Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/mJ2cFH0Y7yaVlPvkIswsmATuYBk.roa
File: mJ2cFH0Y7yaVlPvkIswsmATuYBk.roa (raw, json)
Hash identifier: L7yy+ti5hPn6dWInXYBKPOxG8B+oWkekfonNVw0ptJ4=
Subject key identifier: 98:9D:9C:14:7D:18:EF:26:95:94:FB:E4:22:CC:2C:98:04:EE:60:19
Certificate issuer: /CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Certificate serial: 01856F7972FB1CC619CAC3639122F2643EF7
Authority key identifier: 50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/mJ2cFH0Y7yaVlPvkIswsmATuYBk.roa
Signing time: Sun 01 Jan 2023 22:35:08 +0000
ROA not before: Sun 01 Jan 2023 22:35:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204457
IP address blocks: 194.145.138.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:72:fb:1c:c6:19:ca:c3:63:91:22:f2:64:3e:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Validity
Not Before: Jan 1 22:35:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=989d9c147d18ef269594fbe422cc2c9804ee6019
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:9e:f1:e2:a8:2a:e8:19:61:6b:b7:31:32:34:
cb:4c:b0:ef:96:2d:cd:82:8d:fb:3e:b4:b2:d4:e3:
5e:e2:aa:42:fe:25:e7:82:d6:a8:14:bd:66:d1:e9:
d9:6c:97:84:75:97:cc:28:ae:60:31:56:ac:98:d8:
03:bb:67:68:d9:22:32:3f:3b:ff:44:33:21:66:6a:
e2:c1:d1:90:79:db:b7:bc:59:9a:27:f2:bb:b6:44:
a4:68:ce:b2:56:df:9d:f6:e6:e3:0a:cc:31:6b:7b:
42:3d:b4:b2:9c:e5:96:a5:68:0e:9b:20:7b:94:bb:
b1:79:3a:d6:c5:9d:d7:c8:64:8f:c2:b6:48:fb:4a:
dc:bb:61:17:b9:8e:85:c8:aa:fb:c9:ed:2c:9e:fe:
6b:e1:d4:4a:af:89:7c:97:d6:36:c0:7f:34:82:c8:
7e:bc:9a:8b:9c:94:f5:e5:00:e4:dc:3e:f8:37:94:
c0:33:a3:2f:26:e9:51:b9:00:f7:52:69:e6:80:c7:
ab:27:47:53:81:59:af:b6:29:29:1b:02:ea:c3:3a:
56:50:a8:1c:d5:f5:75:0d:28:d6:b4:2d:1f:20:8a:
a6:a7:e0:08:8c:60:5a:0c:a8:00:36:82:61:c0:f8:
83:19:4b:a9:11:34:29:17:35:da:c2:95:f3:4c:ff:
ed:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:9D:9C:14:7D:18:EF:26:95:94:FB:E4:22:CC:2C:98:04:EE:60:19
X509v3 Authority Key Identifier:
keyid:50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/mJ2cFH0Y7yaVlPvkIswsmATuYBk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/UFkuaIlccGi0ZVUIkXrVu929Cl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.145.138.0/24
Signature Algorithm: sha256WithRSAEncryption
78:85:21:95:95:46:47:d3:0f:6a:2c:69:41:81:e5:71:4b:2e:
2d:85:da:f9:0a:4d:c4:b9:15:e4:68:e2:82:9e:f5:f9:63:4a:
df:ff:6d:c6:a9:02:12:fd:49:cc:2a:b6:5e:50:74:d6:e5:f5:
