Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/MkL3UWUF9kBV12R7d81S2vB4vRI.roa
File: MkL3UWUF9kBV12R7d81S2vB4vRI.roa (raw, json)
Hash identifier: VsmIbivSe5H667oiZ1ZwM7Y+mIn4n8lmPo8K8kmUyF4=
Subject key identifier: 32:42:F7:51:65:05:F6:40:55:D7:64:7B:77:CD:52:DA:F0:78:BD:12
Certificate issuer: /CN=4d5a2921fbeb8a448e7ae1ec5a11b8ab898d22fd
Certificate serial: 0187B7DAD15DE502C8837C5CA76A3B69907D
Authority key identifier: 4D:5A:29:21:FB:EB:8A:44:8E:7A:E1:EC:5A:11:B8:AB:89:8D:22:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TVopIfvrikSOeuHsWhG4q4mNIv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/MkL3UWUF9kBV12R7d81S2vB4vRI.roa
Signing time: Tue 25 Apr 2023 09:59:43 +0000
ROA not before: Tue 25 Apr 2023 09:59:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50518
IP address blocks: 83.231.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b7:da:d1:5d:e5:02:c8:83:7c:5c:a7:6a:3b:69:90:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d5a2921fbeb8a448e7ae1ec5a11b8ab898d22fd
Validity
Not Before: Apr 25 09:59:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3242f7516505f64055d7647b77cd52daf078bd12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:b1:32:56:c9:e7:1b:1d:3d:f4:12:07:1d:d6:
bc:18:c7:07:f5:de:23:da:9e:0e:60:e6:43:f2:f8:
6e:7a:e7:64:69:2f:a4:ff:07:33:34:af:5c:e1:26:
8b:f3:4a:9e:40:fa:99:88:db:b5:cc:00:5a:6c:96:
31:91:a7:2a:95:bc:e6:4d:46:b6:39:da:d5:40:3d:
17:45:50:4a:18:9b:ad:d5:16:13:a5:72:9a:4f:a4:
1d:5e:b7:24:2c:bc:a2:92:d7:85:5f:46:4d:c1:aa:
34:69:9d:80:c1:9e:5c:14:72:10:b6:a8:47:66:76:
c9:d3:ef:32:eb:97:19:f4:4b:24:43:97:60:ca:79:
cb:7c:41:f5:9d:c2:58:92:bd:2c:94:a8:56:50:2b:
2a:b7:f1:51:3c:90:56:cb:14:57:03:e0:43:f7:8a:
55:6b:37:6a:ba:4b:14:32:ea:f2:28:09:d0:72:5f:
1c:cc:e5:a0:c3:25:71:6b:fd:bd:f9:c8:fd:6d:b1:
a5:1e:c5:ba:ff:53:9f:91:0a:e4:03:5b:3d:73:3a:
60:06:16:37:26:78:e3:00:32:95:a0:18:57:37:21:
53:50:79:04:4a:c2:0e:7e:7e:33:28:0f:ef:2a:90:
34:64:c5:c5:52:8b:a6:cf:31:b4:3e:4a:cf:70:f5:
23:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:42:F7:51:65:05:F6:40:55:D7:64:7B:77:CD:52:DA:F0:78:BD:12
X509v3 Authority Key Identifier:
keyid:4D:5A:29:21:FB:EB:8A:44:8E:7A:E1:EC:5A:11:B8:AB:89:8D:22:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TVopIfvrikSOeuHsWhG4q4mNIv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/MkL3UWUF9kBV12R7d81S2vB4vRI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/TVopIfvrikSOeuHsWhG4q4mNIv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.231.152.0/24
Signature Algorithm: sha256WithRSAEncryption
98:1b:6b:27:9c:59:9d:1a:d2:bc:54:a7:02:7c:76:6b:00:98:
e4:ae:08:d9:6e:59:75:e6:8e:57:6f:aa:d9:57:d1:38:99:6a:
9c:9f:c4:a3:3e:fe:98:82:79:e2:98:1e:f6:d4:66:ce:f8:a4:
16:0c:f0:95:16:c8:5d:f2:25:78:c1:8f:ff:6f:ef:66:b5:e6:
9e:68:f2:bc:73:90:71:44:0a:bb:7e:0a:b7:72:f1:95:fc:f7:
92:8b:db:15:5a:06:a0:43:79:e5:c8:6b:8d:ec:cf:1c:38:a3:
b4:bd:2f:a5:93:fa:af:40:bf:61:14:7b:8f:cf:8b:f6:d8:fa:
1d:d5:71:51:bf:df:2d:c4:6d:0a:1e:0a:19:4c:07:81:50:da:
1b:a6:c3:d9:eb:51:48:4f:fb:eb:0b:76:76:2f:90:dc:5f:3d:
1c:09:e4:36:ba:59:ba:1e:0d:88:9d:96:35:10:36:bc:ff:a5:
6f:f6:89:9d:ec:61:b3:7f:c8:11:75:21:56:c0:21:d0:f5:c5:
de:c2:54:3f:bd:02:8d:2e:b2:ac:28:8e:22:b5:1d:a6:2f:6c:
fc:44:f5:c3:26:aa:a7:3d:96:00:f9:75:60:10:26:7c:f9:3d:
78:17:65:5b:17:55:5d:09:c9:8a:7e:28:0b:e8:b0:f6:62:c3:
0d:cd:f3:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:40 2024 by rpki-client on console-fra.rpki-client.org