Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/58b8e2-1215-4bb0-96df-2f08380ae6c7/1/MCAqFaJ8OGTGsVmgf5rjiBS6SpE.roa
File: MCAqFaJ8OGTGsVmgf5rjiBS6SpE.roa (raw, json)
Hash identifier: dbk3VVpN+hAP3uN2veZpIhZlSoLtbzlGfl2jrVm/X/M=
Subject key identifier: 30:20:2A:15:A2:7C:38:64:C6:B1:59:A0:7F:9A:E3:88:14:BA:4A:91
Certificate issuer: /CN=f0a32d2129a386c9a0afdbb915e0dbf130ba70d5
Certificate serial: 01898EFF0EB755C6BDF9443EC8ADF8959886
Authority key identifier: F0:A3:2D:21:29:A3:86:C9:A0:AF:DB:B9:15:E0:DB:F1:30:BA:70:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8KMtISmjhsmgr9u5FeDb8TC6cNU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/58b8e2-1215-4bb0-96df-2f08380ae6c7/1/MCAqFaJ8OGTGsVmgf5rjiBS6SpE.roa
Signing time: Tue 25 Jul 2023 21:40:27 +0000
ROA not before: Tue 25 Jul 2023 21:40:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207829
IP address blocks: 91.198.170.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 30 Oct 2023 15:11:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:8e:ff:0e:b7:55:c6:bd:f9:44:3e:c8:ad:f8:95:98:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0a32d2129a386c9a0afdbb915e0dbf130ba70d5
Validity
Not Before: Jul 25 21:40:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=30202a15a27c3864c6b159a07f9ae38814ba4a91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:c4:11:ef:c8:9e:37:41:66:84:7d:69:c5:35:
c9:4d:ef:d4:55:f4:5f:ff:0a:5f:c5:f3:ad:dc:cf:
ff:01:c8:83:d0:fc:49:2e:0d:42:50:64:a7:5b:59:
c0:16:a5:0b:de:87:91:9a:16:06:a3:a2:6b:d9:cf:
01:05:2a:8a:cc:dc:66:08:1f:7c:96:34:1a:5a:e9:
3a:02:ab:8b:54:bd:26:d4:21:55:59:88:eb:6f:55:
7e:63:fa:a0:2b:50:1c:96:36:2b:3c:d8:56:e7:7c:
15:c1:bf:5c:38:81:1d:f7:36:f7:67:69:4a:b9:04:
73:d0:a0:7b:2e:66:0e:b3:d5:26:5a:01:ef:f8:a2:
a6:18:7d:b4:5b:de:96:fd:56:45:65:79:71:31:13:
4c:fe:d0:9f:ed:95:39:62:47:40:90:58:d5:0f:81:
7e:89:08:57:34:93:86:65:a0:a0:84:3d:6f:e7:1e:
1c:8f:11:fd:85:1f:b2:6d:dc:2f:00:52:db:e0:a7:
e9:a0:ae:1b:d5:0e:f1:88:30:b2:ce:d4:77:88:1e:
4b:da:5a:c6:fb:60:89:5c:94:e1:8d:a1:18:11:34:
08:46:d3:f4:66:99:ea:6d:a4:ce:97:11:8f:23:29:
a6:a1:bf:00:7f:04:dd:e8:1d:c7:51:cd:03:d5:34:
af:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:20:2A:15:A2:7C:38:64:C6:B1:59:A0:7F:9A:E3:88:14:BA:4A:91
X509v3 Authority Key Identifier:
keyid:F0:A3:2D:21:29:A3:86:C9:A0:AF:DB:B9:15:E0:DB:F1:30:BA:70:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8KMtISmjhsmgr9u5FeDb8TC6cNU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/58b8e2-1215-4bb0-96df-2f08380ae6c7/1/MCAqFaJ8OGTGsVmgf5rjiBS6SpE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/58b8e2-1215-4bb0-96df-2f08380ae6c7/1/8KMtISmjhsmgr9u5FeDb8TC6cNU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.170.0/23
Signature Algorithm: sha256WithRSAEncryption
41:6e:97:3d:92:a4:95:f4:14:19:f9:0f:f1:fd:e1:82:b7:63:
92:e1:29:85:6d:f2:4b:a8:22:75:e6:3b:ba:fc:f9:37:f1:0a:
3a:8d:f1:6c:13:1f:15:b3:7e:6f:5d:06:bc:bb:d0:c8:6b:ab:
49:93:15:2d:24:46:df:d3:36:4e:02:8e:79:1e:f8:de:a8:27:
86:74:86:3c:e2:0e:0f:5f:5b:26:b3:18:cc:42:ad:db:e5:e2:
5b:73:8f:de:1d:b5:44:a3:dd:e0:1c:47:d0:be:d8:cc:66:34:
b4:a0:05:31:1a:b7:fc:5b:18:9e:42:5a:99:64:a6:11:ec:c8:
32:6f:43:3b:4b:07:34:9d:f5:c4:06:d3:f1:b9:02:1a:07:cc:
bc:f6:68:f8:19:97:05:51:ea:6d:ec:f0:44:fa:d6:88:d4:23:
c7:74:0d:9c:dd:e7:3b:db:65:6b:b7:4b:9d:55:88:d1:c2:d9:
b6:b3:53:cf:56:49:b2:d3:45:44:de:62:8c:33:27:19:1b:86:
21:a7:62:d2:22:e9:5a:cc:1c:f1:d0:bb:d9:df:24:d0:e8:21:
06:81:76:31:6e:fe:58:2f:11:71:65:9d:c1:6e:3f:c4:e2:fa:
ce:e5:2c:ae:ad:6b:c2:87:c8:6e:65:1a:96:b8:46:64:a0:ce:
9c:8a:b9:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:28 2024 by rpki-client on console-ams.rpki-client.org