Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/MB1s31FZC_VZnqPW3l8rcCTIPPc.roa
File: MB1s31FZC_VZnqPW3l8rcCTIPPc.roa (raw, json)
Hash identifier: r5HMZykTqAPOf38Xs2R9kqXTwInAcuAVblIrCH0/pHw=
Subject key identifier: 30:1D:6C:DF:51:59:0B:F5:59:9E:A3:D6:DE:5F:2B:70:24:C8:3C:F7
Certificate issuer: /CN=c2d2ac1d7c9eccf5658b88f16f613d7b3e8e8c72
Certificate serial: 01874A18880850A08EA8966EABF2C26BCEE5
Authority key identifier: C2:D2:AC:1D:7C:9E:CC:F5:65:8B:88:F1:6F:61:3D:7B:3E:8E:8C:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wtKsHXyezPVli4jxb2E9ez6OjHI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/MB1s31FZC_VZnqPW3l8rcCTIPPc.roa
Signing time: Tue 04 Apr 2023 02:28:54 +0000
ROA not before: Tue 04 Apr 2023 02:28:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206033
IP address blocks: 2a07:d840::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:4a:18:88:08:50:a0:8e:a8:96:6e:ab:f2:c2:6b:ce:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2d2ac1d7c9eccf5658b88f16f613d7b3e8e8c72
Validity
Not Before: Apr 4 02:28:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=301d6cdf51590bf5599ea3d6de5f2b7024c83cf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:17:6c:a8:c1:30:a7:d8:f3:ce:a9:ad:0f:78:
2d:45:53:e7:eb:b4:40:8e:d3:fc:41:6e:cd:0c:e8:
97:cb:05:d2:af:40:ff:cd:5b:16:71:9f:84:db:91:
8b:3b:90:3e:90:f9:72:4d:fd:75:33:2e:81:63:59:
32:c4:65:89:b4:9f:20:84:95:50:ed:1d:c8:ea:03:
12:d4:e3:82:4f:0b:78:b8:11:dc:0b:09:49:aa:55:
aa:13:c5:e8:a6:6b:99:f0:62:ae:43:6c:02:b1:84:
db:c7:a5:60:f6:4d:bf:4c:d8:87:39:49:42:c6:39:
a4:e8:70:42:4a:dc:ba:7b:1b:96:1e:59:d5:e8:f0:
0b:c9:49:e8:9c:3a:bc:70:2f:2b:d3:21:dc:5f:cf:
9f:98:a1:bd:dc:43:7c:85:9e:9c:04:68:6f:d4:13:
b8:7e:c0:ee:17:59:5c:a4:86:17:fa:ad:ed:03:15:
e9:f3:08:35:f5:2d:52:d0:a3:d3:9e:75:3f:cc:b1:
ea:74:fe:f9:4a:28:d7:2d:15:47:55:48:fb:78:71:
c6:a3:1a:37:c3:9e:b2:44:5b:b8:f0:3c:7e:73:15:
84:19:54:bd:ee:8e:75:1f:ab:b4:7c:a4:77:fa:4f:
89:10:22:ee:71:de:d0:91:a9:d7:06:0d:f8:10:a1:
16:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:1D:6C:DF:51:59:0B:F5:59:9E:A3:D6:DE:5F:2B:70:24:C8:3C:F7
X509v3 Authority Key Identifier:
keyid:C2:D2:AC:1D:7C:9E:CC:F5:65:8B:88:F1:6F:61:3D:7B:3E:8E:8C:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtKsHXyezPVli4jxb2E9ez6OjHI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/MB1s31FZC_VZnqPW3l8rcCTIPPc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/wtKsHXyezPVli4jxb2E9ez6OjHI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:d840::/32
Signature Algorithm: sha256WithRSAEncryption
1f:34:03:1e:d0:46:df:21:c0:2b:df:ee:9b:be:8b:e5:56:7c:
ce:ed:ad:1a:81:51:5d:d8:d5:67:e7:34:32:3c:b6:d1:90:67:
96:0f:22:0e:e2:6d:49:c5:d4:3e:55:a7:2d:b2:49:94:ed:7e:
d9:d5:68:20:45:54:85:65:f1:33:92:e2:ad:ac:e0:41:69:0c:
b9:ac:59:7e:a6:69:ca:5d:31:04:74:ea:66:79:e2:c1:77:98:
a4:c8:a9:5e:3f:3f:9a:12:ac:c1:ad:7a:bb:d8:2c:73:b8:36:
66:06:01:42:ce:58:d8:f8:33:f5:d2:24:d6:54:80:05:b9:7b:
1b:58:b1:4d:b5:27:88:09:f6:c5:e0:58:19:2a:0b:7a:66:47:
3f:36:ab:ff:34:4d:8f:95:ca:56:5b:48:e0:a1:f6:df:90:f8:
cc:36:f1:c0:43:f8:3b:4c:dc:9c:31:17:5c:4c:74:2b:9e:56:
db:84:b1:4c:ab:66:ad:df:b2:c0:5b:39:25:7c:aa:61:ab:68:
cb:d5:a7:cb:35:21:e6:c4:d3:c5:47:dd:b1:32:96:8a:fc:7c:
d8:50:05:bc:dd:f8:c1:71:1e:89:bb:c6:e3:da:b0:af:55:5b:
09:f6:4a:b2:f4:f7:45:44:ee:ac:e2:ed:a1:f3:89:3c:54:e6:
5d:93:a5:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:47 2024 by rpki-client on console-ams.rpki-client.org