Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/MmPCGKWnDH0XaWjz6-7qO9k5QpU.roa
File: MmPCGKWnDH0XaWjz6-7qO9k5QpU.roa (raw, json)
Hash identifier: r9qSvgusE22auGPse/Ba2vPiefmJqC2YpFu3GgknouY=
Subject key identifier: 32:63:C2:18:A5:A7:0C:7D:17:69:68:F3:EB:EE:EA:3B:D9:39:42:95
Certificate issuer: /CN=52dc9c218b510c07bc6659b09fbd32afe68abfd2
Certificate serial: 018C86F314310CA11E70036CDC2CFB02FA9C
Authority key identifier: 52:DC:9C:21:8B:51:0C:07:BC:66:59:B0:9F:BD:32:AF:E6:8A:BF:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UtycIYtRDAe8Zlmwn70yr-aKv9I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/MmPCGKWnDH0XaWjz6-7qO9k5QpU.roa
Signing time: Wed 20 Dec 2023 11:18:46 +0000
ROA not before: Wed 20 Dec 2023 11:18:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206150
IP address blocks: 195.191.144.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:86:f3:14:31:0c:a1:1e:70:03:6c:dc:2c:fb:02:fa:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52dc9c218b510c07bc6659b09fbd32afe68abfd2
Validity
Not Before: Dec 20 11:18:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3263c218a5a70c7d176968f3ebeeea3bd9394295
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:14:b5:a4:fc:e9:d3:c0:ba:f3:12:d5:b1:0f:
65:29:5b:0f:1d:ba:40:79:b6:4d:02:41:ba:3e:4a:
ba:44:68:81:c2:99:a2:6e:27:70:69:bf:7b:3e:ed:
34:7e:16:2f:38:dd:83:e9:09:6e:29:8c:66:de:03:
f8:fd:b1:89:25:24:b8:b6:3a:60:dd:47:c9:40:52:
09:46:49:c9:92:c4:24:5e:4c:57:fa:bb:34:6d:fc:
52:78:da:4a:b5:f1:00:7f:8c:99:d6:ec:f4:8e:bb:
e2:42:77:fa:20:7a:51:57:ea:07:e7:96:ca:1d:e8:
5b:ca:47:53:61:69:ad:b3:b0:f9:47:cf:47:bb:54:
9e:79:6e:37:bc:d3:e3:60:69:7f:c2:dd:19:41:95:
d0:98:95:66:a0:0b:54:69:1d:0b:82:3c:ed:c6:19:
c6:42:cd:07:65:1d:4b:17:68:ac:fe:c3:14:81:cf:
5c:98:06:af:ac:7e:20:20:5a:24:9f:24:bf:b8:79:
d6:fe:b1:8f:8b:93:5c:d2:2a:a4:3d:35:55:b3:bb:
1f:d4:63:33:67:8b:da:0a:b2:d9:68:9a:c9:b3:6d:
b7:e6:12:04:b2:13:a8:9e:56:bc:e4:7c:84:d3:96:
21:6d:2e:45:1c:fe:10:e2:20:db:be:96:12:98:f2:
63:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:63:C2:18:A5:A7:0C:7D:17:69:68:F3:EB:EE:EA:3B:D9:39:42:95
X509v3 Authority Key Identifier:
keyid:52:DC:9C:21:8B:51:0C:07:BC:66:59:B0:9F:BD:32:AF:E6:8A:BF:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UtycIYtRDAe8Zlmwn70yr-aKv9I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/MmPCGKWnDH0XaWjz6-7qO9k5QpU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/UtycIYtRDAe8Zlmwn70yr-aKv9I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.191.144.0/24
Signature Algorithm: sha256WithRSAEncryption
50:8b:75:b2:33:e0:37:ed:10:29:44:bb:c0:7b:33:b6:a7:07:
8b:26:54:33:e0:33:a3:e5:bb:61:19:62:29:88:90:ba:ac:a5:
5a:e0:56:83:f8:bd:bc:94:7f:01:fd:51:de:62:da:cf:5e:a6:
ea:91:09:ab:e6:60:c2:e4:8d:d3:c8:b7:3b:05:93:a8:ce:9b:
db:68:09:f8:ce:b9:4a:0e:6d:32:b1:f7:56:be:2b:00:d7:96:
30:1f:e9:91:d4:a2:47:9d:c0:35:01:4b:01:4b:8f:6b:0f:4f:
c6:f0:6b:c7:de:17:c7:76:af:1b:e7:78:49:14:b8:d6:c1:42:
7a:61:13:fe:e1:29:69:4c:82:77:69:24:82:71:aa:43:55:4f:
21:fe:ad:54:c9:0e:11:a7:a0:95:f4:3b:b4:ca:7f:18:3e:5e:
18:17:b8:24:48:28:86:62:6f:7b:87:11:0a:10:ee:4d:c3:6d:
d4:51:3f:4a:31:e4:c8:e9:f1:3c:e4:2e:44:56:e3:d8:3d:5c:
a6:98:0f:9a:44:c0:41:86:89:ca:0f:b1:d2:34:3c:82:3e:f5:
4a:12:fd:1a:42:6b:05:d5:3d:2a:f9:f2:26:b0:1e:59:b8:f3:
86:df:ad:79:08:ee:29:5a:99:1c:bd:95:23:37:f3:ff:9c:64:
9c:04:f3:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:12 2024 by rpki-client on console-ams.rpki-client.org