Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/mGJYOJ4b3hCRYd_U5TM3RfEFzGI.roa
File: mGJYOJ4b3hCRYd_U5TM3RfEFzGI.roa (raw, json)
Hash identifier: HxEecACKthTGSWXBtKSYh1iT9j8r4DjkAPpE8A+fyW0=
Subject key identifier: 98:62:58:38:9E:1B:DE:10:91:61:DF:D4:E5:33:37:45:F1:05:CC:62
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018976E724789028B2A6F0C384F67D14A9C6
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/mGJYOJ4b3hCRYd_U5TM3RfEFzGI.roa
Signing time: Fri 21 Jul 2023 05:23:26 +0000
ROA not before: Fri 21 Jul 2023 05:23:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13335
IP address blocks: 203.159.80.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:76:e7:24:78:90:28:b2:a6:f0:c3:84:f6:7d:14:a9:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jul 21 05:23:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=986258389e1bde109161dfd4e5333745f105cc62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:07:59:7c:e7:69:92:10:1f:8c:03:98:e7:c7:
9e:1c:f9:84:bb:bf:7b:c9:73:2a:da:e7:a7:b9:78:
45:6d:de:54:fc:49:03:96:85:47:51:6a:11:9b:a6:
f6:6c:af:00:58:23:de:e5:5d:46:f0:cf:86:9c:7b:
6f:a2:c5:9f:0b:72:0f:1f:22:b8:cb:4c:30:64:90:
0e:f4:79:2f:92:a5:af:44:92:ef:03:f2:76:ce:8e:
5d:70:3e:f9:ea:3b:8d:07:fa:26:41:53:83:0c:c6:
94:38:54:55:05:75:16:2b:ee:94:74:6b:f7:a8:d8:
52:2b:f6:1b:85:eb:88:ee:0a:57:0c:6f:5b:65:83:
eb:85:eb:dd:24:92:53:7b:8b:f6:14:bc:0d:27:12:
34:77:b5:96:83:b0:65:6e:1c:45:57:ef:9b:81:0c:
e3:21:77:64:ac:ef:81:82:8b:d4:55:d2:48:aa:f4:
3b:82:41:3b:3e:4f:4a:76:f2:e9:95:f6:45:23:75:
b7:47:2a:9e:b3:d3:f7:ca:d3:9d:31:31:b1:5f:43:
e0:8b:5a:03:1c:87:31:c2:9d:d2:40:b8:62:de:11:
12:63:b3:b5:ce:f8:24:99:47:df:33:18:a8:7d:ca:
f6:5b:89:69:c8:f3:32:d9:3e:95:54:d5:be:c4:a3:
b6:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:62:58:38:9E:1B:DE:10:91:61:DF:D4:E5:33:37:45:F1:05:CC:62
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/mGJYOJ4b3hCRYd_U5TM3RfEFzGI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.159.80.0/24
Signature Algorithm: sha256WithRSAEncryption
54:c6:0e:7e:6f:54:4d:b9:12:19:84:5d:14:f2:0e:e0:09:b4:
b8:5b:c3:bd:80:18:93:88:0c:29:a9:15:ac:79:aa:58:df:2d:
13:fb:fe:d1:e1:7d:48:03:cd:30:ad:93:5f:16:dd:6c:b8:1d:
91:f2:01:3c:d6:7a:2c:32:85:c8:f6:d1:ec:87:25:24:0f:6a:
6c:0a:ec:5b:45:d8:1c:0d:c7:1e:fe:b7:80:e1:1a:a2:6e:9c:
20:d6:5b:aa:27:14:31:76:1f:20:2a:99:8a:1b:e2:d7:94:78:
c7:4d:5b:49:5e:d9:9d:c9:aa:6a:3f:96:a0:23:0e:74:ab:ae:
2d:06:0c:fa:12:e3:51:1d:9e:79:6a:fe:dd:48:c7:e1:b7:b2:
d3:44:47:1c:9b:c6:48:77:64:03:85:dc:bf:19:65:34:ec:df:
a4:ea:45:6d:51:1f:7b:dc:97:9c:1d:7f:2d:34:af:6b:0b:06:
f9:f5:b9:23:d5:9f:09:56:ea:1e:95:ec:aa:bc:ae:bf:bf:35:
56:5b:31:87:2f:9a:2d:4e:8a:4e:1f:a7:2f:17:03:0c:b9:15:
ce:5c:0d:fa:31:d7:4d:1c:02:f8:2b:ed:d4:39:44:2c:1f:f1:
ab:73:45:5c:d4:be:18:f5:0c:80:98:54:03:ac:2d:06:c4:b4:
8d:8c:74:1f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYl25yR4kCiypvDDhPZ9FKnGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2YzJhNGI3ZDVkNzNjNWI1NzA0NjIyM2JmMzBlYjY1MzAw
NWIwZTIwHhcNMjMwNzIxMDUyMzI2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ODYyNTgzODllMWJkZTEwOTE2MWRmZDRlNTMzMzc0NWYxMDVjYzYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlgdZfOdpkhAfjAOY58eeHPmEu797
yXMq2uenuXhFbd5U/EkDloVHUWoRm6b2bK8AWCPe5V1G8M+GnHtvosWfC3IPHyK4
y0wwZJAO9HkvkqWvRJLvA/J2zo5dcD756juNB/omQVODDMaUOFRVBXUWK+6UdGv3
qNhSK/YbheuI7gpXDG9bZYPrhevdJJJTe4v2FLwNJxI0d7WWg7BlbhxFV++bgQzj
IXdkrO+BgovUVdJIqvQ7gkE7Pk9KdvLplfZFI3W3Ryqes9P3ytOdMTGxX0Pgi1oD
HIcxwp3SQLhi3hESY7O1zvgkmUffMxiofcr2W4lpyPMy2T6VVNW+xKO2fQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJhiWDieG94QkWHf1OUzN0XxBcxiMB8GA1UdIwQY
MBaAFDbCpLfV1zxbVwRiI78w62UwBbDiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTnNLa3Q5WFhQRnRYQkdJanZ6RHJaVEFGc09JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy84ZGQ4NWEtYmY4Zi00MjVlLWEyNGIt
MmNjZWRiOTY2YTU4LzEvbUdKWU9KNGIzaENSWWRfVTVUTTNSZkVGekdJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy84ZGQ4NWEtYmY4Zi00MjVlLWEyNGItMmNjZWRiOTY2YTU4
LzEvTnNLa3Q5WFhQRnRYQkdJanZ6RHJaVEFGc09JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy59QMA0G
CSqGSIb3DQEBCwUAA4IBAQBUxg5+b1RNuRIZhF0U8g7gCbS4W8O9gBiTiAwpqRWs
eapY3y0T+/7R4X1IA80wrZNfFt1suB2R8gE81nosMoXI9tHshyUkD2psCuxbRdgc
Dcce/reA4Rqibpwg1luqJxQxdh8gKpmKG+LXlHjHTVtJXtmdyapqP5agIw50q64t
Bgz6EuNRHZ55av7dSMfht7LTREccm8ZId2QDhdy/GWU07N+k6kVtUR973JecHX8t
NK9rCwb59bkj1Z8JVuoeleyqvK6/vzVWWzGHL5otTopOH6cvFwMMuRXOXA36MddN
HAL4K+3UOUQsH/Grc0Vc1L4Y9QyAmFQDrC0GxLSNjHQf
-----END CERTIFICATE-----
Generated at Mon Jan 1 15:15:28 2024 by rpki-client on console-fra.rpki-client.org