Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/M2wZTHQLTfrTxjHVt9XG453qC1A.roa
File: M2wZTHQLTfrTxjHVt9XG453qC1A.roa (raw, json)
Hash identifier: bfA4FsjRnUAx9EuGBPuTUwBEkUAdRI1eAfMgoNFW21k=
Subject key identifier: 33:6C:19:4C:74:0B:4D:FA:D3:C6:31:D5:B7:D5:C6:E3:9D:EA:0B:50
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 018C7C3263E7255A49FD8FF5A016FBE8D22C
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/M2wZTHQLTfrTxjHVt9XG453qC1A.roa
Signing time: Mon 18 Dec 2023 09:12:06 +0000
ROA not before: Mon 18 Dec 2023 09:12:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 215945
IP address blocks: 81.180.96.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:7c:32:63:e7:25:5a:49:fd:8f:f5:a0:16:fb:e8:d2:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Dec 18 09:12:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=336c194c740b4dfad3c631d5b7d5c6e39dea0b50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:cb:0d:42:77:78:8e:eb:ad:05:fc:0f:9c:ff:
7d:94:fb:b0:a7:14:67:c8:11:e7:9a:50:d0:49:5e:
e8:12:81:6c:07:92:f1:f9:bd:fb:88:80:29:9a:cf:
d8:80:29:9d:4b:c2:da:08:4a:48:1e:92:62:96:ca:
ea:06:8c:c4:57:8d:0c:84:07:ed:4e:21:f0:67:0f:
20:47:6f:f7:27:91:db:15:7d:58:49:48:fc:09:4b:
b6:f8:6f:60:5d:85:85:83:53:e0:bc:e7:86:45:da:
24:7d:6c:cc:75:b4:ac:f8:15:72:b9:53:82:ad:d3:
7d:a6:53:00:e3:45:41:00:7e:1b:f6:fa:7f:58:82:
fe:c4:d7:5b:e1:9f:1e:84:88:d3:bf:45:e5:7c:65:
12:de:c3:dc:d9:bd:92:49:d7:bf:53:28:d7:a5:13:
59:b8:ec:5b:79:21:11:cc:8e:45:62:bb:1b:48:5a:
02:14:57:27:df:d4:9f:4f:41:b0:45:bf:51:2d:c1:
d9:84:8f:59:78:96:f3:30:61:2f:9d:b3:1e:ac:33:
72:e2:ce:69:b5:28:cb:82:4b:46:7c:a4:04:20:2a:
81:66:fd:2e:5b:94:3a:5f:24:dc:82:75:73:36:d8:
c0:d5:91:13:1e:f4:3a:fb:2e:46:c4:51:0e:00:cd:
a6:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:6C:19:4C:74:0B:4D:FA:D3:C6:31:D5:B7:D5:C6:E3:9D:EA:0B:50
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/M2wZTHQLTfrTxjHVt9XG453qC1A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.180.96.0/23
Signature Algorithm: sha256WithRSAEncryption
b0:61:b9:6f:35:3c:8e:53:e2:62:79:94:54:3d:dc:b6:ca:88:
e6:15:c7:ad:99:b7:e0:70:4c:2e:b0:da:42:2b:e3:8e:4b:88:
89:88:83:72:a3:20:b5:d9:13:74:49:74:fe:30:c1:bc:fd:92:
ed:f8:1d:33:21:5f:36:55:8e:7d:06:cc:78:d2:3a:c7:f3:1e:
47:49:84:9e:38:df:65:0a:8e:d4:3d:6f:80:6e:c3:8d:d3:87:
90:c2:42:5d:d8:0c:31:18:ef:69:49:d5:5f:2e:53:91:13:c1:
b0:ee:38:a6:6e:af:59:47:4d:42:90:4a:3c:a5:fd:9d:50:d2:
2f:72:0f:4c:80:a1:b1:63:ba:f6:ba:f2:51:fa:ee:f4:df:c3:
97:9e:e3:c0:7e:00:2e:45:d7:9b:9f:c1:9f:75:6d:10:52:52:
98:3c:a6:33:a0:57:d9:dc:53:32:4d:df:ca:12:84:fb:11:0b:
2f:17:1b:04:2e:d3:8c:43:d5:d5:97:f4:ae:43:ea:27:51:bf:
72:7b:19:67:cd:82:24:e8:88:7a:9c:ee:6f:84:d0:7c:5a:c1:
90:3b:92:26:df:59:6b:9e:6a:05:a4:60:92:d4:fc:fc:8e:7e:
e6:9d:f7:b1:80:0c:72:fe:b2:b0:8c:8d:c0:1d:19:8f:db:ca:
72:04:03:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:22 2024 by rpki-client on console-fra.rpki-client.org