Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/mFyxmpC6ac6xnhDYptuT2jL2Azk.roa
File: mFyxmpC6ac6xnhDYptuT2jL2Azk.roa (raw, json)
Hash identifier: X19/FBs3o29cbUjTdPOYHHjCQd71b18FVt5t0Ec73TE=
Subject key identifier: 98:5C:B1:9A:90:BA:69:CE:B1:9E:10:D8:A6:DB:93:DA:32:F6:03:39
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 01856C53EB14CAB9468663005E67D1214A70
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/mFyxmpC6ac6xnhDYptuT2jL2Azk.roa
Signing time: Sun 01 Jan 2023 07:55:16 +0000
ROA not before: Sun 01 Jan 2023 07:55:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39018
IP address blocks: 185.193.38.0/24 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:eb:14:ca:b9:46:86:63:00:5e:67:d1:21:4a:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 07:55:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=985cb19a90ba69ceb19e10d8a6db93da32f60339
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:dd:50:73:98:e6:1a:50:f7:ff:7f:ef:25:d4:
ef:91:d6:b3:b0:10:a8:44:8b:9c:01:14:7f:e2:ef:
a1:90:d8:51:ca:26:1f:a8:be:57:8c:cb:ae:fe:68:
9d:5a:65:76:a1:34:0a:f6:cf:8b:bf:f6:a8:75:e5:
2f:89:f1:b8:70:b4:e9:d0:0c:14:d3:01:c5:f7:c9:
f7:56:7e:6a:ac:c9:1b:6b:a5:7b:db:aa:86:ed:9c:
aa:9c:00:1a:6d:10:f5:69:c8:96:d7:d3:a4:e7:d2:
6e:72:06:d0:39:59:a3:9f:f1:e9:fc:df:64:75:04:
bf:38:5d:47:3c:53:32:f9:98:00:9b:8c:27:49:fd:
9a:4e:d0:c4:ad:ad:34:5a:d4:89:76:8e:31:26:5f:
22:6c:75:fb:88:dc:e8:0f:58:c6:4c:2e:fa:57:bd:
78:85:b0:53:69:11:9e:bb:be:82:2a:e3:99:4b:8d:
46:f9:6c:08:37:80:6a:41:83:34:5f:4f:4c:dc:56:
6b:cd:82:fd:fe:1b:4f:6d:26:35:4c:37:f5:c4:f8:
0e:44:c0:65:6e:41:fc:ac:95:26:95:c8:5d:ed:88:
ee:8d:84:b3:f5:f1:bb:69:03:3b:26:bc:10:69:dd:
f0:fa:13:92:aa:40:2a:ef:0f:a7:c7:be:0a:f1:78:
3e:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:5C:B1:9A:90:BA:69:CE:B1:9E:10:D8:A6:DB:93:DA:32:F6:03:39
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/mFyxmpC6ac6xnhDYptuT2jL2Azk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.193.38.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:21:97:e2:7b:e2:c1:e4:34:fc:08:6d:94:c4:a4:ec:30:c6:
1b:a5:b4:85:57:16:75:0a:79:60:15:7f:ac:26:96:ef:71:7b:
5f:f6:bd:bb:19:93:67:56:5c:4d:ac:0f:ac:d3:6c:04:41:c9:
43:4b:9a:7b:46:3d:ca:ff:82:b4:7c:41:b3:12:e1:52:2e:4b:
93:e1:30:00:48:04:b3:63:44:1f:8d:1a:01:a3:31:be:1c:db:
35:22:dc:a9:59:58:db:9d:35:8b:2f:51:aa:f1:7a:d8:c5:6d:
d7:58:4d:01:d9:8a:c6:1d:ff:d6:1d:76:b2:82:c3:39:b9:df:
3d:fa:4f:9f:0f:60:8e:9e:ec:bc:03:c5:0a:36:6c:bd:23:9d:
87:fa:65:f0:4b:21:1d:d2:27:cc:48:8a:6f:f0:05:b5:a2:2c:
4c:11:b3:22:36:fb:f2:91:3a:84:43:a1:d3:de:18:60:05:26:
7a:9c:2c:1e:8d:87:94:b1:e5:e5:f2:3c:33:30:f7:39:f0:ab:
16:db:3d:ad:4a:18:80:5a:20:e8:89:68:09:d6:e9:59:73:80:
90:2f:26:37:e8:fe:88:59:cc:8e:9d:2f:7f:61:ae:a0:8a:8e:
1e:2e:8b:b3:99:d1:1d:eb:e7:f3:bf:41:3c:d0:74:8b:00:57:
9b:20:cc:4f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsU+sUyrlGhmMAXmfRIUpwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjOGZkMWE4YWU1OTk2YzFlNTY5MmMxYThjNDJiZmU5YzNi
YTU3NDUwHhcNMjMwMTAxMDc1NTE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ODVjYjE5YTkwYmE2OWNlYjE5ZTEwZDhhNmRiOTNkYTMyZjYwMzM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq91Qc5jmGlD3/3/vJdTvkdazsBCo
RIucARR/4u+hkNhRyiYfqL5XjMuu/midWmV2oTQK9s+Lv/aodeUvifG4cLTp0AwU
0wHF98n3Vn5qrMkba6V726qG7ZyqnAAabRD1aciW19Ok59JucgbQOVmjn/Hp/N9k
dQS/OF1HPFMy+ZgAm4wnSf2aTtDEra00WtSJdo4xJl8ibHX7iNzoD1jGTC76V714
hbBTaRGeu76CKuOZS41G+WwIN4BqQYM0X09M3FZrzYL9/htPbSY1TDf1xPgORMBl
bkH8rJUmlchd7YjujYSz9fG7aQM7JrwQad3w+hOSqkAq7w+nx74K8Xg+HwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJhcsZqQumnOsZ4Q2Kbbk9oy9gM5MB8GA1UdIwQY
MBaAFGyP0aiuWZbB5WksGoxCv+nDuldFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYklfUnFLNVpsc0hsYVN3YWpFS182Y082VjBVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC80OTI1OTAtYTAyZi00NDNlLWFhYTMt
ZmVhYzI2ZWFlY2MyLzEvbUZ5eG1wQzZhYzZ4bmhEWXB0dVQyakwyQXprLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC80OTI1OTAtYTAyZi00NDNlLWFhYTMtZmVhYzI2ZWFlY2My
LzEvYklfUnFLNVpsc0hsYVN3YWpFS182Y082VjBVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAucEmMA0G
CSqGSIb3DQEBCwUAA4IBAQAsIZfie+LB5DT8CG2UxKTsMMYbpbSFVxZ1CnlgFX+s
JpbvcXtf9r27GZNnVlxNrA+s02wEQclDS5p7Rj3K/4K0fEGzEuFSLkuT4TAASASz
Y0QfjRoBozG+HNs1ItypWVjbnTWLL1Gq8XrYxW3XWE0B2YrGHf/WHXaygsM5ud89
+k+fD2COnuy8A8UKNmy9I52H+mXwSyEd0ifMSIpv8AW1oixMEbMiNvvykTqEQ6HT
3hhgBSZ6nCwejYeUseXl8jwzMPc58KsW2z2tShiAWiDoiWgJ1ulZc4CQLyY36P6I
WcyOnS9/Ya6gio4eLouzmdEd6+fzv0E80HSLAFebIMxP
-----END CERTIFICATE-----
Generated at Tue Jan 2 15:23:00 2024 by rpki-client on console-ams.rpki-client.org