Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/BmobcibvdN4WjzF_w7A_hkWk0B4.roa
File: BmobcibvdN4WjzF_w7A_hkWk0B4.roa (raw, json)
Hash identifier: yGDzgntYdB9ecdIWb06+nlQi5rytyag2B841zVFalBw=
Subject key identifier: 06:6A:1B:72:26:EF:74:DE:16:8F:31:7F:C3:B0:3F:86:45:A4:D0:1E
Certificate issuer: /CN=3263787fd0f94b37813eef16bc8137423ee3fef3
Certificate serial: 01856FF0367EA42B2D496C6E31AD5813DAA4
Authority key identifier: 32:63:78:7F:D0:F9:4B:37:81:3E:EF:16:BC:81:37:42:3E:E3:FE:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/BmobcibvdN4WjzF_w7A_hkWk0B4.roa
Signing time: Mon 02 Jan 2023 00:44:51 +0000
ROA not before: Mon 02 Jan 2023 00:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210892
IP address blocks: 37.44.228.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:34:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f0:36:7e:a4:2b:2d:49:6c:6e:31:ad:58:13:da:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3263787fd0f94b37813eef16bc8137423ee3fef3
Validity
Not Before: Jan 2 00:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=066a1b7226ef74de168f317fc3b03f8645a4d01e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:3c:a4:ad:91:f2:68:22:4d:f7:43:dd:fd:ca:
6d:e8:59:af:a8:b5:88:0d:dc:75:61:fe:7a:d0:ec:
9b:6b:fb:c5:51:6c:22:e2:8a:78:4c:1d:98:f2:64:
be:ef:c9:cf:90:9d:57:f9:90:79:63:4a:44:9e:d9:
31:c5:01:84:e5:6e:c4:db:b2:36:65:d0:67:0f:44:
cd:56:10:9f:f0:5e:43:b1:c6:77:33:7a:36:28:b8:
a7:b6:7f:c7:50:f2:72:59:6f:8b:e8:08:0d:5d:bb:
10:67:6f:73:f4:c5:1c:93:3d:eb:9f:cd:a8:81:32:
b0:8e:e9:d2:72:8d:a9:99:af:51:c3:17:d6:dc:db:
90:1f:7a:35:db:c9:9a:b8:07:0e:c9:46:03:32:ff:
c0:cc:31:3d:73:78:ca:90:a6:48:0d:b5:77:2c:dd:
4a:1c:5a:26:86:88:9c:2d:00:55:70:3f:83:91:b5:
db:c6:3e:4f:c5:a8:1b:1b:57:b3:4f:a0:80:d3:40:
08:a6:b7:53:d6:8c:75:37:cf:ab:a9:78:73:74:7d:
eb:80:59:e2:f2:39:e3:54:26:df:49:ef:49:47:64:
aa:81:db:49:29:41:6c:fa:e2:da:7c:c4:23:74:b0:
60:11:6a:45:95:f8:31:88:08:c2:38:98:67:b1:2a:
ee:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:6A:1B:72:26:EF:74:DE:16:8F:31:7F:C3:B0:3F:86:45:A4:D0:1E
X509v3 Authority Key Identifier:
keyid:32:63:78:7F:D0:F9:4B:37:81:3E:EF:16:BC:81:37:42:3E:E3:FE:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/BmobcibvdN4WjzF_w7A_hkWk0B4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.44.228.0/22
Signature Algorithm: sha256WithRSAEncryption
21:f0:a2:d0:b3:cd:aa:38:52:82:fa:58:f7:0d:79:27:e1:ad:
a6:48:0f:13:24:e1:90:1e:4e:eb:5b:7a:48:a1:e5:6f:5b:c3:
