Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/9c6e07-693f-46ce-8646-d7abcd0ef64a/1/ma-xa81pJWMW3X_DhokZ37uuf9I.roa
File: ma-xa81pJWMW3X_DhokZ37uuf9I.roa (raw, json)
Hash identifier: q1SoNVJhezewuHuYWYj91HQTk9RkdyJw2Y9gMPFZUmc=
Subject key identifier: 99:AF:B1:6B:CD:69:25:63:16:DD:7F:C3:86:89:19:DF:BB:AE:7F:D2
Certificate issuer: /CN=8a5a3417fbe25c2e467c18485c181a7776f96ff4
Certificate serial: 019122C5A868CD1C9C1DCC6ECD83D4201E91
Authority key identifier: 8A:5A:34:17:FB:E2:5C:2E:46:7C:18:48:5C:18:1A:77:76:F9:6F:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ilo0F_viXC5GfBhIXBgad3b5b_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/9c6e07-693f-46ce-8646-d7abcd0ef64a/1/ma-xa81pJWMW3X_DhokZ37uuf9I.roa
Signing time: Mon 05 Aug 2024 13:41:04 +0000
ROA not before: Mon 05 Aug 2024 13:41:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 77.93.140.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 28 Aug 2024 16:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:22:c5:a8:68:cd:1c:9c:1d:cc:6e:cd:83:d4:20:1e:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a5a3417fbe25c2e467c18485c181a7776f96ff4
Validity
Not Before: Aug 5 13:41:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=99afb16bcd69256316dd7fc3868919dfbbae7fd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:18:d6:7b:55:45:09:82:cd:63:d9:9d:ad:f6:
fe:15:93:2a:fd:b3:60:d6:2a:3f:1f:ad:6f:30:48:
90:4e:ce:cc:14:1e:cf:cb:96:8e:4f:1f:d7:0d:c2:
71:6d:65:33:e5:84:8e:33:e7:d0:56:df:8d:b9:0e:
d2:58:fa:25:bf:49:5b:71:c8:19:4d:f8:1d:18:a0:
99:74:3a:95:b7:b4:a9:19:9d:f6:64:c1:9f:8d:ce:
94:2c:e6:27:45:a5:38:03:03:dd:51:1e:1d:83:13:
3c:38:1f:76:79:53:ba:16:7b:1d:98:60:83:63:77:
b3:50:27:a6:29:80:40:78:10:be:53:5a:4c:55:ed:
91:8a:77:5a:72:0e:80:68:7c:54:3b:25:1a:25:7e:
1d:85:3f:7b:6d:65:7f:64:f1:d9:c2:5e:d5:51:f5:
ff:a8:43:b5:8a:e3:10:47:5b:d4:1a:db:19:62:4d:
00:07:35:7a:30:fa:63:20:d1:24:51:f9:6d:fe:39:
ab:36:d9:5e:ea:be:82:0e:ee:81:a1:b3:59:48:f6:
24:12:e8:80:ea:7c:d1:9e:f6:61:4e:6a:56:64:ea:
24:8f:70:09:a0:7c:72:0e:1a:33:15:90:7a:67:1a:
a4:8a:b6:6e:8b:3c:70:8f:7b:65:33:05:7f:0b:79:
1b:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:AF:B1:6B:CD:69:25:63:16:DD:7F:C3:86:89:19:DF:BB:AE:7F:D2
X509v3 Authority Key Identifier:
keyid:8A:5A:34:17:FB:E2:5C:2E:46:7C:18:48:5C:18:1A:77:76:F9:6F:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ilo0F_viXC5GfBhIXBgad3b5b_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/9c6e07-693f-46ce-8646-d7abcd0ef64a/1/ma-xa81pJWMW3X_DhokZ37uuf9I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/9c6e07-693f-46ce-8646-d7abcd0ef64a/1/ilo0F_viXC5GfBhIXBgad3b5b_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.93.140.0/22
Signature Algorithm: sha256WithRSAEncryption
17:9a:75:61:dc:1d:b4:0a:af:62:e4:50:5f:64:a3:90:13:9b:
fc:08:56:b1:5d:d2:5d:60:7c:30:5a:61:47:69:5f:cf:54:76:
21:92:f2:23:65:e6:dc:3c:50:19:f6:6d:a7:6c:cf:ea:dd:9d:
98:21:0a:42:bc:62:52:dd:eb:14:b6:da:8b:8b:e3:0e:93:f3:
21:ca:68:27:d8:3e:f7:69:e0:d0:5e:6c:83:39:15:56:f0:b5:
87:5a:6c:0f:2d:0f:81:48:48:11:36:5e:20:a9:e4:46:83:cb:
b3:cf:2d:e1:3f:ee:ca:d7:74:d2:e5:63:eb:8e:dc:16:bb:45:
1e:92:1e:ae:be:db:b8:90:b8:c6:f2:e8:0a:c1:61:96:3a:e4:
7f:dd:c7:bd:68:bf:9d:aa:09:28:e8:93:91:0e:1d:8a:5d:27:
1b:13:db:85:7e:be:63:e0:b5:a7:9d:33:98:ac:21:e0:ba:60:
e6:dc:ee:bf:15:ce:0b:4e:6b:7e:63:46:a3:e6:12:65:59:96:
33:9d:f5:7b:20:b1:71:4f:04:d9:a7:69:41:dd:6a:0d:d7:81:
c3:3e:20:c2:96:63:74:c2:ed:08:b6:57:f1:70:e5:57:f8:b9:
27:73:fa:ff:96:8b:bf:26:ae:64:ad:f0:cd:e4:66:35:8c:3a:
fc:c2:5f:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 28 17:52:54 2024 by rpki-client on console-fra.rpki-client.org