Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/a1399a-ea6b-4a09-8b40-90c0bde09869/1/Mx8F0k9yCr6fE5l5rleNUqaNNyY.roa
File: Mx8F0k9yCr6fE5l5rleNUqaNNyY.roa (raw, json)
Hash identifier: t8BMuOLfcm938/8jetgEEenUYG7rVDPHykAuw2iiDFY=
Subject key identifier: 33:1F:05:D2:4F:72:0A:BE:9F:13:99:79:AE:57:8D:52:A6:8D:37:26
Certificate issuer: /CN=ad80679b96ca322bfa85500cab206c6d47412edf
Certificate serial: 01856F7954A25A8E27B5D45C251431784E39
Authority key identifier: AD:80:67:9B:96:CA:32:2B:FA:85:50:0C:AB:20:6C:6D:47:41:2E:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rYBnm5bKMiv6hVAMqyBsbUdBLt8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/a1399a-ea6b-4a09-8b40-90c0bde09869/1/Mx8F0k9yCr6fE5l5rleNUqaNNyY.roa
Signing time: Sun 01 Jan 2023 22:35:00 +0000
ROA not before: Sun 01 Jan 2023 22:35:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 195.42.240.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:30:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:54:a2:5a:8e:27:b5:d4:5c:25:14:31:78:4e:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad80679b96ca322bfa85500cab206c6d47412edf
Validity
Not Before: Jan 1 22:35:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=331f05d24f720abe9f139979ae578d52a68d3726
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:24:c8:06:bc:ca:2e:f0:16:92:71:f3:45:96:
59:da:c0:c3:24:d3:fc:4e:4a:0b:0c:5b:29:93:3e:
1b:ef:e7:57:e1:c0:9e:77:8f:67:f8:12:d0:54:fa:
2d:29:89:6e:16:4b:62:97:25:9f:b0:ad:1c:52:fa:
72:58:96:8b:29:29:0b:12:6c:d8:5a:bb:15:50:9b:
ca:eb:70:a5:66:2e:ef:b9:ae:e9:5b:73:5d:06:6e:
d1:89:c2:ae:c7:6e:9b:b7:4c:c1:51:29:75:52:3c:
4b:45:28:f9:2d:85:03:cd:42:b8:f5:d3:86:fc:22:
89:d6:43:79:f4:b2:44:c5:ee:11:64:71:6a:f3:13:
d1:79:9f:e2:3e:14:d3:4b:e4:bf:09:76:f3:71:77:
72:0b:6b:92:47:45:97:47:8d:1f:d4:0b:8b:ae:08:
81:fd:bf:19:49:f0:30:af:46:67:66:ac:0c:19:e3:
47:dc:9c:df:e1:87:e1:59:39:b8:b7:a5:46:de:9f:
42:d7:19:ff:d3:1a:b2:12:4f:af:42:81:12:cb:56:
8b:70:f1:a5:3c:5e:8e:d8:4f:e4:c8:4b:9f:60:1f:
93:78:bb:b1:f8:db:f0:a6:0b:57:9e:e7:86:ac:ef:
62:bd:8e:0e:dc:54:f0:4b:4a:59:70:58:a0:b1:91:
1f:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:1F:05:D2:4F:72:0A:BE:9F:13:99:79:AE:57:8D:52:A6:8D:37:26
X509v3 Authority Key Identifier:
keyid:AD:80:67:9B:96:CA:32:2B:FA:85:50:0C:AB:20:6C:6D:47:41:2E:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rYBnm5bKMiv6hVAMqyBsbUdBLt8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/a1399a-ea6b-4a09-8b40-90c0bde09869/1/Mx8F0k9yCr6fE5l5rleNUqaNNyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/a1399a-ea6b-4a09-8b40-90c0bde09869/1/rYBnm5bKMiv6hVAMqyBsbUdBLt8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.42.240.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:b0:95:73:5c:ff:68:c4:4c:30:59:b7:13:75:30:2c:7e:e0:
dd:15:06:d7:4e:f0:ba:95:d5:2d:07:04:f9:10:64:92:84:c0:
0b:50:bf:29:78:c8:59:30:41:02:ff:f9:b9:76:44:2f:6e:90:
fb:9d:c8:25:6f:3e:bb:a1:05:38:d0:89:d0:23:4c:e0:af:0d:
1d:86:21:30:d3:0a:f5:2c:74:95:76:e4:ee:f9:27:88:65:9a:
5a:04:e9:fd:67:29:6b:8a:ac:f1:52:95:c3:05:38:94:14:2c:
b3:80:dd:14:ae:34:f6:e8:de:f3:3b:c0:9b:af:63:ca:fe:81:
9f:7b:0d:ea:9f:16:3b:fc:f2:c3:13:00:5d:78:5e:8e:96:65:
17:5f:92:dc:9a:de:a3:7d:a4:6a:4b:60:ba:21:eb:8b:3d:5f:
6d:ff:f6:03:af:20:0b:c1:1d:1c:32:a1:f9:f5:8c:2f:97:c9:
70:2a:67:49:89:72:69:12:a8:7a:ad:85:36:a5:32:cc:8c:c5:
df:bd:57:0a:0a:ff:e0:dc:43:ff:f2:b3:23:2a:50:16:47:95:
38:8e:16:c2:eb:6d:6f:ee:4d:3e:3a:b1:31:4a:1c:85:c6:a3:
82:15:b9:6f:fc:77:0f:7d:58:45:6e:48:43:5f:b0:41:31:3c:
9f:23:35:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:11 2024 by rpki-client on console-fra.rpki-client.org