Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/M6zWRMvSsxdEgdR9itj9y12N_uQ.roa
File: M6zWRMvSsxdEgdR9itj9y12N_uQ.roa (raw, json)
Hash identifier: no98JIRfIr2v8IJFLqKZoG8BL2OWBRynJeSnm+6uca8=
Subject key identifier: 33:AC:D6:44:CB:D2:B3:17:44:81:D4:7D:8A:D8:FD:CB:5D:8D:FE:E4
Certificate issuer: /CN=9256ebf66b80f08135858d144ced6f785834f5f4
Certificate serial: 0186976E2CC01628794C207B972BE989ED22
Authority key identifier: 92:56:EB:F6:6B:80:F0:81:35:85:8D:14:4C:ED:6F:78:58:34:F5:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/klbr9muA8IE1hY0UTO1veFg09fQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/M6zWRMvSsxdEgdR9itj9y12N_uQ.roa
Signing time: Tue 28 Feb 2023 09:50:25 +0000
ROA not before: Tue 28 Feb 2023 09:50:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44926
IP address blocks: 185.168.161.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:97:6e:2c:c0:16:28:79:4c:20:7b:97:2b:e9:89:ed:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9256ebf66b80f08135858d144ced6f785834f5f4
Validity
Not Before: Feb 28 09:50:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=33acd644cbd2b3174481d47d8ad8fdcb5d8dfee4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:1b:4c:d9:23:c4:18:ce:6c:1b:5a:e3:f8:be:
f9:23:4a:0c:40:eb:92:78:83:ba:d7:2c:1c:b4:b8:
72:95:8d:51:cf:cd:4b:3a:2c:96:0c:86:20:0e:1b:
f7:26:3e:d1:c0:16:7b:56:59:8d:b8:fc:40:58:63:
b3:b6:c2:f4:f3:6c:97:f4:6a:d1:72:d8:8e:5a:75:
0b:01:20:f4:dc:38:cc:94:f8:fb:38:db:87:14:d9:
1b:83:54:76:6e:2c:de:15:56:f4:88:65:22:25:b3:
90:ef:e4:22:f1:e1:48:a8:1d:c3:88:06:5f:92:0c:
61:fe:34:c5:cb:71:0c:e7:55:38:c6:36:8f:e6:db:
c0:c4:9d:7a:81:ca:b9:60:81:d0:e6:e5:35:5e:38:
b9:4c:8c:e2:38:c1:42:63:05:4d:5d:fd:14:4b:a5:
b6:46:64:da:d8:39:03:c8:db:7c:d5:f4:0d:98:03:
d1:5d:04:82:7e:e2:77:ff:62:46:dd:ac:75:54:02:
5c:53:3b:6b:4f:7a:3f:96:29:3c:ed:03:10:81:b8:
7a:3c:de:4c:9c:a3:bf:db:da:fc:a5:b5:03:2e:9d:
08:e4:89:dc:24:bf:a6:cc:a1:31:1c:fd:59:7e:49:
e2:b1:d3:12:c3:cc:f1:70:85:c8:35:49:10:1b:f0:
85:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:AC:D6:44:CB:D2:B3:17:44:81:D4:7D:8A:D8:FD:CB:5D:8D:FE:E4
X509v3 Authority Key Identifier:
keyid:92:56:EB:F6:6B:80:F0:81:35:85:8D:14:4C:ED:6F:78:58:34:F5:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/klbr9muA8IE1hY0UTO1veFg09fQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/M6zWRMvSsxdEgdR9itj9y12N_uQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.161.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:af:7b:1d:f0:45:6e:2d:3b:2f:42:9d:0b:ba:f0:b6:ac:17:
ad:16:3c:2c:2d:c5:41:95:25:0a:18:b1:eb:0a:39:45:9f:8e:
d1:2a:df:e0:e5:9c:f0:b2:b6:8b:ae:22:af:00:e6:5f:e0:16:
67:cb:d1:b8:c6:77:f1:5e:37:8e:c6:6c:9a:77:a7:4d:50:a5:
64:ba:f9:37:ad:9c:d5:ab:cc:0e:55:a8:95:c1:c0:f0:e1:1b:
0a:a1:41:83:6e:06:4c:bb:d5:c3:5f:e7:0c:d2:c1:e5:12:8f:
f1:ee:f2:ca:45:3e:35:3e:02:1b:3f:28:80:e1:3f:e6:5c:1e:
fb:b1:35:81:55:70:2a:1e:d8:2b:6d:e6:37:65:b4:75:11:7e:
ef:18:c1:99:02:98:e4:7e:17:5e:41:f8:b8:5f:07:39:bf:bc:
d3:3d:4e:2d:5b:db:50:a0:85:b7:93:f8:42:d4:bf:1e:46:6a:
62:63:d0:f7:82:4d:23:96:87:98:fb:0c:e8:e5:6c:0e:60:a3:
45:ec:69:6b:93:b9:d8:b1:26:fe:ef:1e:d4:27:c4:81:c7:1c:
a6:e0:29:f6:c1:b1:24:97:80:8d:2b:5b:3f:8d:5c:22:2d:7b:
80:b9:6b:06:cb:9b:d9:5d:8f:14:3e:80:a7:a4:3b:ca:b6:19:
56:18:30:50
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYaXbizAFih5TCB7lyvpie0iMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyNTZlYmY2NmI4MGYwODEzNTg1OGQxNDRjZWQ2Zjc4NTgz
NGY1ZjQwHhcNMjMwMjI4MDk1MDI1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzM2FjZDY0NGNiZDJiMzE3NDQ4MWQ0N2Q4YWQ4ZmRjYjVkOGRmZWU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAixtM2SPEGM5sG1rj+L75I0oMQOuS
eIO61ywctLhylY1Rz81LOiyWDIYgDhv3Jj7RwBZ7VlmNuPxAWGOztsL082yX9GrR
ctiOWnULASD03DjMlPj7ONuHFNkbg1R2bizeFVb0iGUiJbOQ7+Qi8eFIqB3DiAZf
kgxh/jTFy3EM51U4xjaP5tvAxJ16gcq5YIHQ5uU1Xji5TIziOMFCYwVNXf0US6W2
RmTa2DkDyNt81fQNmAPRXQSCfuJ3/2JG3ax1VAJcUztrT3o/lik87QMQgbh6PN5M
nKO/29r8pbUDLp0I5IncJL+mzKExHP1ZfknisdMSw8zxcIXINUkQG/CFMwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDOs1kTL0rMXRIHUfYrY/ctdjf7kMB8GA1UdIwQY
MBaAFJJW6/ZrgPCBNYWNFEztb3hYNPX0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2xicjltdUE4SUUxaFkwVVRPMXZlRmcwOWZRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS9iNzE3YzUtYTY0Yi00NDc1LWJlM2Ut
NWRhOGQ2NzdkODQ3LzEvTTZ6V1JNdlNzeGRFZ2RSOWl0ajl5MTJOX3VRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMS9iNzE3YzUtYTY0Yi00NDc1LWJlM2UtNWRhOGQ2NzdkODQ3
LzEva2xicjltdUE4SUUxaFkwVVRPMXZlRmcwOWZRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuaihMA0G
CSqGSIb3DQEBCwUAA4IBAQBtr3sd8EVuLTsvQp0LuvC2rBetFjwsLcVBlSUKGLHr
CjlFn47RKt/g5ZzwsraLriKvAOZf4BZny9G4xnfxXjeOxmyad6dNUKVkuvk3rZzV
q8wOVaiVwcDw4RsKoUGDbgZMu9XDX+cM0sHlEo/x7vLKRT41PgIbPyiA4T/mXB77
sTWBVXAqHtgrbeY3ZbR1EX7vGMGZApjkfhdeQfi4Xwc5v7zTPU4tW9tQoIW3k/hC
1L8eRmpiY9D3gk0jloeY+wzo5WwOYKNF7Glrk7nYsSb+7x7UJ8SBxxym4Cn2wbEk
l4CNK1s/jVwiLXuAuWsGy5vZXY8UPoCnpDvKthlWGDBQ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:18 2024 by rpki-client on console-fra.rpki-client.org