Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/MwU0w8q8xqTisa7f_8oCWJHiiOg.roa
File: MwU0w8q8xqTisa7f_8oCWJHiiOg.roa (raw, json)
Hash identifier: zJqXZ5paDuIb+pXp1mACrAoydkmcrmj8/3PGfDInqro=
Subject key identifier: 33:05:34:C3:CA:BC:C6:A4:E2:B1:AE:DF:FF:CA:02:58:91:E2:88:E8
Certificate issuer: /CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Certificate serial: 01856F5DD497FE10E8CACD5961CF72C06210
Authority key identifier: 87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/MwU0w8q8xqTisa7f_8oCWJHiiOg.roa
Signing time: Sun 01 Jan 2023 22:04:58 +0000
ROA not before: Sun 01 Jan 2023 22:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208082
IP address blocks: 213.33.8.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:d4:97:fe:10:e8:ca:cd:59:61:cf:72:c0:62:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Validity
Not Before: Jan 1 22:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=330534c3cabcc6a4e2b1aedfffca025891e288e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:93:e4:e3:1f:af:5c:f5:db:37:fa:af:ad:56:
17:1a:bd:35:2c:00:f3:69:12:83:57:24:5f:54:d3:
6e:b0:b9:02:9f:37:f1:5b:95:ac:c0:78:c6:cc:39:
99:b7:a3:67:2a:ad:e6:85:da:bc:74:9d:18:ca:f0:
0f:9b:be:fa:87:bc:1e:16:a1:fb:0b:9f:b1:45:c5:
26:67:4b:6a:56:43:36:9d:f3:b4:4c:dd:e2:26:0b:
03:f5:51:7c:28:f6:bd:4a:15:04:5a:83:a4:fd:1b:
3e:80:f6:ce:1b:a8:30:09:80:5c:de:7e:94:d2:76:
65:5a:79:05:87:78:22:e4:29:0a:46:a9:3b:d3:c5:
ac:83:fe:8c:f8:da:1c:f4:72:1f:4d:dc:89:ee:de:
6c:59:08:70:dc:52:e0:7b:d9:51:ed:69:54:85:50:
43:90:a9:3b:d9:be:7f:37:92:b7:39:7a:f0:d7:62:
49:ea:86:dd:4e:af:f0:75:e3:15:e7:5e:6c:5e:34:
79:b9:ea:63:15:8c:2a:14:ab:9c:e9:bc:00:f7:2c:
a4:97:c7:54:c5:f9:d4:19:54:1f:7c:9e:f9:fb:53:
e0:9f:98:8f:d0:2e:f7:26:4a:28:10:85:c3:74:7d:
ad:10:b0:34:3e:6b:a4:d4:76:35:17:c1:d1:6d:f7:
7b:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:05:34:C3:CA:BC:C6:A4:E2:B1:AE:DF:FF:CA:02:58:91:E2:88:E8
X509v3 Authority Key Identifier:
keyid:87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/MwU0w8q8xqTisa7f_8oCWJHiiOg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/hwxYmk8iqcov-ZtMSPi99JKHFyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.33.8.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:43:a6:3b:06:b9:6c:d1:d6:d1:3e:b4:53:1a:5b:12:cd:54:
46:b9:b3:26:01:9a:fc:85:69:9d:d9:d0:b6:3a:85:e1:14:e7:
62:02:ac:44:7f:b5:6b:0f:03:b9:aa:d9:d1:42:a1:2f:1a:ed:
e9:86:fe:c4:30:1d:2b:55:54:8e:43:52:da:6b:b4:20:ef:25:
87:82:7b:85:e5:9f:bf:22:66:6d:69:1e:80:ef:35:48:fe:68:
38:d9:dc:62:47:e3:b0:5a:0f:f1:fe:16:b0:17:c7:1e:14:80:
f5:c4:63:cb:68:e3:ae:24:00:3c:65:23:26:bc:1c:08:10:aa:
fa:75:ec:3e:24:4e:49:21:e6:60:23:07:39:f9:30:3f:d7:41:
63:54:e2:c5:93:35:95:21:35:34:12:b1:50:39:10:da:6d:78:
77:31:e7:18:44:68:c3:ad:31:57:b0:b0:c8:3b:81:a4:e5:2f:
5a:8f:53:cb:b5:e1:fd:79:a7:61:1e:52:13:21:3b:96:28:b8:
43:a7:a1:71:04:c3:04:bb:a7:85:62:5e:b5:ff:2a:40:fb:81:
11:71:5f:b7:2f:69:cc:f6:7f:7b:45:3a:af:23:22:de:7e:b7:
b2:3f:a8:1a:9c:c5:7c:1b:19:a2:a7:fa:f8:85:6c:c8:3f:18:
1b:b7:21:93
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvXdSX/hDoys1ZYc9ywGIQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3MGM1ODlhNGYyMmE5Y2EyZmY5OWI0YzQ4ZjhiZGY0OTI4
NzE3MjUwHhcNMjMwMTAxMjIwNDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMzA1MzRjM2NhYmNjNmE0ZTJiMWFlZGZmZmNhMDI1ODkxZTI4OGU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApJPk4x+vXPXbN/qvrVYXGr01LADz
aRKDVyRfVNNusLkCnzfxW5WswHjGzDmZt6NnKq3mhdq8dJ0YyvAPm776h7weFqH7
C5+xRcUmZ0tqVkM2nfO0TN3iJgsD9VF8KPa9ShUEWoOk/Rs+gPbOG6gwCYBc3n6U
0nZlWnkFh3gi5CkKRqk708Wsg/6M+Noc9HIfTdyJ7t5sWQhw3FLge9lR7WlUhVBD
kKk72b5/N5K3OXrw12JJ6obdTq/wdeMV515sXjR5uepjFYwqFKuc6bwA9yykl8dU
xfnUGVQffJ75+1Pgn5iP0C73JkooEIXDdH2tELA0Pmuk1HY1F8HRbfd7IQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDMFNMPKvMak4rGu3//KAliR4ojoMB8GA1UdIwQY
MBaAFIcMWJpPIqnKL/mbTEj4vfSShxclMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHd4WW1rOGlxY292LVp0TVNQaTk5SktIRnlVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC9mNTA1YjUtMGU0Ni00YjNmLWJmMWIt
ODQ5ZDNhNmI5YzJkLzEvTXdVMHc4cTh4cVRpc2E3Zl84b0NXSkhpaU9nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZC9mNTA1YjUtMGU0Ni00YjNmLWJmMWItODQ5ZDNhNmI5YzJk
LzEvaHd4WW1rOGlxY292LVp0TVNQaTk5SktIRnlVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1SEIMA0G
CSqGSIb3DQEBCwUAA4IBAQCnQ6Y7Brls0dbRPrRTGlsSzVRGubMmAZr8hWmd2dC2
OoXhFOdiAqxEf7VrDwO5qtnRQqEvGu3phv7EMB0rVVSOQ1Laa7Qg7yWHgnuF5Z+/
ImZtaR6A7zVI/mg42dxiR+OwWg/x/hawF8ceFID1xGPLaOOuJAA8ZSMmvBwIEKr6
dew+JE5JIeZgIwc5+TA/10FjVOLFkzWVITU0ErFQORDabXh3MecYRGjDrTFXsLDI
O4Gk5S9aj1PLteH9eadhHlITITuWKLhDp6FxBMMEu6eFYl61/ypA+4ERcV+3L2nM
9n97RTqvIyLefreyP6ganMV8Gxmip/r4hWzIPxgbtyGT
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:38 2024 by rpki-client on console-fra.rpki-client.org