Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/mqFPbdVmPHwkEFsU35aK7ummtMc.roa
File: mqFPbdVmPHwkEFsU35aK7ummtMc.roa (raw, json)
Hash identifier: lMlRg7gQv/BW2LU4AfzpOQ+noIO/ljryFgawyhUB02E=
Subject key identifier: 9A:A1:4F:6D:D5:66:3C:7C:24:10:5B:14:DF:96:8A:EE:E9:A6:B4:C7
Certificate issuer: /CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3
Certificate serial: 0189534AB247BF273D5EA080F21E44B99A4C
Authority key identifier: 35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/mqFPbdVmPHwkEFsU35aK7ummtMc.roa
Signing time: Fri 14 Jul 2023 07:25:51 +0000
ROA not before: Fri 14 Jul 2023 07:25:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201995
IP address blocks: 185.63.84.0/24 maxlen: 24
2a06:4300::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:53:4a:b2:47:bf:27:3d:5e:a0:80:f2:1e:44:b9:9a:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3
Validity
Not Before: Jul 14 07:25:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9aa14f6dd5663c7c24105b14df968aeee9a6b4c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:68:11:96:fc:01:5d:90:fc:cd:1f:1e:09:3d:
8a:1c:99:df:9f:e9:f5:3b:9c:6c:c4:51:27:4c:14:
0b:25:11:c9:b0:a0:d2:1a:3c:99:bd:76:28:a6:62:
6e:e5:26:a5:6b:21:8f:52:59:56:76:df:d8:10:03:
9b:a7:a5:f2:10:34:8e:28:bc:f0:dd:97:b9:bb:94:
7f:48:e5:53:c3:86:ca:81:0b:65:bd:81:36:35:f3:
fe:05:f3:8a:e4:a7:8d:68:c6:8a:a4:06:00:9b:46:
52:b3:a4:08:1a:54:94:b5:f8:8e:01:dd:f7:45:e3:
b7:5a:0c:7c:7c:a0:d5:17:b0:92:9b:a4:38:30:ad:
c5:fe:5e:84:7a:19:a8:c8:3d:62:f2:d4:48:c8:9d:
1f:12:5c:69:0d:4d:e5:41:8f:b3:01:c1:f3:42:9b:
e6:55:51:4b:8c:7d:05:61:d2:f9:81:09:95:ce:21:
d3:1e:18:7a:bb:f7:95:f6:62:e5:43:87:dc:a2:5e:
95:25:27:f7:8b:62:02:6e:ce:37:76:8e:a9:47:cc:
cf:c5:cd:af:c4:c2:ef:29:6e:23:fd:46:81:b1:b2:
a2:7d:99:d7:a0:bd:21:17:4d:41:0a:6e:5f:52:5d:
24:dc:2d:c2:85:9f:53:24:bd:7c:b2:ef:94:2a:63:
ae:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:A1:4F:6D:D5:66:3C:7C:24:10:5B:14:DF:96:8A:EE:E9:A6:B4:C7
X509v3 Authority Key Identifier:
keyid:35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/mqFPbdVmPHwkEFsU35aK7ummtMc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.84.0/24
IPv6:
2a06:4300::/32
Signature Algorithm: sha256WithRSAEncryption
5f:86:bd:46:1d:7a:6e:35:b0:31:fa:bc:65:af:81:24:c1:42:
14:c6:01:3b:7d:b8:89:47:da:59:09:ce:4b:20:94:06:c8:65:
9c:f6:67:b4:ff:50:9a:8b:ad:8b:2e:f5:3a:c4:57:7c:28:dd:
ab:3d:c5:fb:23:4f:a8:aa:2a:f6:15:51:ad:fe:99:ba:5b:c2:
ac:93:76:94:78:07:0f:41:dd:26:7d:bc:23:f4:87:56:1a:fd:
2c:02:06:7e:e3:8f:73:79:b0:16:90:f7:17:2a:02:8a:1f:fd:
b1:fa:2c:c8:ed:17:fa:60:56:90:fb:c4:14:1e:f7:1e:e9:a2:
b2:f3:91:de:0f:47:c9:61:79:10:5f:a1:42:22:2e:20:57:8a:
0c:f7:d9:b4:1d:5d:0a:60:8b:fb:c6:2d:72:b9:bd:d2:b4:6d:
7a:03:5d:13:84:ab:07:09:7c:4b:e2:7d:25:a8:e7:d8:2e:d6:
de:62:69:07:9c:9a:b7:b8:f8:fe:59:c8:ba:61:64:c7:0b:ed:
67:72:8e:c7:68:3b:6f:34:89:5b:eb:b7:af:b0:21:ba:c4:fe:
83:be:68:b2:b1:52:ac:6d:8b:b0:fb:97:a7:19:21:a0:60:e2:
33:f3:99:23:1c:73:b9:1c:d9:f4:07:ab:a3:e4:00:c0:93:36:
da:8e:7d:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:33 2024 by rpki-client on console-fra.rpki-client.org