7e:0f:1f:27:ca:6c:34:f8:55:29:ec:89:ee:78:44:e9:b6:c0:
71:1e:e1:9e:2a:50:7f:01:84:02:67:f4:c9:3e:17:67:5c:88:
16:c4:19:26:ea:51:ee:fe:0c:6d:85:71:5e:27:bf:07:f0:33:
66:10:f1:5e:dc:89:85:94:ea:f4:e5:46:b1:15:3f:93:10:64:
3e:af:ce:f4:dd:4f:43:09:b0:41:30:be:81:96:06:03:7e:07:
2e:89:de:e3:ce:89:ce:43:da:5e:9d:b6:30:5d:aa:fc:af:0d:
3d:e3:e4:10:ab:e1:ab:a5:d9:42:f8:1e:99:66:62:c2:04:84:
ca:4d:25:3e:cc:c1:66:4b:3a:04:58:c0:68:03:84:5f:dc:5b:
4b:cf:bc:f0:81:92:ab:d2:40:e9:3c:50:f8:92:50:7b:63:47:
ae:9a:49:72:bd:aa:9a:06:f5:a9:3a:0b:8f:7e:ce:a7:f6:cc:
aa:c4:a8:bb:1c:69:7d:ef:ec:b0:a4:87:cc:36:f3:6e:ff:7b:
59:36:e1:01:fe:1c:dd:3f:f3:52:08:92:4a:62:95:29:5c:3d:
e0:dd:59:8d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVv8DZ+pCstSWxuMa1YE9qkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMyNjM3ODdmZDBmOTRiMzc4MTNlZWYxNmJjODEzNzQyM2Vl
M2ZlZjMwHhcNMjMwMTAyMDA0NDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNjZhMWI3MjI2ZWY3NGRlMTY4ZjMxN2ZjM2IwM2Y4NjQ1YTRkMDFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAizykrZHyaCJN90Pd/cpt6FmvqLWI
Ddx1Yf560Oyba/vFUWwi4op4TB2Y8mS+78nPkJ1X+ZB5Y0pEntkxxQGE5W7E27I2
ZdBnD0TNVhCf8F5DscZ3M3o2KLintn/HUPJyWW+L6AgNXbsQZ29z9MUckz3rn82o
gTKwjunSco2pma9RwxfW3NuQH3o128mauAcOyUYDMv/AzDE9c3jKkKZIDbV3LN1K
HFomhoicLQBVcD+DkbXbxj5PxagbG1ezT6CA00AIprdT1ox1N8+rqXhzdH3rgFni
8jnjVCbfSe9JR2SqgdtJKUFs+uLafMQjdLBgEWpFlfgxiAjCOJhnsSruDwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAZqG3Im73TeFo8xf8OwP4ZFpNAeMB8GA1UdIwQY
MBaAFDJjeH/Q+Us3gT7vFryBN0I+4/7zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTW1ONGY5RDVTemVCUHU4V3ZJRTNRajdqX3ZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS83NzAzZWYtMjQyMi00MzdjLWI5M2Qt
NTk1ZTBiZjVjNjEzLzEvQm1vYmNpYnZkTjRXanpGX3c3QV9oa1drMEI0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMS83NzAzZWYtMjQyMi00MzdjLWI5M2QtNTk1ZTBiZjVjNjEz
LzEvTW1ONGY5RDVTemVCUHU4V3ZJRTNRajdqX3ZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCJSzkMA0G
CSqGSIb3DQEBCwUAA4IBAQAh8KLQs82qOFKC+lj3DXkn4a2mSA8TJOGQHk7rW3pI
oeVvW8N+Dx8nymw0+FUp7InueETptsBxHuGeKlB/AYQCZ/TJPhdnXIgWxBkm6lHu
/gxthXFeJ78H8DNmEPFe3ImFlOr05UaxFT+TEGQ+r8703U9DCbBBML6BlgYDfgcu
id7jzonOQ9penbYwXar8rw094+QQq+GrpdlC+B6ZZmLCBITKTSU+zMFmSzoEWMBo
A4Rf3FtLz7zwgZKr0kDpPFD4klB7Y0eumklyvaqaBvWpOguPfs6n9syqxKi7HGl9
7+ywpIfMNvNu/3tZNuEB/hzdP/NSCJJKYpUpXD3g3VmN
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:15 2024 by rpki-client on console-fra.rpki-client.org