Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/MLT79-ryBVsP2zORZQjjGX1nYIM.roa
File: MLT79-ryBVsP2zORZQjjGX1nYIM.roa (raw, json)
Hash identifier: kmwK49uGI5KHSrwoDlPgyWQlq04AMMVeMfBekThTZM8=
Subject key identifier: 30:B4:FB:F7:EA:F2:05:5B:0F:DB:33:91:65:08:E3:19:7D:67:60:83
Certificate issuer: /CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Certificate serial: 018572CCA50566EA2F8E933DA800F6656A08
Authority key identifier: D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/MLT79-ryBVsP2zORZQjjGX1nYIM.roa
Signing time: Mon 02 Jan 2023 14:04:52 +0000
ROA not before: Mon 02 Jan 2023 14:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 395111
IP address blocks: 85.203.27.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:cc:a5:05:66:ea:2f:8e:93:3d:a8:00:f6:65:6a:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Validity
Not Before: Jan 2 14:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=30b4fbf7eaf2055b0fdb33916508e3197d676083
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:76:71:b3:c0:df:2d:43:25:2b:10:5b:72:3f:
12:e1:1c:d5:cd:2d:a1:a7:01:13:9c:8a:87:da:66:
7f:41:f9:d5:83:dc:56:69:1f:e3:00:71:37:42:9f:
e0:ed:dc:01:06:67:9e:9c:03:09:02:b8:66:be:be:
ae:18:26:a4:f0:b5:9d:1e:01:70:26:11:38:a2:11:
6c:45:e1:86:88:81:21:c8:a6:7f:b0:31:b7:ab:ee:
9b:ad:06:9d:53:fe:62:86:db:ac:9b:67:33:6c:db:
74:79:8a:09:61:6c:7f:c9:06:36:fe:81:9a:39:dc:
c8:93:9c:00:71:fe:07:50:12:cb:d8:85:f3:f7:da:
13:0f:4b:1c:ee:bc:e3:f7:cc:03:7e:dc:5f:80:5c:
c0:00:00:2b:17:e9:50:4a:ae:46:fe:f7:0a:b6:84:
b3:dd:fd:7b:5b:95:04:36:db:af:5f:62:5c:9b:79:
17:e1:ab:49:d7:4c:05:78:ac:b7:f5:4a:8c:22:e1:
f8:e2:a7:d2:6d:c1:06:0f:e2:cb:c1:e1:7c:04:b5:
e2:a2:8f:cd:b5:17:0b:f6:38:ad:28:e6:bf:ba:9e:
8f:06:f0:52:bc:79:aa:56:aa:12:5d:04:34:2a:f5:
9f:84:0e:6c:aa:60:a1:35:88:48:da:8e:b9:5e:da:
64:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:B4:FB:F7:EA:F2:05:5B:0F:DB:33:91:65:08:E3:19:7D:67:60:83
X509v3 Authority Key Identifier:
keyid:D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/MLT79-ryBVsP2zORZQjjGX1nYIM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/1FvfbuwINwrh9n6D-Ztawf4mhyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.203.27.0/24
Signature Algorithm: sha256WithRSAEncryption
50:7a:02:ed:53:5b:eb:77:2b:83:3d:25:ab:6a:3f:43:ac:1c:
98:f3:a2:62:4c:9b:6e:e1:16:42:92:5c:97:72:11:66:6f:12:
46:5c:3e:67:83:8d:16:4b:0f:94:ba:a6:30:ce:7c:bc:c1:65:
44:b8:bc:3c:54:f3:b7:f6:5a:30:30:14:dc:94:44:80:d9:70:
69:b0:7a:d3:26:a2:1d:bb:f3:4d:20:fa:6a:32:f6:a1:ec:ac:
03:9f:07:79:d2:f5:f4:29:f1:3b:fe:b4:2c:52:bd:3e:cc:ea:
29:79:cf:ed:86:b7:6a:d2:0b:1a:e5:3b:da:1a:d1:e1:35:29:
dc:78:ff:94:e4:96:6e:5a:49:79:52:7b:6e:92:e5:aa:2b:12:
ca:3d:19:e3:83:c7:34:35:af:27:a4:3a:c9:3d:f2:f1:ef:e0:
57:40:66:de:88:6f:ab:05:9b:3c:0b:3e:d3:b7:26:ea:95:ab:
2e:dc:1d:d6:c5:ad:25:39:25:43:65:02:c5:e4:a4:f3:35:8b:
f6:bf:4c:7a:1d:80:21:af:cd:2a:b4:8a:f2:65:76:9b:9e:72:
a2:7b:9a:e1:cc:77:29:25:95:c1:2e:6b:74:73:77:65:12:bf:
16:32:b6:8f:47:2c:00:3d:be:3a:3e:e4:f3:c1:3f:6b:a9:f9:
34:af:8c:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:33 2024 by rpki-client on console-ams.rpki-client.org