Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/MdSZdF8UxNcJmM1RucYTK4wRVMc.roa
File: MdSZdF8UxNcJmM1RucYTK4wRVMc.roa (raw, json)
Hash identifier: 1+Voy1txuA5fy5xuVbeFJKpxoGIMZIs3D6hmaF2M66E=
Subject key identifier: 31:D4:99:74:5F:14:C4:D7:09:98:CD:51:B9:C6:13:2B:8C:11:54:C7
Certificate issuer: /CN=529343235581cf4104190da7a0ca174b9c0d0bd5
Certificate serial: 01856F8B862D41615D7517780272744C18ED
Authority key identifier: 52:93:43:23:55:81:CF:41:04:19:0D:A7:A0:CA:17:4B:9C:0D:0B:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UpNDI1WBz0EEGQ2noMoXS5wNC9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/MdSZdF8UxNcJmM1RucYTK4wRVMc.roa
Signing time: Sun 01 Jan 2023 22:54:52 +0000
ROA not before: Sun 01 Jan 2023 22:54:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7155
IP address blocks: 185.84.124.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:8b:86:2d:41:61:5d:75:17:78:02:72:74:4c:18:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529343235581cf4104190da7a0ca174b9c0d0bd5
Validity
Not Before: Jan 1 22:54:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=31d499745f14c4d70998cd51b9c6132b8c1154c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:5a:3e:8c:fd:1a:59:d7:2a:a3:de:82:0f:63:
dc:a3:c7:f1:67:f8:2f:0e:62:4d:5e:46:1a:0e:a7:
d5:77:a8:2f:74:69:6f:8e:14:d4:b9:3c:8a:d6:60:
4e:00:9b:41:2c:2f:cc:51:14:d1:ff:f2:81:e6:50:
c0:0a:73:b2:a5:15:2b:70:e4:72:cb:53:13:cb:ee:
3b:12:fb:fb:84:7d:56:64:20:76:3a:27:2b:11:4f:
92:52:6e:93:47:ca:f3:45:17:4e:c6:70:ed:24:f2:
5e:9d:d1:6f:56:9b:c8:ac:16:25:b8:6b:e9:fb:ab:
87:51:1a:94:9c:6d:30:bf:9f:71:8f:47:c0:17:9a:
cb:9d:79:ac:03:cb:19:33:58:cb:5a:79:1b:15:ba:
b5:80:1d:8d:68:73:c3:9e:c8:f3:a3:a8:79:a8:6f:
bb:2e:5a:f1:4f:1e:e5:bd:31:8c:80:57:02:f8:66:
b5:ec:00:70:e9:08:7b:ed:46:c0:0c:ab:92:5c:5a:
20:a9:17:73:3f:ae:4a:e9:9c:d2:8c:7c:50:0a:d9:
41:6c:de:92:a1:3a:07:9a:a4:1d:69:f5:d8:81:20:
2c:a7:8e:31:49:7d:e2:59:29:ae:d9:6a:1b:6d:41:
ff:7d:a8:2e:d8:45:96:8d:f5:5d:fa:de:2f:f8:54:
51:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:D4:99:74:5F:14:C4:D7:09:98:CD:51:B9:C6:13:2B:8C:11:54:C7
X509v3 Authority Key Identifier:
keyid:52:93:43:23:55:81:CF:41:04:19:0D:A7:A0:CA:17:4B:9C:0D:0B:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UpNDI1WBz0EEGQ2noMoXS5wNC9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/MdSZdF8UxNcJmM1RucYTK4wRVMc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/UpNDI1WBz0EEGQ2noMoXS5wNC9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.84.124.0/22
Signature Algorithm: sha256WithRSAEncryption
6e:ef:c8:44:df:bf:2c:f1:ec:18:b1:ae:9d:24:db:c3:cc:38:
9e:fb:9d:ac:3d:65:7c:7f:02:37:12:69:ab:95:70:20:42:b6:
c7:44:00:a5:23:4e:cb:ab:da:37:95:16:01:9d:50:0b:69:f1:
ce:10:1b:a8:84:1d:e4:a9:a6:45:04:44:b1:d8:bb:ac:32:00:
b9:1e:b0:09:db:5f:37:e2:46:6b:78:fc:9b:aa:03:fa:37:9d:
fe:fb:86:12:59:4f:cf:61:16:a2:37:28:82:6f:f3:f9:f6:c8:
d9:f7:86:c1:cf:b7:a8:37:af:17:39:66:98:12:1b:de:c9:0e:
ca:93:00:6b:5e:84:51:16:62:6f:11:c9:34:bd:5c:9b:cf:59:
4f:b5:e6:f1:69:88:98:b6:fe:26:d5:c5:1d:5f:ae:4d:a9:1f:
89:7a:d5:1d:89:88:e8:5e:26:a3:db:0c:54:4e:42:0f:46:1c:
ea:f2:a0:ae:80:b2:ff:ce:8d:c4:49:99:a6:0b:b0:e1:e5:26:
97:25:1f:aa:84:18:b9:bb:3d:a8:4e:c7:dc:69:0e:95:db:c0:
4b:4b:e0:43:72:9c:c4:9e:45:44:5b:38:7a:0d:70:73:23:d6:
fb:88:4f:5c:77:4f:8a:c3:cf:3c:bc:6f:22:dc:fd:6c:0b:64:
8c:fc:4b:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:08 2023 by rpki-client on console-ams.rpki-client.org