Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/MOZgH4URtUcinlFtvrEzSThCqDM.roa
File: MOZgH4URtUcinlFtvrEzSThCqDM.roa (raw, json)
Hash identifier: YJ/c2Kcjl2+g2He+W37nvm7LtrIJjVLj1DTdIEZXcjE=
Subject key identifier: 30:E6:60:1F:85:11:B5:47:22:9E:51:6D:BE:B1:33:49:38:42:A8:33
Certificate issuer: /CN=c398060f1bf22f0999cb071b1b42696dbc43e10c
Certificate serial: 0185723A2EBAAD773B67C0AD12BD404AA9F8
Authority key identifier: C3:98:06:0F:1B:F2:2F:09:99:CB:07:1B:1B:42:69:6D:BC:43:E1:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w5gGDxvyLwmZywcbG0JpbbxD4Qw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/MOZgH4URtUcinlFtvrEzSThCqDM.roa
Signing time: Mon 02 Jan 2023 11:24:53 +0000
ROA not before: Mon 02 Jan 2023 11:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 286
IP address blocks: 194.151.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:3a:2e:ba:ad:77:3b:67:c0:ad:12:bd:40:4a:a9:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c398060f1bf22f0999cb071b1b42696dbc43e10c
Validity
Not Before: Jan 2 11:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=30e6601f8511b547229e516dbeb133493842a833
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:4a:67:89:5e:7e:31:57:3e:2f:20:46:9d:ee:
1e:55:b8:cf:8c:01:bd:73:ea:24:45:9b:8f:14:5e:
0d:fa:8f:6e:c9:8b:92:4a:47:56:13:6b:1b:85:34:
20:56:4a:7f:30:6f:dd:6d:28:de:cd:e9:29:4b:ad:
8e:e8:21:51:bd:a4:10:74:bf:72:ec:f8:23:65:2e:
91:d9:35:f2:fc:f3:10:3c:e7:53:17:a7:6b:09:5e:
d7:c7:b6:3a:bd:97:a1:0b:de:04:d9:77:7d:35:87:
25:c4:34:78:87:00:31:f9:0d:32:7a:97:10:2a:7a:
2c:1b:27:e8:97:e8:b2:e9:17:62:ec:c3:c6:0d:a1:
7a:8c:07:08:f4:e1:d2:ce:df:81:30:8b:d3:21:49:
c9:12:7e:eb:3c:da:71:a2:ee:e9:1f:88:72:46:98:
ff:a3:00:af:14:af:9a:d0:78:aa:19:31:5e:bc:f2:
72:3f:58:b7:7b:e3:b8:d2:f3:51:9f:a6:18:cd:66:
3c:a4:9c:2f:27:d9:1e:f1:a3:c6:36:68:35:9a:7a:
c3:e5:aa:47:9f:3f:4d:bd:cd:64:33:37:ba:62:af:
70:89:68:cb:6f:86:f5:a2:2c:7b:64:10:a9:15:2a:
d7:e1:60:33:c2:f1:c8:d5:9c:5d:c2:f8:c4:68:19:
c5:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:E6:60:1F:85:11:B5:47:22:9E:51:6D:BE:B1:33:49:38:42:A8:33
X509v3 Authority Key Identifier:
keyid:C3:98:06:0F:1B:F2:2F:09:99:CB:07:1B:1B:42:69:6D:BC:43:E1:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w5gGDxvyLwmZywcbG0JpbbxD4Qw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/MOZgH4URtUcinlFtvrEzSThCqDM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/w5gGDxvyLwmZywcbG0JpbbxD4Qw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.151.203.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:1b:3a:57:d3:d8:e9:51:f2:f5:38:11:ef:71:93:49:d4:8e:
