Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/9514ed-276e-4aba-897e-a4410e10b6f5/1/MVdZKCIP-7rywdVrVR1TgY1KY8U.roa
File: MVdZKCIP-7rywdVrVR1TgY1KY8U.roa (raw, json)
Hash identifier: ap5BUkP6q7RIItw1yfnWFeD4dAP2QddCgSZshqdSFNc=
Subject key identifier: 31:57:59:28:22:0F:FB:BA:F2:C1:D5:6B:55:1D:53:81:8D:4A:63:C5
Certificate issuer: /CN=f75d8b52815f3f2613e948992ec9fe660f6949b4
Certificate serial: 018E81325CE1F60A4D332820AE8D98D5BDF6
Authority key identifier: F7:5D:8B:52:81:5F:3F:26:13:E9:48:99:2E:C9:FE:66:0F:69:49:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/912LUoFfPyYT6UiZLsn-Zg9pSbQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/9514ed-276e-4aba-897e-a4410e10b6f5/1/MVdZKCIP-7rywdVrVR1TgY1KY8U.roa
Signing time: Wed 27 Mar 2024 18:35:45 +0000
ROA not before: Wed 27 Mar 2024 18:35:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213220
IP address blocks: 2a11:5a42::/32 maxlen: 32
2a12:7304::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Apr 2024 19:22:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:81:32:5c:e1:f6:0a:4d:33:28:20:ae:8d:98:d5:bd:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f75d8b52815f3f2613e948992ec9fe660f6949b4
Validity
Not Before: Mar 27 18:35:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=31575928220ffbbaf2c1d56b551d53818d4a63c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:c0:01:df:a4:79:bf:81:0b:ef:6c:b3:1c:d7:
b2:c6:98:31:c5:43:68:54:44:d2:00:3b:fe:a2:cd:
f5:53:26:a6:bc:0a:f6:2a:6b:ae:48:9e:d7:9e:d8:
a7:01:7a:d5:31:fa:32:28:2b:56:a1:0f:2b:fb:d3:
86:63:c8:f5:1f:fd:c9:c3:3f:0c:01:9b:b3:c4:05:
40:2c:57:d7:c4:f0:86:06:77:5d:79:1c:ec:67:bb:
22:c7:57:52:8b:25:56:dc:6c:b2:de:27:02:f6:55:
08:44:61:22:7b:5f:32:c7:e2:ec:70:77:0c:c6:eb:
c4:8a:c1:38:1e:60:87:8a:f0:b1:2c:13:40:7c:b8:
18:d4:96:35:6d:38:7a:80:fb:ad:67:25:87:d6:dd:
ef:4d:05:85:ad:a0:27:51:f8:ab:8f:1e:51:16:b4:
7e:33:0c:2c:8c:40:61:a9:b4:2e:0b:9d:77:23:52:
9e:3c:f5:26:7e:39:82:98:b9:7e:4c:7c:0f:fc:f1:
ce:dd:59:f8:54:8c:45:c6:19:21:63:d7:bf:ea:50:
42:44:f1:66:04:a4:21:9f:8a:6c:74:8c:ae:f9:64:
81:d8:03:f7:e4:2d:43:96:9e:96:22:3e:f4:b1:8d:
62:80:ec:04:13:cd:aa:90:0c:23:35:3a:f9:eb:55:
8c:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:57:59:28:22:0F:FB:BA:F2:C1:D5:6B:55:1D:53:81:8D:4A:63:C5
X509v3 Authority Key Identifier:
keyid:F7:5D:8B:52:81:5F:3F:26:13:E9:48:99:2E:C9:FE:66:0F:69:49:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/912LUoFfPyYT6UiZLsn-Zg9pSbQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9514ed-276e-4aba-897e-a4410e10b6f5/1/MVdZKCIP-7rywdVrVR1TgY1KY8U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9514ed-276e-4aba-897e-a4410e10b6f5/1/912LUoFfPyYT6UiZLsn-Zg9pSbQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:5a42::/32
2a12:7304::/32
Signature Algorithm: sha256WithRSAEncryption
14:2a:2a:68:98:3a:30:fe:a9:a1:6f:8f:19:84:0a:3c:38:41:
7c:bf:56:bf:9f:55:3e:71:ed:89:0c:64:3c:b8:34:2a:01:b3:
e6:09:4e:c0:e0:1c:c7:3d:ae:37:04:fd:6f:1c:9e:85:df:05:
96:65:38:be:06:67:c4:cb:0d:d5:38:24:59:2e:7d:fe:4d:29:
99:7a:85:1e:c5:2c:27:28:12:c6:18:09:0a:75:21:99:28:a6:
57:27:21:2a:e2:94:c2:c3:a5:c9:63:7f:00:74:95:5e:ab:8b:
ff:e4:cc:40:e3:fa:e5:69:d5:a5:99:2c:6b:87:59:fc:0e:be:
e4:90:8a:30:bd:9b:be:fa:c4:2e:21:64:51:45:2e:60:83:23:
ec:e1:31:6c:65:4a:88:47:76:48:b3:fd:fc:34:a1:fe:b2:bd:
c1:7a:78:2f:6a:db:63:75:0c:28:b4:31:7f:67:36:c8:1a:8c:
fe:16:31:ac:de:70:7e:62:b3:e9:10:94:ab:63:c2:a4:7e:2b:
c1:0c:e5:64:8a:05:20:1a:37:55:68:f2:17:eb:04:14:f6:e6:
1c:e2:02:80:2f:ee:0c:ff:fb:83:cc:db:d2:63:31:81:0a:b4:
88:77:87:e7:ee:07:f3:22:fe:ed:99:4a:a9:fa:08:ab:1f:9c:
7b:3d:98:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 2 20:59:17 2024 by rpki-client on console-fra.rpki-client.org