXbyxGmLi6k6IZpt0N46eKq8RAHMCm1OjewIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJqScztS2Ct1bvKKQ0ZwF1GRW0Q0MB8GA1UdIwQY
MBaAFKRd7WjiJgMhvKOehGW0nCXVilbmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcEYzdGFPSW1BeUc4bzU2RVpiU2NKZFdLVnVZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS9lNGFmMGEtYTE3MC00Y2EzLWFiNTct
NTQ4NTNjNDc2NjFmLzEvbXBKek8xTFlLM1Z1OG9wRFJuQVhVWkZiUkRRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85ZS9lNGFmMGEtYTE3MC00Y2EzLWFiNTctNTQ4NTNjNDc2NjFm
LzEvcEYzdGFPSW1BeUc4bzU2RVpiU2NKZFdLVnVZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuYDjMA0G
CSqGSIb3DQEBCwUAA4IBAQA/3bFQ6+Y44G0s7ee6Svspna8H3cH6xu6YMzEzSVvJ
lpmnxHlLKjmWPa0vYxIoxry7WD8PvsYRo/bdKTXHZS/l52V80mGQgdbgEOcuE2fl
n2t9CHjUJluENK3JtS5QlDe1+fxJPMj2MwOHmXlOHeWGQjBLb5W4BAvPU8JQY0L7
jGaVqUOcoX3hSO3FIBsrxm3a/ZIfRl3xmP8/QS2Z+BdqGt+15h1qC2+K/6VbFstP
2CybSMVqaSg+FOFujoABC4gipdqPgnkF6yTG0cfjMjBTCFt4i8Uh/syvjNCWWCtW
AjqXm/bDPDEwHTMixboURUhj+oLRuw7EGPBOn9uiDpRT
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:28 2024 by rpki-client on console-ams.rpki-client.org