Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/065dba-eef9-480d-a880-9175c8408e5e/1/mlVkKVSa18PwQd9Uw4y8-h-fSoM.roa
File: mlVkKVSa18PwQd9Uw4y8-h-fSoM.roa (raw, json)
Hash identifier: WzWDa9HFi3VWVYf/kBsTEb/9um7b4kiXNzBKV/ciHgs=
Subject key identifier: 9A:55:64:29:54:9A:D7:C3:F0:41:DF:54:C3:8C:BC:FA:1F:9F:4A:83
Certificate issuer: /CN=7059e03a08e17416f66546307988349991b84a2e
Certificate serial: 0185706765D18CE43B8FB1EEFB3B34CD9FEC
Authority key identifier: 70:59:E0:3A:08:E1:74:16:F6:65:46:30:79:88:34:99:91:B8:4A:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cFngOgjhdBb2ZUYweYg0mZG4Si4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/065dba-eef9-480d-a880-9175c8408e5e/1/mlVkKVSa18PwQd9Uw4y8-h-fSoM.roa
Signing time: Mon 02 Jan 2023 02:55:02 +0000
ROA not before: Mon 02 Jan 2023 02:55:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8578
IP address blocks: 83.136.76.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:65:d1:8c:e4:3b:8f:b1:ee:fb:3b:34:cd:9f:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7059e03a08e17416f66546307988349991b84a2e
Validity
Not Before: Jan 2 02:55:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9a556429549ad7c3f041df54c38cbcfa1f9f4a83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:2d:03:88:d6:66:34:00:77:2e:eb:af:eb:02:
24:b4:68:1a:24:91:5f:fd:5d:53:fd:a8:2a:52:06:
0f:a3:fa:63:bb:2b:8e:9b:aa:5c:a0:3b:c6:3e:ed:
43:b4:cb:77:be:cc:86:be:76:fc:58:42:74:0f:c6:
1d:80:96:92:17:c5:5e:f5:78:b1:29:86:24:da:d8:
e7:b6:7b:b1:4f:1e:a9:a6:5b:b4:15:d6:5c:a0:45:
1d:cb:9c:5f:05:ab:c4:a5:83:b7:32:d3:74:1e:f4:
51:41:a0:a6:d2:0a:88:96:d1:73:b5:d3:74:1a:da:
84:d8:57:df:15:4c:68:ee:f5:4e:c6:7e:fb:e6:7f:
ed:60:c8:ef:c9:77:2f:02:75:87:a4:b3:28:4c:38:
8a:c0:37:ca:a1:b7:3a:4f:13:3f:ed:74:d8:56:4b:
9f:34:ba:8a:52:92:f0:a8:7d:ee:fd:db:20:62:a1:
81:46:6b:44:39:c7:94:57:05:66:65:37:1e:51:0d:
be:7f:60:40:1e:8f:65:5d:3f:b0:41:a5:07:4c:46:
24:1b:b4:a7:aa:85:0f:cf:dc:65:1e:af:0b:4c:53:
5d:78:e0:1e:e8:1b:70:08:e9:fa:6b:6f:71:d8:3c:
16:43:a5:57:63:ea:4b:7b:c1:e3:aa:97:ce:e7:35:
2c:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:55:64:29:54:9A:D7:C3:F0:41:DF:54:C3:8C:BC:FA:1F:9F:4A:83
X509v3 Authority Key Identifier:
keyid:70:59:E0:3A:08:E1:74:16:F6:65:46:30:79:88:34:99:91:B8:4A:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cFngOgjhdBb2ZUYweYg0mZG4Si4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/065dba-eef9-480d-a880-9175c8408e5e/1/mlVkKVSa18PwQd9Uw4y8-h-fSoM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/065dba-eef9-480d-a880-9175c8408e5e/1/cFngOgjhdBb2ZUYweYg0mZG4Si4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.136.76.0/23
Signature Algorithm: sha256WithRSAEncryption
4a:56:1c:d2:4e:09:d8:38:23:7f:94:37:d7:50:fe:e7:65:5a:
e3:9e:20:d7:58:26:22:7d:65:7f:ed:7e:eb:a5:14:ed:bc:f4:
91:46:5c:3e:ca:3f:32:17:28:6a:46:b6:e7:44:6b:35:ab:1b:
41:22:5e:15:12:c3:59:75:33:2f:b8:23:0d:d0:78:76:3f:90:
96:6a:7b:9e:35:6f:a9:49:b5:81:1e:4b:c9:e6:6a:a0:5d:de:
8a:33:ad:c9:99:c0:41:be:e5:df:20:40:f9:0d:f4:ec:43:27:
f7:d6:db:bc:db:80:3f:d3:49:bc:b3:b0:62:a6:1a:48:0d:3a:
44:58:3e:d3:38:69:e5:bf:b1:e0:15:1a:10:51:e8:28:80:70:
3e:92:83:5f:0e:38:87:97:ab:e8:49:7d:5e:21:19:5a:9e:e1:
69:80:62:5c:bf:cc:b1:27:10:7c:6a:11:39:fb:3f:67:53:83:
14:3f:b1:08:25:c2:bd:80:94:f0:e3:c2:5b:61:23:5c:93:4a:
8c:02:3f:8b:8e:39:b4:4e:18:9f:ca:ff:7d:cb:d6:61:b5:39:
d3:64:4c:0a:a2:6b:6c:52:b1:77:54:f8:a6:41:6d:6d:01:cb:
e0:2f:a3:b2:e8:ca:63:a0:07:d5:fc:24:cb:be:4f:43:9d:00:
d6:97:74:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:33 2024 by rpki-client on console-fra.rpki-client.org