Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/67d57e-f3de-4d10-bd9d-87a10bc68a37/1/mbsnSPl0shJDfEWAQ1B7dVoWVpI.roa
File: mbsnSPl0shJDfEWAQ1B7dVoWVpI.roa (raw, json)
Hash identifier: t94FS0dDQL9iLEw3+8oiQ/dUvU2RXRGwsv5bNEltJ9Q=
Subject key identifier: 99:BB:27:48:F9:74:B2:12:43:7C:45:80:43:50:7B:75:5A:16:56:92
Certificate issuer: /CN=b4112bb59b0627da23af90c0f0584b71b50f778f
Certificate serial: 01856D385919531E149D5AB0432565F715E4
Authority key identifier: B4:11:2B:B5:9B:06:27:DA:23:AF:90:C0:F0:58:4B:71:B5:0F:77:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tBErtZsGJ9ojr5DA8FhLcbUPd48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/67d57e-f3de-4d10-bd9d-87a10bc68a37/1/mbsnSPl0shJDfEWAQ1B7dVoWVpI.roa
Signing time: Sun 01 Jan 2023 12:04:47 +0000
ROA not before: Sun 01 Jan 2023 12:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49537
IP address blocks: 194.169.214.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:38:59:19:53:1e:14:9d:5a:b0:43:25:65:f7:15:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4112bb59b0627da23af90c0f0584b71b50f778f
Validity
Not Before: Jan 1 12:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=99bb2748f974b212437c458043507b755a165692
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:35:b7:fa:c7:91:89:f1:01:09:6f:1b:7e:fd:
36:e7:e9:4b:5e:00:52:81:05:c7:29:5b:9c:77:77:
25:91:70:cc:69:f1:41:cf:8d:a5:38:51:9e:f1:1f:
1d:12:ac:1d:d9:1a:1d:61:8b:da:d6:3c:fe:b2:47:
ab:e1:0b:f7:c4:7a:e4:5e:cd:58:b6:e4:b3:71:a9:
44:1d:0d:d3:0d:62:6c:b7:f4:bb:12:d6:e3:e4:c2:
14:1e:65:54:16:87:5c:04:48:b5:73:a9:e3:fd:d3:
e4:e4:41:9d:fa:b1:29:eb:62:bf:67:23:42:5b:13:
2a:24:a8:2c:bd:91:b6:7d:dc:7d:82:2d:6b:33:fe:
be:5f:89:b6:0e:7e:1c:95:48:2e:35:93:86:0d:20:
3f:1d:5b:6a:40:fc:5c:35:ef:c1:43:aa:32:72:47:
15:18:fa:08:c5:b9:ee:3f:6c:c9:ce:f1:d3:70:fb:
1f:1e:61:44:b9:a4:e9:27:95:61:82:2a:b6:45:2c:
06:da:25:8d:44:09:dc:44:df:30:43:12:76:17:4b:
3e:aa:0b:32:ff:33:cc:52:a2:a8:20:d6:2e:da:03:
6c:9e:16:f1:ce:39:5e:06:78:76:db:60:60:d2:9a:
d3:cb:63:ab:c8:78:ee:1c:2e:9c:02:38:fc:c0:2d:
fe:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:BB:27:48:F9:74:B2:12:43:7C:45:80:43:50:7B:75:5A:16:56:92
X509v3 Authority Key Identifier:
keyid:B4:11:2B:B5:9B:06:27:DA:23:AF:90:C0:F0:58:4B:71:B5:0F:77:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tBErtZsGJ9ojr5DA8FhLcbUPd48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/67d57e-f3de-4d10-bd9d-87a10bc68a37/1/mbsnSPl0shJDfEWAQ1B7dVoWVpI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/67d57e-f3de-4d10-bd9d-87a10bc68a37/1/tBErtZsGJ9ojr5DA8FhLcbUPd48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.169.214.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:55:d0:5f:44:49:47:7e:e1:01:12:c6:c4:3d:29:3a:9d:83:
