Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/0a4c1e-1fc5-407a-bd08-0717da053585/1/MvcAkLyASbcLtgBMctxqOXS-QAo.roa
File: MvcAkLyASbcLtgBMctxqOXS-QAo.roa (raw, json)
Hash identifier: oSMu8U1mNaQXxR+I4HBh3X1PlH4sVpIV3wyCUZQfJQQ=
Subject key identifier: 32:F7:00:90:BC:80:49:B7:0B:B6:00:4C:72:DC:6A:39:74:BE:40:0A
Certificate issuer: /CN=9b792de70f33b82882542bef23b18da97538ca04
Certificate serial: 01856BE5AAF3720CE3AB52F1B3B68C68A671
Authority key identifier: 9B:79:2D:E7:0F:33:B8:28:82:54:2B:EF:23:B1:8D:A9:75:38:CA:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m3kt5w8zuCiCVCvvI7GNqXU4ygQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/0a4c1e-1fc5-407a-bd08-0717da053585/1/MvcAkLyASbcLtgBMctxqOXS-QAo.roa
Signing time: Sun 01 Jan 2023 05:54:51 +0000
ROA not before: Sun 01 Jan 2023 05:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207495
IP address blocks: 185.228.52.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:e5:aa:f3:72:0c:e3:ab:52:f1:b3:b6:8c:68:a6:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b792de70f33b82882542bef23b18da97538ca04
Validity
Not Before: Jan 1 05:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=32f70090bc8049b70bb6004c72dc6a3974be400a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:63:8f:ab:dc:cd:71:c4:c2:1b:0b:19:80:ba:
57:25:4c:db:7b:ce:15:4b:81:31:92:a9:c3:86:58:
1c:49:a5:c0:5c:de:98:66:81:08:20:09:4b:48:b1:
27:62:7a:e8:f6:52:73:17:ca:e6:bf:17:c9:63:2d:
ae:80:11:69:b8:3e:49:02:b6:07:08:de:3c:14:b1:
ca:c6:ef:06:f4:96:90:3f:6e:62:68:29:b0:94:b6:
00:05:83:78:9a:24:b7:ff:69:d5:52:af:49:9d:a0:
39:da:17:1b:ca:7f:9e:8e:f2:76:70:c8:36:59:ea:
f3:6c:c5:22:e6:5d:4a:38:52:ac:65:e4:3e:55:f0:
1d:bd:ff:24:f8:47:f5:b7:d2:6c:57:b6:44:48:3d:
eb:da:05:d4:55:d8:86:6a:98:ba:1f:7e:39:88:3b:
a4:44:87:3f:6c:94:54:49:a4:b1:32:a8:38:9e:03:
9a:a4:31:eb:5c:53:43:93:73:83:b0:b5:1c:e8:d5:
81:0f:bc:d5:67:50:d1:41:ab:a6:4b:df:7a:af:24:
e9:a9:6a:29:ff:86:17:76:27:77:f1:ff:15:b4:79:
57:9b:e0:3f:83:41:d0:ce:bb:ec:83:40:48:25:ad:
59:40:6c:b4:af:30:10:3b:f3:bc:1d:de:09:ec:c0:
43:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:F7:00:90:BC:80:49:B7:0B:B6:00:4C:72:DC:6A:39:74:BE:40:0A
X509v3 Authority Key Identifier:
keyid:9B:79:2D:E7:0F:33:B8:28:82:54:2B:EF:23:B1:8D:A9:75:38:CA:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m3kt5w8zuCiCVCvvI7GNqXU4ygQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/0a4c1e-1fc5-407a-bd08-0717da053585/1/MvcAkLyASbcLtgBMctxqOXS-QAo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/0a4c1e-1fc5-407a-bd08-0717da053585/1/m3kt5w8zuCiCVCvvI7GNqXU4ygQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.52.0/22
Signature Algorithm: sha256WithRSAEncryption
7a:5c:15:a2:04:fb:40:dd:60:fa:30:ea:58:cd:43:30:76:dd:
37:a8:62:99:8f:44:df:12:f3:af:55:e9:1d:0e:4f:b4:3f:aa:
68:6f:09:3a:be:2b:8a:41:cc:d9:54:de:b4:f4:54:98:05:83:
cd:65:6d:8f:5e:06:09:b7:8c:42:05:b1:c7:10:2c:f4:70:68:
20:ed:43:24:83:86:84:7c:ad:11:96:19:7a:ee:1f:d2:a6:93:
cf:16:55:0c:6c:d4:87:51:31:36:30:43:0a:dc:f0:5b:fa:23:
d9:3d:01:73:a4:00:50:ac:90:35:b0:0b:73:56:aa:a4:c5:be:
b4:d1:2a:20:e0:50:60:90:0c:72:df:48:dc:e7:7a:0e:ce:df:
55:8a:f1:06:71:45:75:e7:38:bd:35:df:59:e9:1c:3a:fe:db:
a8:c3:6e:70:42:de:b1:db:d9:79:f1:e3:09:86:09:a4:ab:b8:
ae:6b:1d:bb:e9:4a:ea:0c:9c:84:f6:16:dc:9f:51:bf:4c:15:
a1:97:ec:d4:bd:67:01:10:4f:41:55:30:eb:ed:3a:f5:2a:56:
15:bf:63:5a:ce:1f:dd:90:7c:8e:b4:e0:49:cc:be:a5:1f:15:
81:74:0d:51:73:8f:b6:4a:36:0c:5c:1d:1d:9b:27:f3:99:93:
32:a7:a1:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:49 2024 by rpki-client on console-ams.rpki-client.org