Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/11dc71-8170-45b5-8c5b-4d73730f7d32/1/MtQxpBXAlyjGM6cniv1J6nXF2Cw.roa
File: MtQxpBXAlyjGM6cniv1J6nXF2Cw.roa (raw, json)
Hash identifier: Q6UlGrHzeTNzya8XICyn9ZVdUjmSmLj2/45wuVQ3fYY=
Subject key identifier: 32:D4:31:A4:15:C0:97:28:C6:33:A7:27:8A:FD:49:EA:75:C5:D8:2C
Certificate issuer: /CN=21698c1cdc66dc285d0f807629c46261a88b2de7
Certificate serial: 018570797A45DF5CA05F8F3D2E7902E19922
Authority key identifier: 21:69:8C:1C:DC:66:DC:28:5D:0F:80:76:29:C4:62:61:A8:8B:2D:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IWmMHNxm3ChdD4B2KcRiYaiLLec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/11dc71-8170-45b5-8c5b-4d73730f7d32/1/MtQxpBXAlyjGM6cniv1J6nXF2Cw.roa
Signing time: Mon 02 Jan 2023 03:14:47 +0000
ROA not before: Mon 02 Jan 2023 03:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34950
IP address blocks: 193.164.88.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:7a:45:df:5c:a0:5f:8f:3d:2e:79:02:e1:99:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21698c1cdc66dc285d0f807629c46261a88b2de7
Validity
Not Before: Jan 2 03:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=32d431a415c09728c633a7278afd49ea75c5d82c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:08:43:ac:f3:20:a1:8b:95:c2:88:68:5d:7c:
bd:3a:94:04:2f:5b:16:85:6f:c1:cd:e5:fd:f8:b7:
56:62:45:33:31:75:a2:77:e5:23:47:57:08:76:2f:
7e:13:07:c9:46:16:f8:60:a6:06:ea:47:1c:70:d2:
15:03:52:56:4e:8f:c9:ac:51:66:3f:6a:ba:36:c0:
4a:6c:3e:b9:f6:c2:28:72:a8:c9:df:c0:b2:d4:5a:
d2:97:70:4d:b6:92:96:3d:fe:a5:e6:23:88:91:d2:
2e:8c:a3:91:07:1f:6a:f1:4a:58:1d:20:b0:0f:eb:
88:e5:68:8a:11:9b:72:09:fd:d3:de:db:00:39:6b:
27:20:cc:05:bb:c9:d6:6c:8b:bf:e1:7a:07:86:30:
ed:45:e9:ea:a9:4d:78:55:0d:08:31:0a:6a:89:4a:
c8:1c:9d:b2:13:a2:dc:e9:c6:d7:39:af:0a:2d:e1:
e8:e4:57:72:5a:c0:b7:65:29:7c:47:e6:a6:fd:4d:
67:5e:de:72:92:48:3a:40:40:fe:22:32:1d:c1:f5:
45:32:48:a4:9c:47:87:87:ec:d5:24:31:c9:96:ca:
0b:20:a3:0b:c2:8d:f1:ce:17:31:d7:50:5d:44:e3:
80:13:25:c4:0b:fb:ca:3a:14:a0:2b:ee:e5:f1:d0:
c1:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:D4:31:A4:15:C0:97:28:C6:33:A7:27:8A:FD:49:EA:75:C5:D8:2C
X509v3 Authority Key Identifier:
keyid:21:69:8C:1C:DC:66:DC:28:5D:0F:80:76:29:C4:62:61:A8:8B:2D:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IWmMHNxm3ChdD4B2KcRiYaiLLec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/11dc71-8170-45b5-8c5b-4d73730f7d32/1/MtQxpBXAlyjGM6cniv1J6nXF2Cw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/11dc71-8170-45b5-8c5b-4d73730f7d32/1/IWmMHNxm3ChdD4B2KcRiYaiLLec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.164.88.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:7e:3b:3e:5e:6e:cd:80:7a:0b:bb:5e:16:ed:cc:08:58:9f:
39:8b:b5:10:56:4c:f9:52:90:c3:43:ff:e5:e2:dc:60:1f:ff:
e0:66:14:4f:7d:f9:d4:8c:30:c8:cb:ec:f8:22:95:bd:6f:b3:
32:ef:d4:92:f6:40:e7:7d:e6:47:98:b7:9f:fa:3e:6f:69:de:
72:7f:f2:af:7c:35:54:02:bd:45:3c:c3:d4:1d:b6:ed:58:86:
85:40:00:09:a9:22:1c:ff:06:d6:c6:d7:1a:c0:a3:9a:75:25:
bc:ad:3b:2d:46:d4:32:f1:ba:76:d4:94:02:a8:69:a0:6b:10:
81:56:71:a8:3d:63:d8:39:6a:34:41:05:b5:4d:a0:a7:71:a5:
e2:a7:f8:22:22:17:e4:20:4b:c8:a7:b6:28:32:5d:e5:d9:e7:
00:95:b5:d8:bc:94:95:cf:04:a6:0d:54:93:88:0f:ed:a8:7b:
26:16:d2:7d:c3:86:e6:ab:85:35:6d:85:f9:7c:ec:dd:38:22:
72:5c:d9:1e:33:ba:d8:11:14:89:27:1c:6f:70:b9:82:41:fe:
49:0c:1e:24:f9:4f:f0:bf:d1:56:76:31:86:ea:39:c0:92:4a:
4c:74:18:01:6a:03:6a:5f:2c:31:6e:71:43:a3:02:d0:0a:40:
17:5e:8c:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:37:26 2024 by rpki-client on console-fra.rpki-client.org