Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/MQvL8wDO0o373hFaTV5nRYR35Fw.roa
File: MQvL8wDO0o373hFaTV5nRYR35Fw.roa (raw, json)
Hash identifier: suXyZg3qiX/ix7TM2u6OyOP7VReJ49u0LHJLjDXItco=
Subject key identifier: 31:0B:CB:F3:00:CE:D2:8D:FB:DE:11:5A:4D:5E:67:45:84:77:E4:5C
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 018B6141AE3A148E379DCCAF42B3C20D9B60
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/MQvL8wDO0o373hFaTV5nRYR35Fw.roa
Signing time: Tue 24 Oct 2023 10:36:16 +0000
ROA not before: Tue 24 Oct 2023 10:36:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212238
IP address blocks: 176.97.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:61:41:ae:3a:14:8e:37:9d:cc:af:42:b3:c2:0d:9b:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Oct 24 10:36:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=310bcbf300ced28dfbde115a4d5e67458477e45c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:8e:ce:43:3c:a1:52:a3:44:17:89:d3:c6:44:
58:f9:be:c0:15:46:6d:8c:af:b1:40:90:ff:a1:71:
12:d8:54:31:20:5d:0b:e8:ae:88:21:86:6e:de:b3:
53:9b:1b:c0:8a:4f:33:82:7a:23:9e:b6:35:90:96:
91:d6:fc:01:c1:0c:a3:11:5f:42:a9:b7:24:15:71:
ee:93:92:b0:79:7b:bc:56:08:f5:6b:29:74:d6:17:
5c:e8:7c:83:0a:6c:53:31:1b:0d:b0:48:f1:4a:cc:
fc:48:ee:d0:73:d9:e8:04:57:17:6d:7b:54:ee:5e:
4d:fd:10:2f:04:4c:a9:47:7f:a8:4a:05:e7:4b:c3:
c2:36:a2:15:17:a7:fc:ae:8e:1b:28:30:52:57:1e:
40:40:ba:6c:bc:50:c8:f1:33:a8:5f:fa:76:4b:f9:
93:53:35:f5:fd:bb:07:26:6e:ab:14:91:12:45:cb:
18:e1:ae:46:b4:44:dc:6c:36:a7:42:84:b0:6b:1f:
b6:9b:2c:c6:64:e4:8d:47:fe:68:65:18:03:aa:54:
e9:d6:60:2b:48:f7:67:d4:ee:f5:a7:0f:42:af:d1:
80:b6:6b:25:71:fe:6a:b1:39:a8:dc:2b:3f:89:3a:
69:e4:9d:d9:74:13:ab:02:1a:85:93:f0:c2:a5:e9:
02:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:0B:CB:F3:00:CE:D2:8D:FB:DE:11:5A:4D:5E:67:45:84:77:E4:5C
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/MQvL8wDO0o373hFaTV5nRYR35Fw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.97.205.0/24
Signature Algorithm: sha256WithRSAEncryption
13:d7:8d:d6:f2:e1:e8:89:de:30:cd:6a:2b:73:f1:14:dc:5c:
80:74:45:73:7d:52:6e:0d:38:e0:bb:d5:1e:69:8d:60:35:62:
42:dd:d3:8b:90:64:77:f6:f2:66:e7:a0:9b:c6:90:f6:70:f6:
6d:b5:4d:cd:d9:32:99:ff:86:55:6e:f7:b1:f9:d1:db:5e:c0:
7b:71:98:f1:3f:f9:76:7d:07:30:13:47:5f:de:8d:b8:7a:32:
fa:50:c8:e7:14:25:cd:a8:92:ab:de:dd:7d:bd:b4:51:fa:9d:
c6:d1:2b:16:1b:72:70:36:eb:df:ea:85:5a:39:8d:50:f2:db:
12:f5:5a:9b:a5:c7:11:38:7a:0f:25:7d:10:02:90:4c:e2:ae:
3b:4c:2a:ac:b0:c1:bb:40:c7:3d:68:b4:67:fd:c5:8b:51:57:
c6:98:de:36:fb:50:95:37:26:db:f8:cd:e6:dc:ef:71:33:77:
62:09:89:26:25:48:30:28:1c:f5:c8:76:f4:f9:72:17:a2:ef:
6b:ae:17:ca:0e:f5:20:7f:68:00:f2:31:a7:67:e2:98:af:7d:
81:e0:17:b1:5f:73:50:26:b2:1c:e0:40:d7:56:99:9b:59:be:
d2:0f:30:2a:ed:9a:ef:45:a3:c8:c2:ee:f6:04:fb:5c:3a:ab:
2a:f6:bb:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:06 2024 by rpki-client on console-ams.rpki-client.org