Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/mmuM3yiPsrAOZNJIsKapt2djJvg.roa
File: mmuM3yiPsrAOZNJIsKapt2djJvg.roa (raw, json)
Hash identifier: YV/yG/nkBd9yfysF9b1W+tL3XFIyJgpdHJa3Q4/vMkU=
Subject key identifier: 9A:6B:8C:DF:28:8F:B2:B0:0E:64:D2:48:B0:A6:A9:B7:67:63:26:F8
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 01899C5B83141CE6622ED0E7A4F505E14E92
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/mmuM3yiPsrAOZNJIsKapt2djJvg.roa
Signing time: Fri 28 Jul 2023 11:56:30 +0000
ROA not before: Fri 28 Jul 2023 11:56:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59432
IP address blocks: 79.98.246.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 01 Aug 2023 19:42:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:9c:5b:83:14:1c:e6:62:2e:d0:e7:a4:f5:05:e1:4e:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Jul 28 11:56:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9a6b8cdf288fb2b00e64d248b0a6a9b7676326f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:a3:4b:e2:40:c3:a0:9b:64:d0:c8:b5:5f:9d:
1d:45:ae:eb:cf:66:4d:1b:bd:3a:25:00:af:9f:4e:
37:65:1d:f6:6f:8c:5c:5c:4c:7b:1b:c7:89:d9:b2:
2f:0e:98:d4:1e:12:12:b9:00:67:05:c9:2d:ac:5f:
0d:e8:34:4d:58:79:90:d0:44:be:b2:77:4e:ee:7b:
27:7f:b8:94:19:11:fb:a8:64:77:c1:49:08:eb:92:
01:4f:95:16:18:71:ce:1f:e0:31:58:68:61:18:6b:
f8:0c:2b:60:4a:5e:07:7d:ca:a9:87:a2:07:3a:7c:
1c:b2:ab:cd:4c:c8:1b:21:b0:f9:cd:39:fe:25:19:
38:81:c6:9e:2e:af:52:34:48:b8:76:53:c5:1e:32:
4d:dc:2e:11:b1:b8:f1:83:ec:1b:16:fd:9a:fb:6b:
14:34:0b:c0:17:a0:bf:e8:2c:b7:c9:76:f5:23:9f:
a9:3b:3e:a8:5b:59:08:85:51:39:d0:52:53:63:73:
03:1a:7b:62:e3:b5:6e:51:52:71:56:c2:d3:e7:b4:
f4:d6:b7:de:30:c9:14:fc:b9:5c:b7:2d:bf:19:d9:
3c:ee:20:a8:b8:66:0d:08:f2:b2:d3:45:85:e5:2a:
71:f2:88:8e:d4:48:61:1a:80:c9:21:62:dd:56:b5:
24:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:6B:8C:DF:28:8F:B2:B0:0E:64:D2:48:B0:A6:A9:B7:67:63:26:F8
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/mmuM3yiPsrAOZNJIsKapt2djJvg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.98.246.0/23
Signature Algorithm: sha256WithRSAEncryption
24:18:83:07:00:95:c7:29:29:15:9d:4a:d1:30:be:42:cc:3f:
2b:93:c5:31:2c:7c:ff:79:ee:ef:16:62:7b:16:13:6a:6a:6a:
de:85:d2:24:00:08:44:c4:b7:05:9b:aa:77:83:6e:2c:13:8d:
73:f7:4d:fa:ff:27:d0:1c:6f:ec:2f:d7:df:88:97:7e:54:6b:
5a:2e:3f:dd:fa:86:8c:08:d3:1d:c7:cc:c4:6b:b7:cf:14:c5:
be:d8:4e:7c:95:1d:15:1b:3f:b2:19:32:d8:00:c8:ec:6d:36:
de:2c:45:2f:ef:42:6e:6f:33:01:27:3f:9e:4b:e7:83:7d:9a:
2c:21:33:39:18:4e:9a:97:58:c2:96:4d:a2:8a:49:44:b7:ae:
b3:f7:48:51:b2:f4:6e:bc:69:d6:ba:a9:96:99:ef:88:89:30:
3e:b6:79:e3:01:2d:47:fa:92:96:08:8c:fd:58:5a:29:ec:73:
a5:b2:d8:ee:31:4a:fc:6d:d2:a0:f3:e6:59:d7:5f:6b:44:ec:
7f:5f:8a:61:ee:d0:c2:f3:b6:af:30:0c:55:e2:c0:2e:88:38:
c3:d7:92:2c:e1:1d:76:66:ba:84:de:5e:ca:0e:aa:8d:ac:ff:
d0:d0:6d:81:28:70:5b:f0:6f:cf:91:c6:41:f1:71:10:53:d4:
88:cf:af:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:35 2024 by rpki-client on console-ams.rpki-client.org