9f:7f:7a:98:41:f8:f5:a8:63:74:f5:0d:d0:a9:c8:de:81:33:
3e:17:4b:7e:38:26:26:d0:e8:4f:28:20:aa:d8:a6:c7:f9:9f:
3b:e4:66:42:7a:be:28:7d:c8:49:63:79:99:97:64:e6:71:dc:
30:fe:c2:f1:ac:96:2c:97:af:a9:29:97:37:49:08:de:0f:35:
01:92:d4:08:d3:cb:6b:25:d3:47:46:94:c0:6f:fb:11:cf:73:
ef:fc:e3:d3:a3:71:d8:f5:19:29:f0:af:e0:fd:1e:93:1f:61:
c2:bf:17:4f:8a:55:5f:34:93:85:f1:aa:2b:af:71:e0:a9:db:
2b:1f:b0:98:9a:5e:0c:e7:d1:d1:20:8d:0e:a8:7b:34:39:09:
41:9b:63:89:c2:a8:41:f7:14:48:69:a3:b7:a9:15:2d:1a:50:
9f:af:11:fd:b9:2e:1e:69:f5:17:f5:4f:62:93:07:39:18:83:
2b:4f:07:22:93:49:22:7a:d7:61:59:d6:79:02:a9:b4:b8:0a:
18:4e:93:a5:c6:67:9b:5c:9b:7b:c2:a5:f8:dc:53:2b:8c:7f:
5b:57:cb:a7:49:54:5b:6e:cf:c4:73:e8:af:c8:fc:da:ea:91:
6e:82:d7:8d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtOFkZUx4UnVqwQyVl9xXkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0MTEyYmI1OWIwNjI3ZGEyM2FmOTBjMGYwNTg0YjcxYjUw
Zjc3OGYwHhcNMjMwMTAxMTIwNDQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5OWJiMjc0OGY5NzRiMjEyNDM3YzQ1ODA0MzUwN2I3NTVhMTY1NjkyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApzW3+seRifEBCW8bfv025+lLXgBS
gQXHKVucd3clkXDMafFBz42lOFGe8R8dEqwd2RodYYva1jz+sker4Qv3xHrkXs1Y
tuSzcalEHQ3TDWJst/S7Etbj5MIUHmVUFodcBEi1c6nj/dPk5EGd+rEp62K/ZyNC
WxMqJKgsvZG2fdx9gi1rM/6+X4m2Dn4clUguNZOGDSA/HVtqQPxcNe/BQ6oyckcV
GPoIxbnuP2zJzvHTcPsfHmFEuaTpJ5Vhgiq2RSwG2iWNRAncRN8wQxJ2F0s+qgsy
/zPMUqKoINYu2gNsnhbxzjleBnh222Bg0prTy2OryHjuHC6cAjj8wC3+iwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJm7J0j5dLISQ3xFgENQe3VaFlaSMB8GA1UdIwQY
MBaAFLQRK7WbBifaI6+QwPBYS3G1D3ePMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdEJFcnRac0dKOW9qcjVEQThGaExjYlVQZDQ4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy82N2Q1N2UtZjNkZS00ZDEwLWJkOWQt
ODdhMTBiYzY4YTM3LzEvbWJzblNQbDBzaEpEZkVXQVExQjdkVm9XVnBJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy82N2Q1N2UtZjNkZS00ZDEwLWJkOWQtODdhMTBiYzY4YTM3
LzEvdEJFcnRac0dKOW9qcjVEQThGaExjYlVQZDQ4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwqnWMA0G
CSqGSIb3DQEBCwUAA4IBAQBvVdBfRElHfuEBEsbEPSk6nYOff3qYQfj1qGN09Q3Q
qcjegTM+F0t+OCYm0OhPKCCq2KbH+Z875GZCer4ofchJY3mZl2Tmcdww/sLxrJYs
l6+pKZc3SQjeDzUBktQI08trJdNHRpTAb/sRz3Pv/OPTo3HY9Rkp8K/g/R6TH2HC
vxdPilVfNJOF8aorr3HgqdsrH7CYml4M59HRII0OqHs0OQlBm2OJwqhB9xRIaaO3
qRUtGlCfrxH9uS4eafUX9U9ikwc5GIMrTwcik0kietdhWdZ5Aqm0uAoYTpOlxmeb
XJt7wqX43FMrjH9bV8unSVRbbs/Ec+ivyPza6pFugteN
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:06 2024 by rpki-client on console-ams.rpki-client.org