Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/4_MhBfO_Vnl-u2zW4yyY5GwIEEE.roa
File: 4_MhBfO_Vnl-u2zW4yyY5GwIEEE.roa (raw, json)
Hash identifier: xUmlsVzVPhr7d0xP9R9a+n53VZU2TlHnFK6Yf2/Xhu4=
Subject key identifier: E3:F3:21:05:F3:BF:56:79:7E:BB:6C:D6:E3:2C:98:E4:6C:08:10:41
Certificate issuer: /CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Certificate serial: 018573F192F3D7777763919DD82B2EC8B7CD
Authority key identifier: E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/4_MhBfO_Vnl-u2zW4yyY5GwIEEE.roa
Signing time: Mon 02 Jan 2023 19:24:49 +0000
ROA not before: Mon 02 Jan 2023 19:24:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24921
IP address blocks: 81.198.189.0/24 maxlen: 24
194.8.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Sep 2023 09:02:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:f1:92:f3:d7:77:77:63:91:9d:d8:2b:2e:c8:b7:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Validity
Not Before: Jan 2 19:24:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e3f32105f3bf56797ebb6cd6e32c98e46c081041
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:d2:07:26:81:5d:63:37:3d:af:23:10:81:c9:
4c:dd:17:0e:a1:af:68:1b:81:db:cd:63:cf:8e:2b:
97:c0:93:b3:a4:34:bd:f6:76:cb:4a:3e:27:f6:75:
06:81:d8:df:bb:d0:35:e2:e1:25:50:63:66:bf:1f:
75:f6:e5:ee:76:b2:af:72:97:44:41:55:87:41:47:
e7:7b:12:b8:18:79:28:9b:b4:7e:53:99:b2:74:14:
00:6d:c5:61:1f:03:6e:c9:36:01:71:1e:01:bc:42:
aa:a7:52:f9:71:6e:b8:93:86:89:b9:03:db:cd:57:
24:24:a4:d9:d3:69:39:56:6c:28:7c:7f:7b:ec:ba:
d2:8a:eb:52:c0:7f:e4:4e:57:35:ae:1a:5b:5b:61:
d2:f6:5d:13:d9:0b:30:00:74:b5:12:0a:ee:11:43:
ae:6b:b8:3d:56:ce:34:76:ae:bf:fa:6c:0a:fb:86:
54:12:0f:21:2d:96:cc:74:10:88:32:89:06:1c:b6:
c5:a4:3e:e4:9a:f4:fc:0a:3d:6c:dd:ab:df:4d:79:
97:a4:a2:57:71:e9:a0:b8:58:33:84:6d:6c:5b:68:
09:a2:57:86:6c:d4:8d:10:74:18:b4:17:12:31:26:
7d:41:cb:80:b9:54:8b:7a:8b:e2:46:ca:61:95:b4:
d5:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:F3:21:05:F3:BF:56:79:7E:BB:6C:D6:E3:2C:98:E4:6C:08:10:41
X509v3 Authority Key Identifier:
keyid:E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/4_MhBfO_Vnl-u2zW4yyY5GwIEEE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.198.189.0/24
194.8.22.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:46:1e:18:9e:fe:e6:58:26:1f:16:50:8e:5e:7e:08:17:ad:
23:63:9f:56:b5:3f:d3:b6:e7:99:19:61:60:b7:2e:67:d6:97:
4c:4e:b9:56:5b:1f:3b:d1:b8:74:1a:1a:10:e1:e0:0b:f0:b4:
