Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/2fb593-43f5-4db7-9819-0f9d57a5d4fa/1/MyiBUoPrXjDSgVsnGroIpeNMBwI.roa
File: MyiBUoPrXjDSgVsnGroIpeNMBwI.roa (raw, json)
Hash identifier: 6oUKHScvBQggBevsF+9D5RXLyVB8rfsiS34PCKaVOKA=
Subject key identifier: 33:28:81:52:83:EB:5E:30:D2:81:5B:27:1A:BA:08:A5:E3:4C:07:02
Certificate issuer: /CN=d4c3b12c8d635190ec928437bbd6cb0e8c38f9a9
Certificate serial: 0185708C9357890291FF68128A8AB4D95316
Authority key identifier: D4:C3:B1:2C:8D:63:51:90:EC:92:84:37:BB:D6:CB:0E:8C:38:F9:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1MOxLI1jUZDskoQ3u9bLDow4-ak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/2fb593-43f5-4db7-9819-0f9d57a5d4fa/1/MyiBUoPrXjDSgVsnGroIpeNMBwI.roa
Signing time: Mon 02 Jan 2023 03:35:39 +0000
ROA not before: Mon 02 Jan 2023 03:35:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59745
IP address blocks: 80.66.96.0/20 maxlen: 24
185.198.200.0/22 maxlen: 24
2a02:340::/32 maxlen: 32
2a0a:8ec0::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 24 Apr 2023 10:17:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:93:57:89:02:91:ff:68:12:8a:8a:b4:d9:53:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4c3b12c8d635190ec928437bbd6cb0e8c38f9a9
Validity
Not Before: Jan 2 03:35:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3328815283eb5e30d2815b271aba08a5e34c0702
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:6f:dc:a5:9e:c3:77:c8:ca:5c:43:5e:b9:4d:
eb:34:7b:3f:24:76:a2:c2:c9:0d:6b:5c:fc:40:0a:
c4:92:3c:df:21:ff:df:34:0e:8e:42:b7:1f:e2:7a:
85:03:df:b0:25:a6:2d:33:f8:b6:79:a6:c0:32:6c:
75:26:7c:4d:cc:90:12:11:54:2d:78:bc:77:f3:05:
db:e7:d5:90:ec:ce:10:97:8d:1d:87:ad:3c:4b:56:
e8:9b:60:88:a0:bc:42:6d:09:66:4e:40:0b:1e:4a:
6b:f2:1a:11:b3:9d:6d:b5:31:ad:d8:69:f5:a0:fb:
44:c3:e3:0b:ee:e5:ce:2c:a7:f8:7e:43:22:55:66:
a7:7a:0d:f7:23:b7:5c:9c:e9:b7:12:89:52:c7:9e:
b0:c2:7f:35:32:41:7c:a3:6b:7b:8d:b1:d9:00:7b:
c8:e5:5c:1c:0c:4b:ec:d4:8c:67:d5:44:68:37:fd:
60:f9:ba:6f:eb:4d:29:71:a0:70:1a:6e:77:ab:f4:
90:12:c1:43:69:d2:b3:73:f3:50:80:35:c8:df:cc:
c9:b4:95:37:2f:55:7c:cc:2d:15:ab:2d:3c:c0:f3:
7b:8b:c3:9a:90:35:2b:4f:75:3f:a5:f4:46:8c:ea:
7c:0f:13:1e:f0:85:b9:38:1c:05:7e:4b:cd:65:35:
71:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:28:81:52:83:EB:5E:30:D2:81:5B:27:1A:BA:08:A5:E3:4C:07:02
X509v3 Authority Key Identifier:
keyid:D4:C3:B1:2C:8D:63:51:90:EC:92:84:37:BB:D6:CB:0E:8C:38:F9:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1MOxLI1jUZDskoQ3u9bLDow4-ak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/2fb593-43f5-4db7-9819-0f9d57a5d4fa/1/MyiBUoPrXjDSgVsnGroIpeNMBwI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/2fb593-43f5-4db7-9819-0f9d57a5d4fa/1/1MOxLI1jUZDskoQ3u9bLDow4-ak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.66.96.0/20
185.198.200.0/22
IPv6:
2a02:340::/32
2a0a:8ec0::/29
Signature Algorithm: sha256WithRSAEncryption
53:7e:5a:c1:38:16:05:cc:31:b4:63:6c:04:62:82:6c:c1:7e:
bf:a2:4c:89:14:ed:53:ba:13:13:89:66:1c:97:a4:fb:97:03:
ef:dd:81:d0:a0:58:69:39:81:11:00:f3:de:a4:4d:6b:4b:fc:
af:50:c4:65:ee:ec:1f:ea:28:fd:4e:27:2e:01:05:cf:4e:0e:
9a:74:e6:9c:b4:d8:04:0d:06:79:a9:20:32:af:4c:83:23:c1:
ad:28:9b:88:f3:2a:df:99:85:0e:08:68:7e:45:c4:9f:aa:fd:
fa:22:50:a1:c3:af:ab:d8:3b:d0:ec:c8:bc:47:02:b8:2e:bb:
5c:83:d4:85:88:e8:36:fb:4a:0f:cd:1d:e1:ed:e6:58:d7:42:
02:27:d8:cd:64:57:7e:09:e0:95:20:33:59:11:5a:3b:09:a8:
54:e4:2e:64:60:e1:63:4a:23:ed:ce:ce:8c:86:26:52:09:fb:
35:53:6e:4b:18:f2:01:e0:74:5b:77:fa:fc:f6:d3:da:33:bf:
2b:11:ff:08:07:23:3f:89:80:82:44:c9:fb:75:f6:e8:04:aa:
d1:3d:79:b6:1a:bd:6d:6a:50:39:1e:5b:cc:87:59:4e:e1:66:
27:2b:26:ec:a0:ce:11:21:08:2a:5d:cb:6f:18:78:0d:80:93:
66:36:71:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:23 2024 by rpki-client on console-fra.rpki-client.org