Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/6a54bf-f00f-467a-bf57-aab0e414cc63/1/MRusFOVTEzLbKzeT0lyXM5IxT7M.roa
File: MRusFOVTEzLbKzeT0lyXM5IxT7M.roa (raw, json)
Hash identifier: Z58d+lKL5OfQa9H6H3gkA71mOYZuuhNw31zlaNiLGCY=
Subject key identifier: 31:1B:AC:14:E5:53:13:32:DB:2B:37:93:D2:5C:97:33:92:31:4F:B3
Certificate issuer: /CN=7d149f62447853689c12fb288afeb6b681cfebc1
Certificate serial: 01856ED4AA0C0CA956D062CA57C5D647372B
Authority key identifier: 7D:14:9F:62:44:78:53:68:9C:12:FB:28:8A:FE:B6:B6:81:CF:EB:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fRSfYkR4U2icEvsoiv62toHP68E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/6a54bf-f00f-467a-bf57-aab0e414cc63/1/MRusFOVTEzLbKzeT0lyXM5IxT7M.roa
Signing time: Sun 01 Jan 2023 19:35:09 +0000
ROA not before: Sun 01 Jan 2023 19:35:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50345
IP address blocks: 93.125.108.0/24 maxlen: 24
2a04:2e80:14::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:aa:0c:0c:a9:56:d0:62:ca:57:c5:d6:47:37:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d149f62447853689c12fb288afeb6b681cfebc1
Validity
Not Before: Jan 1 19:35:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=311bac14e5531332db2b3793d25c973392314fb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:c8:9c:22:4e:e6:0e:f8:d0:ee:2c:ce:19:a3:
6f:d8:cf:98:af:24:46:b7:22:45:ae:63:21:a0:57:
ff:a8:99:ef:8f:aa:b6:a6:97:88:45:45:41:30:c0:
06:40:51:94:45:d4:df:50:c6:d4:07:78:26:d7:c2:
73:1e:58:ae:34:ef:c8:13:5e:74:89:d7:ff:d5:22:
c0:72:ef:6e:ad:4f:4c:97:b1:80:c4:80:21:ac:e3:
3d:9b:e7:d2:a3:9a:ed:56:78:30:a0:46:e1:c7:e1:
bb:67:6c:04:c5:38:d6:98:6d:68:1d:99:34:89:29:
4d:a3:98:d4:e7:5f:de:34:d2:16:bf:a2:e8:59:b2:
c8:f3:53:c3:80:03:e2:ba:09:e1:1f:a2:3a:c5:73:
c6:97:a6:7f:07:b2:6c:ac:14:23:60:02:e2:bc:9e:
1a:5e:4e:e5:25:f4:2d:f6:56:a1:83:8b:d2:5e:80:
08:a4:da:6a:0d:fd:66:cc:f4:60:a1:c2:a9:2a:74:
d4:a1:77:34:ae:fe:66:a9:47:7d:af:aa:a3:a7:7c:
c6:2d:71:b4:10:e7:1d:11:6a:08:99:52:69:51:23:
92:62:99:ac:1b:61:98:e6:12:9d:f7:39:0d:af:9c:
54:14:52:e6:d8:a2:d6:5e:ec:24:9d:88:62:62:ee:
f7:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:1B:AC:14:E5:53:13:32:DB:2B:37:93:D2:5C:97:33:92:31:4F:B3
X509v3 Authority Key Identifier:
keyid:7D:14:9F:62:44:78:53:68:9C:12:FB:28:8A:FE:B6:B6:81:CF:EB:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fRSfYkR4U2icEvsoiv62toHP68E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/6a54bf-f00f-467a-bf57-aab0e414cc63/1/MRusFOVTEzLbKzeT0lyXM5IxT7M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/6a54bf-f00f-467a-bf57-aab0e414cc63/1/fRSfYkR4U2icEvsoiv62toHP68E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.125.108.0/24
IPv6:
2a04:2e80:14::/48
Signature Algorithm: sha256WithRSAEncryption
66:2f:46:12:25:f6:64:5f:69:21:18:7b:46:59:ac:ab:5c:09:
1a:86:02:c2:c8:dd:90:74:e3:d4:91:e2:89:a5:ee:4c:b0:1c:
4f:f0:6a:9e:a5:62:01:b3:9d:fd:38:8c:88:c9:b9:c3:30:f5:
d4:8e:b7:84:12:20:18:45:8f:39:07:cd:3f:e5:72:2b:95:87:
6f:55:76:ea:33:50:bb:40:f0:ed:88:91:e0:8b:85:04:f1:72:
72:ba:ae:84:ff:74:3b:b0:05:83:e8:54:f4:d9:f7:28:a2:d6:
60:42:91:32:71:ce:2f:03:35:5a:7f:c7:09:bd:fc:99:2f:d7:
c8:2e:cc:1f:ec:cc:a7:53:65:e1:e3:d1:ed:dd:32:66:17:c3:
eb:bc:77:8f:77:f0:b2:30:db:f3:23:a0:e6:0a:b0:56:50:8e:
88:3e:e7:a4:bf:09:6a:30:fb:9d:5f:7d:74:cc:21:21:ed:87:
e6:a4:05:6a:28:16:ae:75:42:51:2d:f6:8f:91:08:f3:f5:af:
c2:e5:78:22:c9:c3:b8:ea:82:02:e0:1c:64:71:56:b7:f8:53:
6f:86:6e:2d:29:92:2e:a9:47:da:1f:91:f5:f8:71:91:fd:2e:
29:d1:34:c6:91:52:69:f5:e0:d0:80:ec:88:5b:e7:71:24:43:
d8:52:d1:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:50 2024 by rpki-client on console-ams.rpki-client.org