Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/M5Q2BnyCYzDR6gSGrUMb7_qt9ww.roa
File: M5Q2BnyCYzDR6gSGrUMb7_qt9ww.roa (raw, json)
Hash identifier: EqgoZ5VMGYas1PedVIxHy0S5YPCBo13hNVXQXjyH1+I=
Subject key identifier: 33:94:36:06:7C:82:63:30:D1:EA:04:86:AD:43:1B:EF:FA:AD:F7:0C
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 01856F150BA50F36B704BC1AECE8EF639359
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/M5Q2BnyCYzDR6gSGrUMb7_qt9ww.roa
Signing time: Sun 01 Jan 2023 20:45:28 +0000
ROA not before: Sun 01 Jan 2023 20:45:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204972
IP address blocks: 80.96.23.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:15:0b:a5:0f:36:b7:04:bc:1a:ec:e8:ef:63:93:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 1 20:45:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=339436067c826330d1ea0486ad431beffaadf70c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c3:f6:e0:6e:7d:bb:33:33:c9:2e:12:52:29:
f7:31:16:18:38:df:93:c5:eb:f8:73:f3:8c:33:87:
2b:b4:17:45:46:b8:26:e5:01:5a:69:9b:db:53:d0:
10:d3:3a:15:b3:91:58:3e:e7:6a:5b:28:1c:95:06:
a1:e1:fa:4c:49:e4:83:bc:8d:c9:0a:a0:f7:c2:fd:
7c:7c:15:fa:26:fd:6c:6c:e4:de:c8:09:1b:4b:32:
bb:49:7d:40:7e:6c:7f:58:af:02:d1:83:7c:b3:cf:
27:be:2d:1c:ad:ea:ee:eb:88:73:ba:8c:85:5a:74:
08:12:da:41:8b:55:ef:b6:11:54:c9:35:80:4e:68:
a2:5c:6c:f3:c5:a3:32:47:8a:20:ac:39:2c:4c:89:
53:ed:d4:d6:16:b1:b0:a7:da:f9:e3:f6:b9:f8:7c:
7e:15:47:7e:37:f9:ad:53:40:c2:f9:ed:c2:e6:9e:
04:23:50:51:be:0a:cb:3a:b7:5a:b1:01:35:9a:6e:
13:6d:5d:e2:28:fb:db:65:1a:10:2a:f7:f3:64:77:
7f:84:c8:40:4f:ea:7d:60:10:d3:d0:7d:12:0d:c3:
3d:19:cf:cc:e4:23:e4:c8:0b:30:eb:df:ce:8f:c9:
0a:b3:89:a5:fc:a4:33:0c:4d:40:ac:15:83:ab:6f:
c2:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:94:36:06:7C:82:63:30:D1:EA:04:86:AD:43:1B:EF:FA:AD:F7:0C
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/M5Q2BnyCYzDR6gSGrUMb7_qt9ww.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.23.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:27:77:00:fe:f2:29:34:14:d9:3d:13:c0:74:61:c8:7a:af:
65:55:04:2f:56:e0:59:28:57:8e:bc:4e:9c:f8:eb:c4:00:18:
93:e3:f3:e8:d0:72:70:03:3b:d5:64:b2:41:92:b8:64:5a:b0:
11:96:00:58:85:0a:95:58:a7:ee:d3:e3:20:34:41:dd:af:2b:
ae:e9:c9:f5:fd:b7:ee:94:cc:c6:fa:78:63:20:d6:1e:ae:4a:
f2:17:5a:01:2e:1d:c1:c7:20:a5:2d:eb:0d:bf:1f:14:ff:8c:
a9:53:e1:77:e0:de:6c:34:58:19:56:92:17:c4:14:d4:8f:d7:
73:c4:fc:17:1a:2c:7c:e7:af:0c:38:1b:33:22:39:62:ee:ba:
11:23:dd:98:16:a8:d6:35:07:bf:d6:0e:15:04:aa:f0:a8:2f:
6c:3b:9e:a6:4f:8b:66:d0:d0:d4:6a:e3:9c:0a:11:27:9a:00:
d1:69:4f:45:29:43:3e:24:f1:7e:5d:17:36:14:41:98:8b:88:
5e:74:35:5e:9d:27:e7:4d:b1:c8:45:98:4b:a7:ee:13:dc:64:
8a:14:93:5a:61:be:6c:e5:87:39:52:9a:b7:61:bc:d2:29:d0:
f5:16:1c:d9:c8:63:03:48:65:93:db:12:e8:bd:17:60:b1:68:
59:99:f9:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:22 2024 by rpki-client on console-fra.rpki-client.org