bb:31:1b:eb:82:b2:7f:1d:5a:81:44:17:11:f5:df:71:5f:65:
e5:00:dd:23:21:05:5a:a7:c3:70:23:0b:83:9b:ca:f9:49:e0:
d7:e2:47:a5:99:e1:69:9a:8b:ba:f3:7f:1a:e5:79:80:a6:91:
ef:56:9c:51:b6:d2:96:0b:99:a7:09:8d:24:6e:86:59:6a:36:
87:22:0f:b4:e3:d0:fe:1b:bc:5e:40:f9:8a:17:dc:7e:f5:7a:
02:69:e6:47:72:67:30:e8:bc:f0:4c:72:7e:fd:a6:88:63:e8:
b8:89:d9:d6:c8:83:20:68:f6:6d:f4:6a:81:cf:ce:b4:45:d8:
c6:91:f8:90:ac:a0:43:c8:84:19:b6:80:e4:41:a8:44:63:cf:
a9:77:71:e8:31:f9:1b:63:a2:e9:6d:84:51:3d:5c:01:83:ff:
42:73:26:d9:fe:6b:15:cc:50:1f:ae:ba:bc:7a:87:11:19:5a:
4d:69:f4:71:b0:a7:ef:b6:88:af:a7:46:26:40:de:6e:ce:7d:
2d:63:c1:2a
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVz8ZLz13d3Y5Gd2CsuyLfNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUzYmUwN2NiMWZkNGYxZTNjOTIyMzAzYjY3MGE4ODFiODJl
NjE0OTEwHhcNMjMwMTAyMTkyNDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlM2YzMjEwNWYzYmY1Njc5N2ViYjZjZDZlMzJjOThlNDZjMDgxMDQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2dIHJoFdYzc9ryMQgclM3RcOoa9o
G4HbzWPPjiuXwJOzpDS99nbLSj4n9nUGgdjfu9A14uElUGNmvx919uXudrKvcpdE
QVWHQUfnexK4GHkom7R+U5mydBQAbcVhHwNuyTYBcR4BvEKqp1L5cW64k4aJuQPb
zVckJKTZ02k5VmwofH977LrSiutSwH/kTlc1rhpbW2HS9l0T2QswAHS1EgruEUOu
a7g9Vs40dq6/+mwK+4ZUEg8hLZbMdBCIMokGHLbFpD7kmvT8Cj1s3avfTXmXpKJX
cemguFgzhG1sW2gJoleGbNSNEHQYtBcSMSZ9QcuAuVSLeoviRsphlbTVBQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFOPzIQXzv1Z5frts1uMsmORsCBBBMB8GA1UdIwQY
MBaAFOO+B8sf1PHjySIwO2cKiBuC5hSRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNDc0SHl4X1U4ZVBKSWpBN1p3cUlHNExtRkpFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS84ZjVmYWUtZGE5MC00MzE0LWJmZmMt
ZDRlZTFkMzg5ZTBkLzEvNF9NaEJmT19WbmwtdTJ6VzR5eVk1R3dJRUVFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYS84ZjVmYWUtZGE5MC00MzE0LWJmZmMtZDRlZTFkMzg5ZTBk
LzEvNDc0SHl4X1U4ZVBKSWpBN1p3cUlHNExtRkpFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAUca9AwQA
wggWMA0GCSqGSIb3DQEBCwUAA4IBAQDFRh4Ynv7mWCYfFlCOXn4IF60jY59WtT/T
tueZGWFgty5n1pdMTrlWWx870bh0GhoQ4eAL8LS7MRvrgrJ/HVqBRBcR9d9xX2Xl
AN0jIQVap8NwIwuDm8r5SeDX4kelmeFpmou6838a5XmAppHvVpxRttKWC5mnCY0k
boZZajaHIg+049D+G7xeQPmKF9x+9XoCaeZHcmcw6LzwTHJ+/aaIY+i4idnWyIMg
aPZt9GqBz860RdjGkfiQrKBDyIQZtoDkQahEY8+pd3HoMfkbY6LpbYRRPVwBg/9C
cybZ/msVzFAfrrq8eocRGVpNafRxsKfvtoivp0YmQN5uzn0tY8Eq
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:29 2024 by rpki-client on console-fra.rpki-client.org