Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/pforrm0JVXwXYDLPUlDPBK6a-ms.roa
File: pforrm0JVXwXYDLPUlDPBK6a-ms.roa (raw, json)
Hash identifier: eXxgRUJtMosH9lAHpHDwPFHj9ZCyeftSQcAUOc3+DQY=
Subject key identifier: A5:FA:2B:AE:6D:09:55:7C:17:60:32:CF:52:50:CF:04:AE:9A:FA:6B
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 0189546CF12936F721D891CB5D000002C863
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/pforrm0JVXwXYDLPUlDPBK6a-ms.roa
Signing time: Fri 14 Jul 2023 12:42:53 +0000
ROA not before: Fri 14 Jul 2023 12:42:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.150.55.0/24 maxlen: 24
81.28.255.0/24 maxlen: 24
91.244.199.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 16 Jul 2023 09:47:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:54:6c:f1:29:36:f7:21:d8:91:cb:5d:00:00:02:c8:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jul 14 12:42:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a5fa2bae6d09557c176032cf5250cf04ae9afa6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:90:ba:04:d3:c6:35:89:84:5f:c8:08:89:6b:
32:f5:d8:7c:e3:bf:01:b5:38:74:30:34:bb:77:70:
e8:a1:cd:fa:0a:03:fc:00:37:77:de:f6:5d:30:4e:
0f:15:aa:fc:be:8f:88:3d:95:0e:cd:b2:12:28:75:
ba:53:f6:00:2b:3f:c6:38:fa:c2:e5:70:2e:60:84:
7e:7f:9a:0a:50:86:a1:c0:09:f2:6a:07:f8:31:3a:
f5:cb:27:e7:9d:99:63:11:9b:d2:a5:8b:4d:33:6f:
cd:c2:b6:df:53:99:fd:6f:90:2d:3b:86:62:56:21:
b0:ea:d1:4e:f0:93:60:3a:92:6b:07:83:36:c1:ad:
80:61:85:66:38:c8:b8:cf:85:05:d4:fa:26:e6:a7:
9b:25:d3:17:68:bf:40:2e:bd:c3:b9:5c:11:45:ed:
c5:ec:2b:71:ba:93:ef:78:dc:0f:33:a1:43:ca:e1:
03:72:ab:b7:83:70:f6:5a:37:a6:64:42:e3:45:29:
4b:3f:29:f4:73:18:0c:3a:ad:19:75:dc:55:88:b0:
5e:20:c7:43:43:6e:97:8b:99:be:56:4e:93:d6:69:
be:02:a8:6f:cc:90:c3:bb:e2:1c:0e:4c:58:d4:b4:
81:23:a9:9c:97:12:88:6d:56:c9:29:eb:92:2c:d6:
72:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:FA:2B:AE:6D:09:55:7C:17:60:32:CF:52:50:CF:04:AE:9A:FA:6B
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/pforrm0JVXwXYDLPUlDPBK6a-ms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.55.0/24
81.28.255.0/24
91.244.199.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:68:01:6d:02:25:c5:eb:00:70:06:ee:0f:98:a7:a5:6a:0f:
54:35:d7:96:7e:cf:0d:14:b0:d6:17:e5:8d:7f:d0:c0:ab:d5:
dc:e6:8c:e8:97:47:64:24:e2:03:36:93:a2:99:95:65:f7:a7:
4f:73:cc:0d:9d:4b:96:e1:93:6a:ef:19:4e:2a:a3:97:c9:39:
0d:4f:20:52:81:02:ac:5a:04:45:fa:77:00:73:c6:12:2e:4d:
31:f6:c8:f7:e3:ce:de:42:66:f8:d2:e7:e6:fa:6e:70:b6:e6:
31:6a:be:31:c2:28:26:cb:e6:9d:01:dd:5b:5b:b8:79:25:4d:
c4:f4:d5:98:d6:b8:4b:ef:93:a0:c2:ee:06:f2:01:cf:b0:f0:
0c:87:9d:b2:45:39:92:ff:5b:9b:3c:d9:b1:20:07:28:54:bb:
ef:a5:ca:b1:79:5e:df:92:6c:2a:8c:aa:eb:27:56:51:c5:32:
00:76:a9:39:82:cc:53:26:59:0f:94:c8:99:be:fb:76:85:ef:
09:67:99:a8:bc:96:d2:34:84:cf:dd:ad:aa:f8:48:1c:54:0d:
bb:4f:ff:69:cd:ee:b1:b9:1c:0a:4a:ed:73:c6:61:e1:9a:f6:
b0:c5:01:fe:12:37:6a:b6:0c:5a:0e:5c:57:2c:2b:ca:10:2e:
aa:e9:1d:45
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYlUbPEpNvch2JHLXQAAAshjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDliMGMwZDA0MjI1NTY2ZGI5NWU5YWQzYjJlZjYwNTAxNDk3
NWFhYTIwHhcNMjMwNzE0MTI0MjUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNWZhMmJhZTZkMDk1NTdjMTc2MDMyY2Y1MjUwY2YwNGFlOWFmYTZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhpC6BNPGNYmEX8gIiWsy9dh8478B
tTh0MDS7d3Dooc36CgP8ADd33vZdME4PFar8vo+IPZUOzbISKHW6U/YAKz/GOPrC
5XAuYIR+f5oKUIahwAnyagf4MTr1yyfnnZljEZvSpYtNM2/NwrbfU5n9b5AtO4Zi
ViGw6tFO8JNgOpJrB4M2wa2AYYVmOMi4z4UF1Pom5qebJdMXaL9ALr3DuVwRRe3F
7CtxupPveNwPM6FDyuEDcqu3g3D2WjemZELjRSlLPyn0cxgMOq0ZddxViLBeIMdD
Q26Xi5m+Vk6T1mm+AqhvzJDDu+IcDkxY1LSBI6mclxKIbVbJKeuSLNZyoQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFKX6K65tCVV8F2Ayz1JQzwSumvprMB8GA1UdIwQY
MBaAFJsMDQQiVWbblemtOy72BQFJdaqiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbXd3TkJDSlZadHVWNmEwN0x2WUZBVWwxcXFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC8wZWM2ZDItZjFkNy00YjBhLWFkMzMt
ZThlZjJmMDk1OThlLzEvcGZvcnJtMEpWWHdYWURMUFVsRFBCSzZhLW1zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC8wZWM2ZDItZjFkNy00YjBhLWFkMzMtZThlZjJmMDk1OThl
LzEvbXd3TkJDSlZadHVWNmEwN0x2WUZBVWwxcXFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQALZY3AwQA
URz/AwQAW/THMA0GCSqGSIb3DQEBCwUAA4IBAQBqaAFtAiXF6wBwBu4PmKelag9U
NdeWfs8NFLDWF+WNf9DAq9Xc5ozol0dkJOIDNpOimZVl96dPc8wNnUuW4ZNq7xlO
KqOXyTkNTyBSgQKsWgRF+ncAc8YSLk0x9sj3487eQmb40ufm+m5wtuYxar4xwigm
y+adAd1bW7h5JU3E9NWY1rhL75Ogwu4G8gHPsPAMh52yRTmS/1ubPNmxIAcoVLvv
pcqxeV7fkmwqjKrrJ1ZRxTIAdqk5gsxTJlkPlMiZvvt2he8JZ5movJbSNITP3a2q
+EgcVA27T/9pze6xuRwKSu1zxmHhmvawxQH+EjdqtgxaDlxXLCvKEC6q6R1F
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:49 2024 by rpki-client on console-ams.rpki-client.org