Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/MnGBV-7Ryc3GMHvsoToz0xaxpm8.roa
File: MnGBV-7Ryc3GMHvsoToz0xaxpm8.roa (raw, json)
Hash identifier: XbkRNN+swDeUOJpx0ujb9aqBUjS+nGY7RHXLt2zk3b0=
Subject key identifier: 32:71:81:57:EE:D1:C9:CD:C6:30:7B:EC:A1:3A:33:D3:16:B1:A6:6F
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 0189633961EF69EFD4B9C548F9150149F475
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/MnGBV-7Ryc3GMHvsoToz0xaxpm8.roa
Signing time: Mon 17 Jul 2023 09:40:52 +0000
ROA not before: Mon 17 Jul 2023 09:40:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8100
IP address blocks: 88.214.52.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 01 Sep 2023 11:35:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:63:39:61:ef:69:ef:d4:b9:c5:48:f9:15:01:49:f4:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Jul 17 09:40:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=32718157eed1c9cdc6307beca13a33d316b1a66f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:08:4d:41:95:10:53:97:30:59:9c:43:8c:34:
02:51:94:37:04:86:c4:b6:74:34:6f:6b:13:7e:91:
8d:9c:79:60:7f:7d:62:63:4f:23:e2:e4:f1:a1:3d:
fa:ce:75:43:70:e1:c3:0e:80:97:81:9a:c1:60:35:
36:86:7f:55:56:a1:38:09:e5:f0:c2:ad:d3:08:46:
5e:81:bf:dc:86:03:12:e7:46:90:24:76:c6:0e:a1:
12:c0:e4:ff:26:93:e1:0e:b6:13:dd:f4:6b:9b:9d:
82:9f:90:72:01:8b:a9:63:e1:e8:b3:85:3e:35:7f:
d8:0e:19:bb:98:d6:8d:23:a0:5a:de:f2:50:87:9d:
a3:4f:78:e7:8e:af:86:47:5d:df:5e:56:01:c1:80:
1b:a4:cf:b9:14:8b:68:61:65:15:3c:58:60:de:78:
e1:bc:85:60:be:fe:85:2a:aa:7f:13:84:13:1b:81:
07:60:dd:6a:d6:72:16:e0:24:b8:4c:3f:8f:a2:8e:
38:99:51:b5:f0:80:8a:7b:f8:20:b1:59:29:9c:0d:
c9:9d:d8:0e:08:fb:38:86:c8:e0:dc:cd:e4:ca:a4:
d2:4e:39:d3:4e:21:c1:0e:ea:e3:6b:44:22:01:b5:
02:7f:2c:29:0c:6b:00:06:3b:52:47:fc:7f:ad:df:
e0:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:71:81:57:EE:D1:C9:CD:C6:30:7B:EC:A1:3A:33:D3:16:B1:A6:6F
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/MnGBV-7Ryc3GMHvsoToz0xaxpm8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.214.52.0/22
Signature Algorithm: sha256WithRSAEncryption
72:6b:8d:0c:28:8f:24:ce:16:f7:e4:64:e7:b2:9b:c6:f8:78:
7b:42:99:f3:4a:93:41:e5:61:cc:7b:1a:4a:40:64:74:4b:ef:
3e:33:51:26:6d:7d:3e:df:49:77:30:c2:a3:47:ab:55:61:62:
bb:81:a2:6b:22:0c:cb:f4:11:14:18:e2:1f:dd:a3:78:1c:8a:
2a:95:4d:13:a3:d9:98:25:e4:fc:73:02:58:61:a3:22:36:af:
1d:14:cb:86:cd:4c:b6:56:aa:eb:0e:b3:0a:a8:10:93:36:6a:
f8:cf:34:76:f4:c8:ef:25:1f:80:ed:23:79:bf:b2:ab:15:42:
19:f8:3a:c9:a6:22:0f:7e:25:09:8f:37:59:c5:91:7a:e2:70:
f5:8e:7b:10:5e:79:65:57:f1:44:b0:07:08:8c:69:b9:32:fb:
83:34:9c:da:bb:a8:9e:29:ef:1e:56:8b:31:46:ce:76:86:e9:
a9:d4:fa:4d:d8:ba:9b:90:be:05:5f:3d:bf:3f:d0:c9:af:16:
fd:56:0d:cb:7c:3a:71:47:cd:87:42:6c:a6:48:84:c4:45:48:
6d:24:e2:c4:8c:36:aa:92:5a:a4:95:f0:3c:5a:22:56:e5:6a:
c6:59:02:a1:3f:e8:46:df:0b:80:32:87:14:31:8b:ff:fd:8d:
d1:79:35:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org