Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/mdfkH_TW3UowkQaE3ZgFwKBCws8.roa
File: mdfkH_TW3UowkQaE3ZgFwKBCws8.roa (raw, json)
Hash identifier: XYyvGig/bXRXYqj+B4Fy9QmVkeVyYTikQy6gfRn20Io=
Subject key identifier: 99:D7:E4:1F:F4:D6:DD:4A:30:91:06:84:DD:98:05:C0:A0:42:C2:CF
Certificate issuer: /CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Certificate serial: 01896A9C7840988AF4C0843B7F75A77C25FF
Authority key identifier: F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/mdfkH_TW3UowkQaE3ZgFwKBCws8.roa
Signing time: Tue 18 Jul 2023 20:06:26 +0000
ROA not before: Tue 18 Jul 2023 20:06:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212238
IP address blocks: 185.93.221.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:6a:9c:78:40:98:8a:f4:c0:84:3b:7f:75:a7:7c:25:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Validity
Not Before: Jul 18 20:06:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=99d7e41ff4d6dd4a30910684dd9805c0a042c2cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d6:64:2e:bb:6e:ad:e9:fd:bd:2c:99:08:60:
d0:6b:cc:ac:64:b6:56:ca:9f:c3:dd:cf:1f:66:23:
5d:00:2a:0a:22:29:44:5c:30:20:a0:d9:d8:5e:7a:
6b:f0:85:27:a3:6a:9d:ac:2f:eb:7b:e1:17:6c:a1:
d5:bd:5c:a1:82:61:8f:14:7d:e4:0e:ea:d0:df:6e:
ce:a7:26:44:65:6e:97:8b:22:0d:a3:9d:2b:71:ab:
7d:a5:8c:62:0a:5a:67:92:6d:47:fc:4d:ce:e8:46:
18:cd:42:1d:58:ae:1d:f3:5d:a9:57:c5:d6:4a:87:
e9:6f:b8:25:6f:d2:f9:15:fe:5d:78:1f:5b:ec:e3:
29:21:51:b9:90:1f:aa:08:ed:6a:83:47:57:80:45:
1e:82:31:ae:39:ea:88:0f:97:ce:c5:f7:7f:aa:ba:
73:3f:64:62:56:49:4a:71:76:d1:27:e6:d0:bf:50:
69:b5:b0:ac:f7:b0:c6:95:42:9b:25:19:41:b3:fe:
88:bb:44:a9:90:d0:b6:74:69:66:0c:26:2a:e9:5b:
ab:22:fe:25:dc:5c:a8:55:ff:12:0c:15:eb:a5:b9:
9f:9a:c4:e4:3f:cb:83:62:50:4c:e5:5c:36:f0:f4:
8e:00:4a:cf:cf:19:e0:5f:35:4e:70:eb:d9:c9:cd:
b3:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:D7:E4:1F:F4:D6:DD:4A:30:91:06:84:DD:98:05:C0:A0:42:C2:CF
X509v3 Authority Key Identifier:
keyid:F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/mdfkH_TW3UowkQaE3ZgFwKBCws8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/9NCKHhy8kJJU6ea5yTn9haJoseE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.93.221.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:96:e7:1f:9f:6f:51:c8:33:4b:45:15:5d:d3:7d:1f:49:98:
b5:71:31:34:5f:82:f5:fd:d1:4e:58:8f:dd:ff:71:c9:82:fc:
3d:b3:34:64:8b:af:60:d1:ab:fc:ec:2f:5c:e7:6a:71:d0:0d:
8d:2d:4c:ab:71:79:29:87:c4:b4:1f:cc:43:f8:ae:03:b9:f9:
80:08:ce:0e:45:73:30:fb:4a:47:b5:02:98:00:9d:95:f5:eb:
cc:23:ef:ba:47:6c:22:a3:31:ab:25:60:91:03:88:6e:b4:0e:
d5:c2:a4:a6:88:7c:d8:eb:69:c3:cf:30:f3:b8:2f:f0:59:0e:
41:8e:ad:40:af:8e:5d:9a:02:f4:1c:ed:46:2e:d8:83:ce:1b:
95:b0:b9:86:f1:b8:25:81:f9:09:df:f0:47:50:b5:c6:04:68:
48:48:3e:49:0e:e8:fe:23:e7:56:c1:68:11:7e:26:5d:30:c7:
51:e7:19:19:c9:9a:5d:87:50:0d:41:43:61:bc:af:a5:ef:58:
3f:67:14:8a:54:b3:89:2f:54:30:99:c7:7c:4b:d3:15:8e:01:
0a:b3:ee:ab:6c:78:ca:39:0b:b1:31:b6:ca:54:87:7c:dd:ca:
73:d2:ff:92:7f:2e:e3:14:61:f2:6e:b7:d5:44:8e:a5:ff:d1:
47:e5:a3:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:29:27 2024 by rpki-client on console-ams.rpki-client.org