Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/3362c6-a03a-4f9f-a091-b762c0175f27/1/1-MgS7wfdloKKCLUf9jRnIVbyBuo.roa
File: 1-MgS7wfdloKKCLUf9jRnIVbyBuo.roa (raw, json)
Hash identifier: nLqRFQLhecEAtw3/Xkfimv+b8h2EYVwaVBJINvf2Y4s=
Subject key identifier: F8:C8:12:EF:07:DD:96:82:8A:08:B5:1F:F6:34:67:21:56:F2:06:EA
Certificate issuer: /CN=ca1c7571596e444aa32371cbab724d46d3c3c52c
Certificate serial: 018CC500F34FEF1DEFA902F26A2889F37AF0
Authority key identifier: CA:1C:75:71:59:6E:44:4A:A3:23:71:CB:AB:72:4D:46:D3:C3:C5:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yhx1cVluREqjI3HLq3JNRtPDxSw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/3362c6-a03a-4f9f-a091-b762c0175f27/1/1-MgS7wfdloKKCLUf9jRnIVbyBuo.roa
Signing time: Mon 01 Jan 2024 12:30:22 +0000
ROA not before: Mon 01 Jan 2024 12:30:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216246
IP address blocks: 85.192.56.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Nov 2024 07:41:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:f3:4f:ef:1d:ef:a9:02:f2:6a:28:89:f3:7a:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca1c7571596e444aa32371cbab724d46d3c3c52c
Validity
Not Before: Jan 1 12:30:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f8c812ef07dd96828a08b51ff634672156f206ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:48:9f:d2:5d:bd:ad:b0:f5:cd:4e:db:d0:e1:
9d:96:ff:43:b4:08:d6:0a:84:2f:30:36:f7:40:1f:
4f:68:2e:ec:dc:17:bf:9e:29:3c:b2:67:b2:30:a0:
a5:83:89:16:84:a2:7c:98:4f:f0:92:d7:6e:0a:ee:
51:19:ed:8e:95:2a:23:1d:6e:c9:3a:6b:61:6f:22:
04:6d:78:76:d2:c2:4d:d8:b9:6f:65:ab:a5:78:74:
a2:51:f2:36:2a:e5:ee:3e:12:52:1c:df:29:58:3e:
cc:23:85:7b:f0:1c:ee:b2:90:51:ec:bc:a7:f8:e4:
e0:95:d0:89:0c:f0:43:23:7f:75:22:8a:cc:d5:03:
a6:67:c8:64:ec:1f:75:00:95:9f:f8:98:2b:9d:1d:
f1:2a:64:68:92:c8:1b:70:68:dd:66:6a:5c:09:a6:
be:8c:8f:79:cd:d6:19:87:59:fb:5f:ed:de:51:1f:
b3:f7:33:95:41:68:66:f5:05:9a:17:2f:85:1a:e4:
53:93:f0:6c:bc:6c:54:d8:1d:bb:08:2c:16:2e:04:
38:8a:94:74:db:78:fb:a9:51:d2:2f:8d:17:0b:cd:
77:76:b6:1c:22:ee:de:e1:ba:28:ae:22:d5:da:80:
19:88:ba:81:3a:1a:ab:3f:d4:76:1e:cb:59:de:ff:
5f:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:C8:12:EF:07:DD:96:82:8A:08:B5:1F:F6:34:67:21:56:F2:06:EA
X509v3 Authority Key Identifier:
keyid:CA:1C:75:71:59:6E:44:4A:A3:23:71:CB:AB:72:4D:46:D3:C3:C5:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yhx1cVluREqjI3HLq3JNRtPDxSw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3362c6-a03a-4f9f-a091-b762c0175f27/1/1-MgS7wfdloKKCLUf9jRnIVbyBuo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3362c6-a03a-4f9f-a091-b762c0175f27/1/yhx1cVluREqjI3HLq3JNRtPDxSw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.192.56.0/24