1a:dd:5e:2d:86:aa:e6:ff:77:43:70:38:ce:10:9f:75:80:c1:
1c:94:85:1d:ae:ba:58:34:f7:6f:a1:33:f8:41:db:1d:cb:53:
6b:9e:45:56:c5:f2:68:4a:9d:4c:b2:79:09:43:b9:33:5b:46:
13:89:6d:2c:d4:73:50:e6:bd:4f:ec:e9:28:08:eb:6b:5d:54:
76:4d:16:fa:ce:a5:b3:5b:59:d8:f4:27:61:23:0a:9d:fc:4f:
82:2b:5d:43:a5:67:dd:c7:9a:a0:ad:b8:1d:62:15:f0:0d:5f:
d2:c8:5c:ae:64:37:b6:22:91:07:37:b8:4f:3e:4d:03:ca:7e:
a2:2b:92:ba:11:da:46:6a:28:72:a3:8b:49:e2:21:a9:24:a7:
17:0b:0e:e8:10:3d:df:98:b6:a3:da:de:80:f2:fd:5e:47:b0:
42:61:06:bd:5d:a7:72:f7:3e:f4:b3:7f:31:31:78:59:b3:76:
7c:8c:ba:e0:93:0c:7e:ae:88:15:6a:c5:74:7d:e1:c3:c6:fb:
3f:4a:af:94:16:9b:4f:3e:21:ae:80:06:42:91:71:91:1e:a6:
09:2c:67:44:9a:1d:21:95:dc:d9:5f:53:b0:58:12:84:b8:0d:
98:6a:19:c1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyOi66rXc7Z8CtEr1ASqn4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzOTgwNjBmMWJmMjJmMDk5OWNiMDcxYjFiNDI2OTZkYmM0
M2UxMGMwHhcNMjMwMTAyMTEyNDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMGU2NjAxZjg1MTFiNTQ3MjI5ZTUxNmRiZWIxMzM0OTM4NDJhODMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoUpniV5+MVc+LyBGne4eVbjPjAG9
c+okRZuPFF4N+o9uyYuSSkdWE2sbhTQgVkp/MG/dbSjezekpS62O6CFRvaQQdL9y
7PgjZS6R2TXy/PMQPOdTF6drCV7Xx7Y6vZehC94E2Xd9NYclxDR4hwAx+Q0yepcQ
KnosGyfol+iy6Rdi7MPGDaF6jAcI9OHSzt+BMIvTIUnJEn7rPNpxou7pH4hyRpj/
owCvFK+a0HiqGTFevPJyP1i3e+O40vNRn6YYzWY8pJwvJ9ke8aPGNmg1mnrD5apH
nz9Nvc1kMze6Yq9wiWjLb4b1oix7ZBCpFSrX4WAzwvHI1ZxdwvjEaBnFiwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDDmYB+FEbVHIp5Rbb6xM0k4QqgzMB8GA1UdIwQY
MBaAFMOYBg8b8i8JmcsHGxtCaW28Q+EMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzVnR0R4dnlMd21aeXdjYkcwSnBiYnhENFF3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC8zYmZjMzEtZGMzMi00NTQxLTg0NjAt
YzkyN2I4YzJjN2M0LzEvTU9aZ0g0VVJ0VWNpbmxGdHZyRXpTVGhDcURNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC8zYmZjMzEtZGMzMi00NTQxLTg0NjAtYzkyN2I4YzJjN2M0
LzEvdzVnR0R4dnlMd21aeXdjYkcwSnBiYnhENFF3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwpfLMA0G
CSqGSIb3DQEBCwUAA4IBAQCMGzpX09jpUfL1OBHvcZNJ1I4a3V4thqrm/3dDcDjO
EJ91gMEclIUdrrpYNPdvoTP4Qdsdy1NrnkVWxfJoSp1MsnkJQ7kzW0YTiW0s1HNQ
5r1P7OkoCOtrXVR2TRb6zqWzW1nY9CdhIwqd/E+CK11DpWfdx5qgrbgdYhXwDV/S
yFyuZDe2IpEHN7hPPk0Dyn6iK5K6EdpGaihyo4tJ4iGpJKcXCw7oED3fmLaj2t6A
8v1eR7BCYQa9Xady9z70s38xMXhZs3Z8jLrgkwx+rogVasV0feHDxvs/Sq+UFptP
PiGugAZCkXGRHqYJLGdEmh0hldzZX1OwWBKEuA2YahnB
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:02 2024 by rpki-client on console-fra.rpki-client.org