Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/Mwso0meDcpR3JdXPUFg7dVsHu28.roa
File: Mwso0meDcpR3JdXPUFg7dVsHu28.roa (raw, json)
Hash identifier: Lr+eSVlQaiVP+6ClfmU05gEHJTiKdi+8DBH1LLaEqs4=
Subject key identifier: 33:0B:28:D2:67:83:72:94:77:25:D5:CF:50:58:3B:75:5B:07:BB:6F
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 018A8013F65C5511762B8C13E749C114A529
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/Mwso0meDcpR3JdXPUFg7dVsHu28.roa
Signing time: Sun 10 Sep 2023 17:11:46 +0000
ROA not before: Sun 10 Sep 2023 17:11:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62206
IP address blocks: 91.228.15.0/24 maxlen: 24
91.228.14.0/24 maxlen: 24
91.228.13.0/24 maxlen: 24
91.228.12.0/24 maxlen: 24
94.154.38.0/24 maxlen: 24
94.154.36.0/24 maxlen: 24
94.154.32.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:80:13:f6:5c:55:11:76:2b:8c:13:e7:49:c1:14:a5:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: Sep 10 17:11:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=330b28d2678372947725d5cf50583b755b07bb6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:3d:0b:9d:40:03:3f:bc:46:63:63:01:3f:6f:
1f:be:da:ba:93:7b:5a:db:87:9a:df:c3:69:6c:49:
80:aa:d6:be:0b:53:90:ca:16:35:ff:92:f1:f0:2c:
33:c6:db:ab:53:40:d0:b2:a0:6b:a7:b2:ee:cb:5e:
34:c0:12:7e:a5:36:dd:d4:ae:54:3d:13:7c:e5:62:
a0:cc:1c:6c:d6:b3:06:e8:4a:f7:7a:99:f3:6c:07:
fa:14:72:21:59:23:1e:d4:8b:4d:cb:6b:13:6b:ae:
98:62:87:fb:0e:d6:88:ee:07:51:11:7f:8c:e2:70:
4e:2e:d2:70:cd:14:38:70:4b:68:6c:65:49:3c:fc:
d1:c8:d3:84:db:ce:35:c8:f8:d5:bf:eb:d4:1b:20:
f1:90:25:9d:39:f7:49:4e:37:67:c7:37:f3:1f:40:
63:fa:f4:a4:77:2a:11:85:67:ab:65:d0:a7:c7:7e:
ec:26:1f:35:9c:d4:74:62:12:d6:20:83:83:cb:d8:
5a:18:b7:a4:ab:3b:32:2f:97:67:ba:7f:a8:7f:81:
7b:be:ee:82:ff:5e:72:58:2e:b6:5b:93:35:cb:54:
11:f5:84:59:92:8c:b7:cc:4e:f1:e2:03:75:1c:36:
25:b5:3e:17:5b:3b:81:8a:42:7d:7f:de:e7:63:35:
7c:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:0B:28:D2:67:83:72:94:77:25:D5:CF:50:58:3B:75:5B:07:BB:6F
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/Mwso0meDcpR3JdXPUFg7dVsHu28.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.12.0/22
94.154.32.0-94.154.36.255
94.154.38.0/24
Signature Algorithm: sha256WithRSAEncryption
87:48:d1:b3:ab:e5:b6:57:67:ec:67:c5:98:c1:86:3e:09:bc:
70:e8:16:88:e4:bc:ea:1b:20:80:49:f8:86:b7:bf:5b:b0:52:
36:a0:6d:9f:51:88:dc:ea:a3:01:d9:75:e4:e2:6d:60:be:07:
e0:0b:32:7c:0c:e7:f2:d1:5f:08:ac:6f:3e:95:2b:e7:b6:22:
a7:90:6f:78:4e:4b:e2:ba:46:9f:98:5c:d0:12:52:10:b8:b9:
89:de:f2:03:b5:03:bc:6d:6c:bb:6f:49:b6:bb:f7:70:ef:27:
ed:72:e2:f6:a2:bd:10:56:1f:a5:0d:6f:c6:6b:df:5b:c5:7a:
db:8c:6c:94:f1:42:cf:13:ee:a7:23:80:d3:a7:09:dd:06:e1:
20:d0:94:85:79:88:3e:c2:7c:b8:d6:91:03:1f:20:e2:61:2a:
9f:9e:e4:d0:8c:e8:4a:92:db:37:fc:a1:88:68:07:22:3c:d6:
04:01:53:f1:e0:a4:f7:be:76:22:7e:78:6d:90:7a:94:28:f5:
89:e7:b6:bd:b6:b1:2a:b0:b3:04:28:3f:95:dd:a5:96:58:fc:
47:43:e0:05:7a:ba:e4:60:80:ca:87:7e:66:b5:12:22:92:06:
62:ac:e8:37:71:59:ed:94:e5:89:85:9f:15:fe:7e:82:b9:34:
63:5a:11:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 11 21:46:47 2023 by rpki-client on console-fra.rpki-client.org