Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/085c35-28ac-4241-b951-20a900bc776a/1/MSxObtZLmrwHch2i0n50BEQuYks.roa
File: MSxObtZLmrwHch2i0n50BEQuYks.roa (raw, json)
Hash identifier: Ql6VWMpCOWolDNo0oNGQGUaWkRQKGQ5n0TaiINoYyKk=
Subject key identifier: 31:2C:4E:6E:D6:4B:9A:BC:07:72:1D:A2:D2:7E:74:04:44:2E:62:4B
Certificate issuer: /CN=a4f523d948387d8c5fcdf752e0a1cc408cfe8395
Certificate serial: 01856F1DBB784386297A569CEFE3A89B5BD7
Authority key identifier: A4:F5:23:D9:48:38:7D:8C:5F:CD:F7:52:E0:A1:CC:40:8C:FE:83:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pPUj2Ug4fYxfzfdS4KHMQIz-g5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/085c35-28ac-4241-b951-20a900bc776a/1/MSxObtZLmrwHch2i0n50BEQuYks.roa
Signing time: Sun 01 Jan 2023 20:54:57 +0000
ROA not before: Sun 01 Jan 2023 20:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24806
IP address blocks: 185.33.144.0/22 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:32:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:bb:78:43:86:29:7a:56:9c:ef:e3:a8:9b:5b:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4f523d948387d8c5fcdf752e0a1cc408cfe8395
Validity
Not Before: Jan 1 20:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=312c4e6ed64b9abc07721da2d27e7404442e624b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:4a:33:b8:f4:c7:e8:8a:97:c3:78:1e:46:a6:
5e:6d:d2:ed:7a:f8:22:6e:e5:4b:03:3a:b2:6b:99:
72:22:48:8c:c8:46:44:2e:be:7b:9b:4f:8a:13:98:
c2:fd:6c:47:53:36:61:82:cd:9d:7a:cb:17:65:0f:
36:3a:fa:d5:42:d4:90:57:4c:ea:20:9a:d3:e3:d0:
72:27:9a:c9:4f:e4:db:e2:26:38:57:a2:ab:df:e1:
68:20:57:2c:05:39:ed:f5:25:8c:15:e3:bd:c4:3f:
ea:e6:9b:29:93:db:76:3a:1b:e3:3c:6c:46:e5:3f:
7a:90:46:eb:e0:f7:93:4f:04:0e:8f:1d:f7:c2:48:
e9:b2:14:68:72:7f:c5:a5:04:4a:2c:ce:7e:dd:0a:
9a:ba:22:97:8b:6b:74:58:00:76:2d:8c:3e:36:c1:
40:30:46:76:1a:f9:27:73:c4:7f:69:1d:a6:7b:b3:
6b:46:2c:ed:d9:9b:d4:a6:ac:c9:c0:e1:c0:e8:41:
c4:3d:3b:06:c2:80:51:43:ef:45:7c:65:05:1c:fc:
31:71:f1:21:22:d2:39:e3:7e:69:a0:68:4f:06:f4:
e7:bb:39:5f:e3:57:7d:1a:9c:78:3e:0c:9a:2c:f2:
1c:d5:f1:c4:4f:43:18:07:bd:a5:35:7b:66:3d:dd:
55:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:2C:4E:6E:D6:4B:9A:BC:07:72:1D:A2:D2:7E:74:04:44:2E:62:4B
X509v3 Authority Key Identifier:
keyid:A4:F5:23:D9:48:38:7D:8C:5F:CD:F7:52:E0:A1:CC:40:8C:FE:83:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pPUj2Ug4fYxfzfdS4KHMQIz-g5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/085c35-28ac-4241-b951-20a900bc776a/1/MSxObtZLmrwHch2i0n50BEQuYks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/085c35-28ac-4241-b951-20a900bc776a/1/pPUj2Ug4fYxfzfdS4KHMQIz-g5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.33.144.0/22
Signature Algorithm: sha256WithRSAEncryption
ae:f9:1e:63:98:a9:a9:8f:1e:a0:e6:13:1e:ea:b0:5a:a1:18:
c6:9b:e3:37:7c:bc:3e:07:d9:a9:dd:31:e0:26:d5:80:38:0f:
76:7e:e4:7b:29:57:68:d2:16:6d:09:f1:c2:f9:6b:47:c1:b3:
62:87:8e:a5:a9:62:47:4f:d2:29:35:be:f8:24:9f:93:b9:e1:
9d:75:1f:e8:36:b9:44:94:f1:a9:be:4d:16:50:79:59:a6:59:
ed:7f:2e:9a:12:ce:78:9d:3e:97:90:a5:41:e9:7d:14:38:ef:
e7:40:2f:97:d7:56:8a:58:e3:49:e4:87:38:aa:08:26:c7:d8:
40:27:87:d1:8c:65:f2:fd:0f:82:1b:89:3a:49:fd:78:60:29:
b1:a9:c9:c4:4b:81:cb:e0:2b:6c:0a:c8:f7:81:9e:12:05:59:
08:4e:79:24:de:15:3d:1f:f6:83:5b:dc:68:b3:aa:46:e2:4d:
96:bd:1b:32:82:40:50:7b:47:85:15:d4:0f:30:84:f1:54:e0:
a4:4c:d0:31:5e:bd:28:d6:56:7a:91:7e:c9:75:5b:3a:86:81:
b9:bd:fb:21:89:38:1c:3d:96:29:50:88:17:b2:be:d0:f1:00:
25:87:36:41:cd:ff:2c:9b:d3:5c:ad:c9:05:2d:26:d3:cb:6a:
87:c4:c8:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:50 2024 by rpki-client on console-ams.rpki-client.org