Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/819e39-c00c-49b0-a768-4406688eef85/1/Mankw3RYZURsoSiAENykjGhFPCg.roa
File: Mankw3RYZURsoSiAENykjGhFPCg.roa (raw, json)
Hash identifier: avZPXo6XworuuudVfbvAOIxejBl4Ndf160yW3L/iUWU=
Subject key identifier: 31:A9:E4:C3:74:58:65:44:6C:A1:28:80:10:DC:A4:8C:68:45:3C:28
Certificate issuer: /CN=74d34abbe9afba280432c2ab83898c7b950df7ac
Certificate serial: 018CC492483F1D48DF5EFBC38C82AAD11EF1
Authority key identifier: 74:D3:4A:BB:E9:AF:BA:28:04:32:C2:AB:83:89:8C:7B:95:0D:F7:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dNNKu-mvuigEMsKrg4mMe5UN96w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/819e39-c00c-49b0-a768-4406688eef85/1/Mankw3RYZURsoSiAENykjGhFPCg.roa
Signing time: Mon 01 Jan 2024 10:29:30 +0000
ROA not before: Mon 01 Jan 2024 10:29:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212045
IP address blocks: 85.117.228.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 Apr 2024 07:47:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:92:48:3f:1d:48:df:5e:fb:c3:8c:82:aa:d1:1e:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74d34abbe9afba280432c2ab83898c7b950df7ac
Validity
Not Before: Jan 1 10:29:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=31a9e4c3745865446ca1288010dca48c68453c28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:98:be:05:f9:cc:6a:19:7c:53:f2:a9:9c:1e:
d4:2d:74:29:8b:52:d0:f3:23:71:23:0f:bc:16:20:
c7:3e:14:93:5c:bc:0f:6b:35:7c:52:67:3e:90:8e:
0a:16:d8:a5:bd:a5:20:61:1c:d7:ab:9c:a1:c2:50:
c6:82:9d:ec:c2:00:bc:a7:d4:62:66:8a:60:67:b8:
26:b3:e0:5c:c8:28:ac:82:af:70:7e:ae:84:39:1f:
01:ee:74:39:0e:9b:8f:ee:66:f0:c2:db:a5:66:89:
c1:29:ad:8d:da:fd:8c:18:6d:e0:e4:4e:c0:7d:34:
53:52:bc:29:ae:21:bc:2b:0b:a6:57:d6:4c:61:03:
c0:0b:bd:25:c0:db:84:c1:4b:f6:39:21:27:7c:32:
e1:9b:fa:30:b6:06:17:80:93:3c:30:e4:4f:dc:b1:
1b:9f:c7:9e:28:8d:00:4b:11:49:83:83:e8:3c:7f:
71:00:88:af:8e:f9:27:4c:d5:72:5a:2a:78:d3:b9:
5c:e0:76:4b:b6:05:4a:ec:e9:de:9d:69:2d:1c:90:
02:b2:98:dc:bc:64:83:3d:9c:89:80:84:ee:25:d1:
3e:07:4c:cf:fd:0c:d1:72:91:47:3f:d6:0d:66:e6:
cf:6a:cb:38:90:06:c8:9b:d7:5b:1d:ef:18:09:df:
c4:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:A9:E4:C3:74:58:65:44:6C:A1:28:80:10:DC:A4:8C:68:45:3C:28
X509v3 Authority Key Identifier:
keyid:74:D3:4A:BB:E9:AF:BA:28:04:32:C2:AB:83:89:8C:7B:95:0D:F7:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dNNKu-mvuigEMsKrg4mMe5UN96w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/819e39-c00c-49b0-a768-4406688eef85/1/Mankw3RYZURsoSiAENykjGhFPCg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/819e39-c00c-49b0-a768-4406688eef85/1/dNNKu-mvuigEMsKrg4mMe5UN96w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.117.228.0/24
Signature Algorithm: sha256WithRSAEncryption
94:04:5c:77:d2:f1:40:05:38:63:3e:f9:08:3c:9d:e0:79:6b:
1c:04:b6:ba:97:4a:12:03:fd:d0:eb:a6:f0:65:59:2c:c6:c5:
fc:cd:0a:a5:60:59:38:97:17:2e:cb:f3:97:92:0e:df:53:ab:
ef:1f:1b:ec:df:3b:a7:c5:1f:ac:e4:aa:eb:1f:2c:56:ce:d1:
26:3e:6e:d4:b9:75:ab:f8:8a:42:ee:38:d4:95:de:92:c2:f9:
7c:b1:82:4e:d0:5d:99:25:62:3f:2d:41:f5:79:7b:fb:a7:5b:
32:24:60:04:6b:cb:e3:d3:f1:52:9b:63:c2:4c:d5:b1:ea:f7:
6a:71:dd:8e:42:8e:fb:03:41:c4:75:0e:6e:fd:f8:1f:b0:ee:
72:9e:63:b1:06:26:43:28:00:b5:4e:b1:7b:4d:81:26:32:f5:
dd:b3:e6:f5:51:32:89:39:1d:87:6e:02:16:62:16:fe:76:6a:
9c:26:75:68:4b:90:ff:f3:21:7a:99:65:f0:ec:63:54:06:2e:
39:e6:21:f0:96:07:8c:c3:33:85:ac:00:bb:fa:4b:da:c3:3e:
55:ea:e2:06:3d:63:f4:04:e5:e7:b7:e8:03:bc:af:20:ee:66:
eb:2a:63:dd:0b:9b:46:76:7f:f9:d1:5b:a2:3c:92:3e:b3:7c:
ad:1a:3f:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:36 2024 by rpki-client on console-fra.rpki-client.org