Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/MjeDN6KEnT0Jq6kNUxwWF6VRT-g.roa
File: MjeDN6KEnT0Jq6kNUxwWF6VRT-g.roa (raw, json)
Hash identifier: sMGebQwbnbIttxc9CYaCUeFgRWDdKWWCTQBj0VNjxyk=
Subject key identifier: 32:37:83:37:A2:84:9D:3D:09:AB:A9:0D:53:1C:16:17:A5:51:4F:E8
Certificate issuer: /CN=776fae43f73da35fe1a2e429662ae0b91751e3fb
Certificate serial: 018573439FE5354DB1396B57538C6F822709
Authority key identifier: 77:6F:AE:43:F7:3D:A3:5F:E1:A2:E4:29:66:2A:E0:B9:17:51:E3:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d2-uQ_c9o1_houQpZirguRdR4_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/MjeDN6KEnT0Jq6kNUxwWF6VRT-g.roa
Signing time: Mon 02 Jan 2023 16:14:49 +0000
ROA not before: Mon 02 Jan 2023 16:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43180
IP address blocks: 91.230.121.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:43:9f:e5:35:4d:b1:39:6b:57:53:8c:6f:82:27:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=776fae43f73da35fe1a2e429662ae0b91751e3fb
Validity
Not Before: Jan 2 16:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=32378337a2849d3d09aba90d531c1617a5514fe8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:3d:97:48:e6:35:d5:90:26:a2:f7:70:94:52:
e2:b5:d3:41:3a:68:c1:16:39:bb:53:a0:b9:fa:09:
e2:92:ef:0b:65:3c:8e:b4:a6:02:a0:97:d8:f2:6a:
e7:5c:89:16:af:8d:bc:ef:e2:f4:2a:6c:0e:6c:c8:
5f:6b:4d:d8:d2:0f:ff:b3:7f:26:ff:a4:52:e1:fa:
2a:09:b5:64:5c:00:79:eb:67:a8:d5:90:e3:53:77:
95:c8:89:37:b9:9d:51:b8:53:31:b5:bc:fc:a1:44:
01:a4:12:b6:d1:7f:24:f3:ce:7e:55:9a:b8:d0:0e:
de:99:05:23:6c:78:ca:21:8b:3f:28:dc:86:94:78:
81:31:cc:98:b3:2b:e4:b4:28:53:13:11:f0:e1:cf:
99:4b:8b:53:e0:bb:67:6f:1f:4e:73:97:86:7d:08:
e6:ef:cd:f4:94:2a:95:76:26:af:5f:4b:8a:d4:a2:
26:cd:5f:64:61:b6:99:8f:c6:72:1f:14:62:e0:1e:
df:50:43:96:d2:ee:f8:68:16:b0:90:96:25:73:36:
2d:4f:3a:3c:ba:aa:82:4e:e2:27:da:05:c1:07:c6:
26:cd:d2:33:9b:28:b5:3f:03:2b:0e:0e:a0:16:bb:
6b:b6:5e:cb:9f:3a:a9:17:c7:4d:0d:dd:44:55:d9:
ba:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:37:83:37:A2:84:9D:3D:09:AB:A9:0D:53:1C:16:17:A5:51:4F:E8
X509v3 Authority Key Identifier:
keyid:77:6F:AE:43:F7:3D:A3:5F:E1:A2:E4:29:66:2A:E0:B9:17:51:E3:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2-uQ_c9o1_houQpZirguRdR4_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/MjeDN6KEnT0Jq6kNUxwWF6VRT-g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.230.121.0/24
Signature Algorithm: sha256WithRSAEncryption
04:bc:f9:4a:64:ec:2b:74:be:7b:8a:d6:e3:24:84:c2:6c:5f:
d8:f0:3f:21:3a:f2:7f:1e:4a:5b:9b:c5:58:20:3c:0d:61:67:
28:42:80:47:27:81:9c:5f:37:77:5d:a7:6a:a2:4e:ad:f2:dc:
07:94:4c:ff:df:fb:d8:f7:2e:35:ad:2c:db:28:f4:d9:35:08:
cc:55:45:b1:6d:69:75:82:0b:6c:bf:57:96:22:22:ab:07:52:
d6:d4:dd:e7:d9:d0:37:fd:9a:10:3b:30:c7:af:09:d3:91:f2:
a7:83:1f:21:b2:b9:12:b0:c6:b8:46:88:11:20:2c:61:37:a0:
e8:25:c9:21:71:82:c5:3d:67:b6:e7:3e:fa:1b:5b:77:02:30:
a5:77:7a:c2:72:38:82:f2:f4:d6:dc:dc:ad:3c:2d:ed:5a:ce:
82:88:97:66:0d:6d:d5:d1:d3:95:ef:2c:21:18:bd:49:0f:71:
a0:ac:b4:8f:5c:21:c6:e8:5f:1e:96:62:54:c0:42:cc:b1:dd:
73:4e:b2:88:33:ed:c3:6b:61:f2:a4:9c:20:16:32:db:7f:b0:
a6:c3:4f:04:04:51:5b:e2:f0:9e:13:fb:0f:d9:55:10:25:29:
f5:87:0a:71:b5:42:7c:94:89:d7:e9:cc:86:77:2f:e8:b8:31:
77:08:5f:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:32:12 2024 by rpki-client on console-ams.rpki-client.org