Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Mbm1CA9miIXnSm0myrKn95-b5CU.roa
File: Mbm1CA9miIXnSm0myrKn95-b5CU.roa (raw, json)
Hash identifier: Vl4107u7Awx9oTD6mhJgXednu7YzWn5WGXDI4FVGoMw=
Subject key identifier: 31:B9:B5:08:0F:66:88:85:E7:4A:6D:26:CA:B2:A7:F7:9F:9B:E4:25
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018AC17A12041C4B64B0048D059F4B2D65A6
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Mbm1CA9miIXnSm0myrKn95-b5CU.roa
Signing time: Sat 23 Sep 2023 09:58:37 +0000
ROA not before: Sat 23 Sep 2023 09:58:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 163.5.209.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:c1:7a:12:04:1c:4b:64:b0:04:8d:05:9f:4b:2d:65:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Sep 23 09:58:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=31b9b5080f668885e74a6d26cab2a7f79f9be425
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ac:e8:41:8f:3a:82:73:64:61:6a:f9:04:4d:
0f:7c:f0:1d:35:61:a3:70:01:1e:3e:7f:62:1e:73:
be:70:c0:a2:e7:a8:f6:15:52:9d:5a:2e:41:41:13:
48:3e:13:be:5f:36:82:48:65:8b:c6:05:98:b9:e2:
8d:c0:02:b9:a6:e9:ec:91:25:22:a2:34:c3:c7:a5:
e6:53:a0:e0:cf:a3:3c:de:af:e5:83:b6:dc:4d:48:
fa:5d:39:6b:58:9a:cd:42:ea:a6:00:dd:31:0f:64:
ba:d6:96:bc:80:bc:0a:a3:8a:17:58:25:c8:08:66:
16:f7:f1:a0:a1:92:50:5c:0b:3b:29:b5:84:dd:6a:
f0:84:0e:e3:84:b1:07:2f:86:14:4f:ae:b1:00:21:
e4:fa:64:d1:e2:87:d7:78:16:16:fc:82:7b:96:76:
f5:be:40:45:ef:0e:d9:e3:c8:65:f9:56:aa:84:12:
d7:1b:95:1d:d6:cc:f2:a0:a9:12:6d:8e:1a:f7:5e:
f4:57:94:e3:84:90:44:d0:fb:a5:95:d3:a1:ac:4c:
5f:f6:87:fc:6f:5f:86:9a:2f:77:ce:af:19:d5:5a:
9f:13:5c:6e:04:d4:0c:80:4e:8c:1e:cb:ef:25:b3:
cd:fc:9a:d1:be:37:a0:42:82:5e:16:74:e0:52:22:
ac:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:B9:B5:08:0F:66:88:85:E7:4A:6D:26:CA:B2:A7:F7:9F:9B:E4:25
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/Mbm1CA9miIXnSm0myrKn95-b5CU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.209.0/24
Signature Algorithm: sha256WithRSAEncryption
22:e4:6d:31:11:4d:4b:91:fd:91:f6:d9:c0:f6:70:d6:6b:06:
b9:dd:46:27:b1:df:3e:6b:07:9f:3a:b6:06:28:c8:2c:d5:9f:
49:66:13:a5:70:a6:c6:eb:ac:db:3a:7b:6c:22:83:02:c2:e3:
4f:a1:73:81:9c:75:a1:80:2e:20:1c:97:0d:f6:66:80:20:34:
24:de:0b:1c:9d:d6:fa:ff:06:3c:5b:3f:a6:46:48:3e:28:72:
10:c3:f8:82:12:00:34:0f:8c:65:3b:fd:5e:5f:04:84:a2:3d:
24:43:e8:5a:9a:04:fc:f0:8a:cd:6a:28:a2:58:67:74:4a:17:
a6:9f:e4:71:70:f5:a0:03:e0:32:03:c6:21:7c:77:92:68:6d:
88:dd:31:50:56:46:5a:38:07:fd:59:3e:01:17:9b:ef:09:4a:
3d:f9:9b:83:42:73:04:e1:f0:c3:3c:64:0e:73:06:55:e1:9c:
ed:a5:2d:e7:02:f9:37:b4:30:ce:25:19:79:0a:9d:70:59:0f:
5f:d4:83:50:34:1f:cc:5f:73:ce:59:d9:9b:b6:16:bb:bb:76:
8f:60:ca:50:23:d7:3f:8c:f2:25:93:7c:73:9c:49:87:20:85:
0d:bb:4c:f7:78:4f:20:a4:4b:03:de:16:74:60:8f:6b:01:1c:
b7:7b:7c:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 25 18:25:33 2023 by rpki-client on console-ams.rpki-client.org