Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/MqHGzx8wxB6zm_Vs8BMVxPQVYwQ.roa
File: MqHGzx8wxB6zm_Vs8BMVxPQVYwQ.roa (raw, json)
Hash identifier: +Cu2KuVOkSapYF8dSIY2sTkRgZ9XnkrNNwpnjYE2LS4=
Subject key identifier: 32:A1:C6:CF:1F:30:C4:1E:B3:9B:F5:6C:F0:13:15:C4:F4:15:63:04
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 0193418893C04AF4FD28A4A8421CB2EB95EF
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/MqHGzx8wxB6zm_Vs8BMVxPQVYwQ.roa
Signing time: Mon 18 Nov 2024 23:08:09 +0000
ROA not before: Mon 18 Nov 2024 23:08:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 193.239.197.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 20 Nov 2024 19:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:41:88:93:c0:4a:f4:fd:28:a4:a8:42:1c:b2:eb:95:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Nov 18 23:08:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=32a1c6cf1f30c41eb39bf56cf01315c4f4156304
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:0f:bd:b3:c3:11:66:41:93:e0:fb:cb:c8:f2:
26:f3:e5:fe:09:93:ab:e4:a5:ce:e2:50:78:7e:b7:
0d:c8:46:4b:bd:51:d8:af:cb:82:07:e8:49:03:76:
ba:b5:40:ae:35:0a:8a:ac:e4:8b:10:45:dd:0f:2c:
60:c6:7e:59:75:e4:da:9b:d7:58:62:9a:da:d5:73:
37:3b:24:44:ae:12:ff:96:38:9f:d7:93:1c:49:36:
9f:be:c3:c8:c4:97:a8:27:a8:a6:6a:cf:60:93:a9:
c7:1e:b9:7b:02:63:22:6c:89:f6:df:92:3a:03:0f:
c0:db:07:15:46:93:dd:1b:78:36:5e:f9:9f:1e:93:
47:af:55:c7:15:b9:1f:df:eb:f0:9f:13:a7:91:af:
d6:5a:e7:05:8e:f6:7c:22:1b:ad:86:31:b6:c8:00:
c9:6e:07:fd:c7:9e:6f:54:cd:67:e2:c8:ba:04:1b:
2b:96:80:58:ff:0f:08:64:84:14:ef:07:1e:b0:0b:
7f:3b:44:5a:20:11:f4:44:b9:9d:2b:fe:36:93:39:
19:0d:05:33:82:dc:45:c8:80:0d:ad:0d:20:f0:54:
22:43:ce:4a:b6:0a:d2:78:8d:d0:8f:e6:e2:c0:bb:
c3:5d:58:54:f2:df:f3:57:67:b5:0d:69:25:09:3c:
a4:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:A1:C6:CF:1F:30:C4:1E:B3:9B:F5:6C:F0:13:15:C4:F4:15:63:04
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/MqHGzx8wxB6zm_Vs8BMVxPQVYwQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.239.197.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:9b:8a:6b:f9:d2:cb:84:60:06:eb:f0:36:17:04:9c:d5:ea:
bf:57:e7:4a:60:c0:e3:bd:de:57:af:99:a1:41:40:04:c1:b0:
6d:5f:a6:cc:67:6a:40:9f:50:f4:4c:e3:d8:e5:b2:d2:31:7f:
2e:75:5a:78:a7:57:8a:f3:fe:8b:06:01:ff:de:67:9a:93:2f:
5d:02:82:eb:38:4c:50:bc:d3:11:ec:b0:b2:f9:97:9e:76:42:
ea:bb:f1:8a:c8:9a:da:af:c2:f4:a6:bb:1a:63:ee:63:dc:17:
12:4d:44:3c:48:58:f3:a4:f5:2d:ff:36:f5:5a:1c:32:1c:91:
2e:4b:a1:d9:44:a8:13:9c:50:3c:72:a4:89:fa:df:6c:f2:0d:
f8:b6:df:be:cb:15:00:83:65:96:b8:b4:23:41:61:3e:57:e5:
8c:15:17:f1:74:47:0b:99:b2:52:56:84:5a:ab:46:ea:06:ac:
3e:4f:b9:4a:55:f3:5b:80:7c:53:c2:16:84:5f:6f:10:f6:3e:
34:65:90:72:9c:dd:78:65:1b:34:5a:d8:c5:ec:43:14:f6:e5:
2f:6f:e1:d0:ad:d2:cb:62:d8:c6:3a:7b:8b:08:87:01:de:bc:
2c:80:0e:36:65:3d:40:0b:ee:a3:33:fc:a7:61:bf:07:37:cc:
80:fa:5c:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 20 22:05:19 2024 by rpki-client on console-fra.rpki-client.org