Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/MSZXrxa4-ETi2HqwZgf-FVyzw0Q.roa
File: MSZXrxa4-ETi2HqwZgf-FVyzw0Q.roa (raw, json)
Hash identifier: rtzZlF7KPjGXoQybm7rfj6JcZHLTQNs3sIf217X2UJc=
Subject key identifier: 31:26:57:AF:16:B8:F8:44:E2:D8:7A:B0:66:07:FE:15:5C:B3:C3:44
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0188D30FBEE5C68EE1FD54A4B1ACD58A7925
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/MSZXrxa4-ETi2HqwZgf-FVyzw0Q.roa
Signing time: Mon 19 Jun 2023 09:50:04 +0000
ROA not before: Mon 19 Jun 2023 09:50:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 11938
IP address blocks: 194.87.228.0/24 maxlen: 24
194.135.18.0/24 maxlen: 24
193.124.44.0/24 maxlen: 24
194.58.41.0/24 maxlen: 24
194.87.180.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d3:0f:be:e5:c6:8e:e1:fd:54:a4:b1:ac:d5:8a:79:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jun 19 09:50:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=312657af16b8f844e2d87ab06607fe155cb3c344
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:0a:51:9d:f8:03:26:a2:e7:3c:16:b9:98:74:
89:2e:0d:de:d5:c7:4a:52:b4:c4:df:12:40:0a:93:
12:74:55:1a:9e:95:ee:d9:a6:b4:75:69:ce:a3:bb:
d4:d1:94:b0:91:d5:87:38:89:22:c1:f6:13:c4:f1:
c3:eb:e9:a2:92:64:39:e4:67:8f:42:4f:f2:e3:78:
e1:f4:8c:c8:ff:2e:d7:6e:f4:ea:84:2c:76:89:24:
f2:b2:08:91:ef:de:98:26:83:e0:50:5c:22:d2:b5:
fe:15:77:0b:fb:0b:4c:67:7c:4c:8a:95:fb:80:89:
a4:a4:aa:db:0c:a3:42:10:c5:a8:70:86:00:49:53:
90:d3:93:ec:5b:b6:65:83:a4:f2:f4:6f:1c:eb:0f:
df:0a:8c:62:8b:c6:6d:5f:eb:61:69:c2:01:01:6f:
ef:a1:be:4c:52:ff:5d:96:99:1b:4e:f2:39:2f:db:
78:ff:ff:58:00:50:2b:a7:90:f4:cd:ae:3e:0e:98:
d4:38:42:82:b7:8a:3c:74:6a:7a:6a:4e:2a:7b:aa:
69:3a:4f:f7:b7:5f:03:21:f1:36:86:ef:25:c4:d1:
78:88:27:cb:16:a8:72:4b:a0:a4:c0:e5:9b:f7:b4:
f6:88:4b:bd:b3:d8:d0:ab:31:29:9b:ed:08:42:2b:
36:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:26:57:AF:16:B8:F8:44:E2:D8:7A:B0:66:07:FE:15:5C:B3:C3:44
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/MSZXrxa4-ETi2HqwZgf-FVyzw0Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.124.44.0/24
194.58.41.0/24
194.87.180.0/24
194.87.228.0/24
194.135.18.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:78:78:74:c5:ae:17:19:79:36:46:17:00:62:f6:30:48:ca:
30:cb:68:c2:25:bd:9d:8f:44:a0:04:35:c0:fa:22:1a:90:a2:
bc:7f:7a:72:81:63:5a:38:a5:ad:73:aa:5b:85:5e:28:1d:26:
b7:bb:c9:dc:6a:18:d4:7f:38:d7:48:1c:9d:94:06:e0:b3:19:
b3:f9:bb:27:c3:b8:23:5d:e6:72:c3:75:52:15:78:dc:6a:56:
6a:ee:f2:6c:55:99:d7:fb:45:18:db:9d:79:17:64:3e:9e:17:
77:ac:3c:d8:f0:a4:38:bf:67:9d:b4:7c:bc:b4:75:7a:93:7c:
cb:b3:6a:7d:6f:ff:c3:a2:d4:6d:3e:0b:ca:ef:3d:f8:dc:05:
35:52:22:e2:8f:0c:ab:ab:74:b7:a6:33:98:3f:fc:d1:b4:02:
d0:68:36:0c:64:8e:f7:02:ee:9c:39:0b:90:34:82:91:34:44:
ae:84:45:3d:25:d1:ab:48:34:e9:c4:ea:6d:2f:a8:1a:11:4f:
b8:5c:67:8f:3f:60:dc:bc:83:b1:64:b1:1e:f9:6a:03:10:0a:
99:3f:f6:ba:bd:43:be:37:b9:91:01:e3:6d:a4:8a:e4:cd:7a:
10:95:97:7f:18:9a:f4:18:6d:c0:f1:72:c8:d4:2e:5e:5b:ce:
82:ba:b9:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:56 2023 by rpki-client on console-ams.rpki-client.org