Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/8d7548-0753-40dc-8fbb-de21f5fee3db/1/MsjVat-tomDnRkjYjBp1sE23uZc.roa
File: MsjVat-tomDnRkjYjBp1sE23uZc.roa (raw, json)
Hash identifier: wRHdjD5XtmrWdoxIEI4M+Kb0U5YdC5JWKPITKsXkZ2s=
Subject key identifier: 32:C8:D5:6A:DF:AD:A2:60:E7:46:48:D8:8C:1A:75:B0:4D:B7:B9:97
Certificate issuer: /CN=66e3ed06e88e5591d9096676951555c0dc535c19
Certificate serial: 018B37F15BB5ABE72487A7D09975DA0D7D5F
Authority key identifier: 66:E3:ED:06:E8:8E:55:91:D9:09:66:76:95:15:55:C0:DC:53:5C:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZuPtBuiOVZHZCWZ2lRVVwNxTXBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/8d7548-0753-40dc-8fbb-de21f5fee3db/1/MsjVat-tomDnRkjYjBp1sE23uZc.roa
Signing time: Mon 16 Oct 2023 10:04:06 +0000
ROA not before: Mon 16 Oct 2023 10:04:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207218
IP address blocks: 185.28.177.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:37:f1:5b:b5:ab:e7:24:87:a7:d0:99:75:da:0d:7d:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66e3ed06e88e5591d9096676951555c0dc535c19
Validity
Not Before: Oct 16 10:04:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=32c8d56adfada260e74648d88c1a75b04db7b997
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:a3:f9:4c:c5:49:79:5e:17:7a:de:22:82:d1:
a2:40:11:9d:e0:49:b9:b4:e4:24:25:c7:36:17:64:
e2:b9:44:6b:36:ef:c2:0e:e0:20:d1:f9:00:6d:07:
f9:ab:43:84:0e:32:ef:5a:97:13:8f:48:8a:98:de:
05:8d:79:80:ff:48:5a:0d:ed:0d:7a:66:b6:a0:b9:
ad:8e:a7:18:c3:25:c5:3d:aa:38:01:3a:dd:ef:d3:
39:82:e2:70:f4:a2:bd:bf:bc:51:08:5a:24:b7:5c:
7d:09:60:4d:f1:92:9a:3d:81:d3:5e:b3:b7:2e:2c:
ed:c7:60:f9:00:e7:06:7e:65:d4:a3:28:f7:9c:59:
3c:21:59:2b:8d:d8:ac:40:60:f8:b3:b6:26:46:cd:
04:95:1b:c8:78:a5:f9:f4:1d:50:8b:ce:ee:5d:35:
cc:db:1f:97:99:98:e3:03:e9:c8:1a:e8:dc:ad:7c:
5d:53:41:0e:0a:1f:46:38:45:3a:38:38:ce:7c:95:
b7:97:4b:0c:5b:36:5d:61:56:5d:6e:0b:d3:55:49:
6c:05:e2:89:06:ca:9a:70:20:6d:f0:e3:8b:68:96:
19:5a:6f:07:c0:41:d9:ff:af:a4:64:09:9e:93:43:
af:da:59:f9:19:0d:fe:c7:2e:18:be:7a:64:33:62:
9e:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:C8:D5:6A:DF:AD:A2:60:E7:46:48:D8:8C:1A:75:B0:4D:B7:B9:97
X509v3 Authority Key Identifier:
keyid:66:E3:ED:06:E8:8E:55:91:D9:09:66:76:95:15:55:C0:DC:53:5C:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZuPtBuiOVZHZCWZ2lRVVwNxTXBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/8d7548-0753-40dc-8fbb-de21f5fee3db/1/MsjVat-tomDnRkjYjBp1sE23uZc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/8d7548-0753-40dc-8fbb-de21f5fee3db/1/ZuPtBuiOVZHZCWZ2lRVVwNxTXBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.28.177.0/24
Signature Algorithm: sha256WithRSAEncryption
16:96:af:25:9d:36:f5:29:c3:2b:d5:ad:de:cf:7a:56:79:d8:
6b:f4:6d:fb:e4:d5:4d:01:84:4b:fe:ce:f9:ef:09:fa:b5:14:
7c:20:81:61:9f:2f:c6:f5:3c:e3:f3:21:3c:7c:b4:71:df:d8:
89:1f:a8:0d:05:90:27:59:7f:46:0c:88:77:c5:52:89:5d:05:
44:18:73:7b:ed:7b:8a:d2:28:fb:b2:c4:5e:5c:f4:63:6e:62:
de:8b:56:66:f1:6a:65:55:d3:4b:86:33:97:36:ec:c0:c1:f4:
a7:49:87:e6:47:57:46:28:f6:d9:29:ad:51:ae:07:47:4c:c1:
01:38:31:b1:9d:a6:1a:2f:ca:70:62:4f:f3:c2:16:4d:21:9e:
a4:a2:00:98:02:ef:97:b4:e6:72:2c:8a:38:ac:3d:45:0e:c2:
01:db:b3:f0:76:d7:a5:5f:a8:68:e0:68:25:ac:46:66:5e:f5:
9b:64:18:47:79:90:c2:ff:38:be:f3:f5:fb:b6:32:18:0b:e5:
9f:2b:f2:19:1f:a0:05:4b:d6:50:51:de:64:2c:f0:82:cf:a0:
e5:da:97:46:e8:1c:22:21:14:c0:f6:a9:c8:73:8a:4f:66:83:
6d:e1:be:de:d3:7f:75:86:a6:d6:f2:6a:91:ec:36:f6:fc:3d:
ca:6b:23:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:11:04 2024 by rpki-client on console-ams.rpki-client.org