Signature Algorithm: sha256WithRSAEncryption
52:ac:e7:d3:96:3b:0a:f9:9d:96:f7:ad:1d:58:f8:d0:e5:b5:
fc:35:48:3c:07:45:dc:b8:30:49:ce:db:0b:05:6a:9e:2b:c3:
50:e9:67:91:95:61:1b:67:eb:82:25:a8:8a:b2:60:fc:d1:31:
c4:21:b6:cb:34:67:3a:31:29:fe:6c:ca:48:41:e5:46:93:54:
b9:03:81:04:a9:ea:66:10:8c:5d:14:ff:22:99:2a:82:23:aa:
a6:77:e7:55:ac:3e:91:62:10:cd:1c:80:93:ae:ea:ba:0a:7e:
f1:14:f3:e7:0b:78:c0:a6:cf:b9:a1:e8:28:b8:82:72:b1:1b:
88:2a:c4:5a:f9:e6:94:c5:ca:b1:9e:02:7f:c1:23:6c:20:f8:
16:f4:54:a8:aa:3c:14:cb:58:cc:5a:8b:f8:95:7c:21:d5:40:
00:f6:cf:fd:4a:5c:d6:db:3f:00:a5:ad:32:61:48:a0:62:84:
2e:f4:a2:da:b8:d6:32:ce:32:eb:bd:aa:c2:ee:82:c4:d4:ee:
7d:6f:cf:8b:0d:d0:21:d5:09:cb:8c:9d:90:e6:e8:e2:9c:c7:
e7:c2:3d:9c:01:66:92:b0:1a:04:24:7e:2c:b4:a7:60:eb:98:
24:be:17:c8:9b:8e:0b:52:bc:72:4a:7b:1e:a4:d3:00:92:2e:
80:74:b2:c5
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYzFAPNP7x3vqQLyaiiJ83rwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhMWM3NTcxNTk2ZTQ0NGFhMzIzNzFjYmFiNzI0ZDQ2ZDNj
M2M1MmMwHhcNMjQwMTAxMTIzMDIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmOGM4MTJlZjA3ZGQ5NjgyOGEwOGI1MWZmNjM0NjcyMTU2ZjIwNmVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArUif0l29rbD1zU7b0OGdlv9DtAjW
CoQvMDb3QB9PaC7s3Be/nik8smeyMKClg4kWhKJ8mE/wktduCu5RGe2OlSojHW7J
OmthbyIEbXh20sJN2LlvZauleHSiUfI2KuXuPhJSHN8pWD7MI4V78BzuspBR7Lyn
+OTgldCJDPBDI391IorM1QOmZ8hk7B91AJWf+JgrnR3xKmRoksgbcGjdZmpcCaa+
jI95zdYZh1n7X+3eUR+z9zOVQWhm9QWaFy+FGuRTk/BsvGxU2B27CCwWLgQ4ipR0
23j7qVHSL40XC813drYcIu7e4booriLV2oAZiLqBOhqrP9R2HstZ3v9fRwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPjIEu8H3ZaCigi1H/Y0ZyFW8gbqMB8GA1UdIwQY
MBaAFMocdXFZbkRKoyNxy6tyTUbTw8UsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWh4MWNWbHVSRXFqSTNITHEzSk5SdFBEeFN3LmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS8zMzYyYzYtYTAzYS00ZjlmLWEwOTEt
Yjc2MmMwMTc1ZjI3LzEvMS1NZ1M3d2ZkbG9LS0NMVWY5alJuSVZieUJ1by5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvYmUvMzM2MmM2LWEwM2EtNGY5Zi1hMDkxLWI3NjJjMDE3NWYy
Ny8xL3loeDFjVmx1UkVxakkzSExxM0pOUnRQRHhTdy5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFXAODAN
BgkqhkiG9w0BAQsFAAOCAQEAUqzn05Y7CvmdlvetHVj40OW1/DVIPAdF3LgwSc7b
CwVqnivDUOlnkZVhG2frgiWoirJg/NExxCG2yzRnOjEp/mzKSEHlRpNUuQOBBKnq
ZhCMXRT/IpkqgiOqpnfnVaw+kWIQzRyAk67qugp+8RTz5wt4wKbPuaHoKLiCcrEb
iCrEWvnmlMXKsZ4Cf8EjbCD4FvRUqKo8FMtYzFqL+JV8IdVAAPbP/Upc1ts/AKWt
MmFIoGKELvSi2rjWMs4y672qwu6CxNTufW/Piw3QIdUJy4ydkObo4pzH58I9nAFm
krAaBCR+LLSnYOuYJL4XyJuOC1K8ckp7HqTTAJIugHSyxQ==
-----END CERTIFICATE-----
Generated at Sat May 3 12:33:32 2025 by rpki-client