3b:2c:01:bc:ee:86:a2:1c:b6:7c:29:5c:1d:73:4f:63:c1:e5:
34:0f:bd:c5:e0:be:13:dc:7c:ea:9d:5f:af:5b:e0:bd:94:55:
fb:1c:ea:61:ab:c0:2e:ea:5b:a7:cf:5b:60:0f:24:eb:b4:40:
c8:f0:5c:3a:60:85:7b:0b:36:86:b8:96:18:22:5e:2d:0b:fb:
f5:83:be:35:88:2e:07:8f:56:b0:58:7c:bf:ad:f6:fa:8c:0f:
a1:1c:f3:b1:5d:29:8c:0e:67:02:86:e0:86:0a:19:81:d3:ae:
22:db:52:f8:bc:5b:a2:25:f7:0b:09:b3:86:38:8c:11:ac:06:
aa:2c:11:a0:3c:8c:7c:61:2d:d2:1c:5e:8e:3a:f5:e8:d1:dd:
97:b5:31:03:61:da:5d:0e:3c:31:0f:98:32:5a:55:4a:97:8c:
e7:44:f5:0c:03:82:9b:11:b0:50:f2:57:c7:de:f4:71:65:3d:
38:5b:9f:79:55:36:fa:f0:09:99:d6:2b:a4:db:4f:db:fe:49:
5e:f9:5e:c4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVveXL7HMYZysNjkSLyZD73MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwNTkyZTY4ODk1YzcwNjhiNDY1NTUwODkxN2FkNWJiZGRi
ZDBhNWYwHhcNMjMwMTAxMjIzNTA4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ODlkOWMxNDdkMThlZjI2OTU5NGZiZTQyMmNjMmM5ODA0ZWU2MDE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqJ7x4qgq6Blha7cxMjTLTLDvli3N
go37PrSy1ONe4qpC/iXngtaoFL1m0enZbJeEdZfMKK5gMVasmNgDu2do2SIyPzv/
RDMhZmriwdGQedu3vFmaJ/K7tkSkaM6yVt+d9ubjCswxa3tCPbSynOWWpWgOmyB7
lLuxeTrWxZ3XyGSPwrZI+0rcu2EXuY6FyKr7ye0snv5r4dRKr4l8l9Y2wH80gsh+
vJqLnJT15QDk3D74N5TAM6MvJulRuQD3UmnmgMerJ0dTgVmvtikpGwLqwzpWUKgc
1fV1DSjWtC0fIIqmp+AIjGBaDKgANoJhwPiDGUupETQpFzXawpXzTP/tbQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJidnBR9GO8mlZT75CLMLJgE7mAZMB8GA1UdIwQY
MBaAFFBZLmiJXHBotGVVCJF61bvdvQpfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVUZrdWFJbGNjR2kwWlZVSWtYclZ1OTI5Q2w4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi8yYTgxMDAtMTcyYi00OGUzLWEzMmEt
N2JiZDI4Y2U0YTc1LzEvbUoyY0ZIMFk3eWFWbFB2a0lzd3NtQVR1WUJrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi8yYTgxMDAtMTcyYi00OGUzLWEzMmEtN2JiZDI4Y2U0YTc1
LzEvVUZrdWFJbGNjR2kwWlZVSWtYclZ1OTI5Q2w4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwpGKMA0G
CSqGSIb3DQEBCwUAA4IBAQB4hSGVlUZH0w9qLGlBgeVxSy4thdr5Ck3EuRXkaOKC
nvX5Y0rf/23GqQIS/UnMKrZeUHTW5fU7LAG87oaiHLZ8KVwdc09jweU0D73F4L4T
3HzqnV+vW+C9lFX7HOphq8Au6lunz1tgDyTrtEDI8Fw6YIV7CzaGuJYYIl4tC/v1
g741iC4Hj1awWHy/rfb6jA+hHPOxXSmMDmcChuCGChmB064i21L4vFuiJfcLCbOG
OIwRrAaqLBGgPIx8YS3SHF6OOvXo0d2XtTEDYdpdDjwxD5gyWlVKl4znRPUMA4Kb
EbBQ8lfH3vRxZT04W595VTb68AmZ1iuk20/b/kle+V7E
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:59 2024 by rpki-client on console-fra.rpki-client.org