Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/MMbssIzd6n9mcNX_Pha5j2t46Ms.roa
File: MMbssIzd6n9mcNX_Pha5j2t46Ms.roa (raw, json)
Hash identifier: kNQUTEwQHWjT3POXn68gEXIymF6mDSrLDOkYoZQFKmU=
Subject key identifier: 30:C6:EC:B0:8C:DD:EA:7F:66:70:D5:FF:3E:16:B9:8F:6B:78:E8:CB
Certificate issuer: /CN=5f1f213b8c792b7e013fa5041f5b89971e6f62d6
Certificate serial: 01863145E2E51374DFE4207C21604318C843
Authority key identifier: 5F:1F:21:3B:8C:79:2B:7E:01:3F:A5:04:1F:5B:89:97:1E:6F:62:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xx8hO4x5K34BP6UEH1uJlx5vYtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/MMbssIzd6n9mcNX_Pha5j2t46Ms.roa
Signing time: Wed 08 Feb 2023 13:45:08 +0000
ROA not before: Wed 08 Feb 2023 13:45:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43431
IP address blocks: 193.8.236.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 04 Apr 2023 16:23:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:31:45:e2:e5:13:74:df:e4:20:7c:21:60:43:18:c8:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f1f213b8c792b7e013fa5041f5b89971e6f62d6
Validity
Not Before: Feb 8 13:45:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=30c6ecb08cddea7f6670d5ff3e16b98f6b78e8cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:3a:1b:f6:11:8e:57:80:a2:c6:27:c1:d4:51:
0e:99:d5:94:a2:60:21:cc:e1:f1:0b:b5:22:4d:a0:
c7:54:fb:44:cf:f1:1a:d7:2c:d7:e9:c3:7d:9d:ad:
68:21:77:a6:63:a9:88:e2:1b:eb:d4:9b:85:27:19:
be:e0:f5:e8:1d:1e:e8:cf:2c:db:49:4c:3e:3c:2d:
da:6d:86:50:a2:08:72:df:4b:9b:10:78:57:82:52:
8d:4d:20:53:d1:28:fd:6c:23:ff:0b:b2:8a:ab:26:
72:44:4e:4f:a2:d3:65:da:79:09:6b:75:2b:84:65:
43:34:08:e9:45:fc:78:61:d8:5b:dc:02:6e:2e:cd:
91:65:67:e2:8b:b6:fd:4e:3b:06:4e:76:ed:39:a4:
21:ed:d5:6f:5c:93:80:09:03:9e:ab:40:55:ce:1f:
e8:95:f4:b6:8d:e6:93:4e:28:1b:2a:80:da:b6:96:
93:19:db:fc:c6:7e:67:d9:db:57:ad:ca:3b:32:6e:
2b:64:ea:fb:43:d5:c4:72:13:29:05:94:41:f5:da:
33:01:b3:44:4e:e1:4e:58:60:d4:7b:9b:6c:2c:37:
01:13:46:8a:80:78:34:d5:f9:55:3e:f1:b6:06:a4:
8d:c9:e8:5b:9f:79:5c:15:38:d3:6a:94:b3:b7:0a:
1a:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:C6:EC:B0:8C:DD:EA:7F:66:70:D5:FF:3E:16:B9:8F:6B:78:E8:CB
X509v3 Authority Key Identifier:
keyid:5F:1F:21:3B:8C:79:2B:7E:01:3F:A5:04:1F:5B:89:97:1E:6F:62:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xx8hO4x5K34BP6UEH1uJlx5vYtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/MMbssIzd6n9mcNX_Pha5j2t46Ms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.8.236.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:30:17:c5:54:a6:94:2e:f7:3d:f9:c9:2e:99:4c:d7:a4:07:
3f:03:b9:c0:1e:d6:5b:e4:d7:12:c2:69:6f:43:ba:93:5f:c1:
2f:58:4e:c1:63:dc:22:cd:2b:1c:3f:90:f8:7f:99:db:36:44:
21:1d:f8:5a:03:5f:96:c4:c6:d4:45:ef:f5:e1:39:7a:df:48:
b4:d7:70:ac:aa:0e:f6:df:70:59:a1:2c:b2:cd:1b:75:cd:c0:
0d:5e:7a:dc:2c:7b:4d:4f:5b:0b:79:ca:9b:de:14:61:c4:ee:
71:21:a8:2d:11:6d:0f:15:10:30:35:c9:ae:9a:34:b0:da:63:
20:9a:38:37:33:f8:d1:ef:70:21:1c:6d:83:3c:ed:87:f5:e4:
04:04:90:a7:ba:38:ae:b2:70:4a:bb:4f:7a:56:92:78:66:4c:
b4:42:47:c5:45:17:22:4d:7c:ae:98:b6:ab:41:ea:a0:d6:bc:
a4:0c:d8:d4:a9:2a:65:b6:9e:c9:3c:db:dd:f1:ae:f2:64:71:
4c:cb:59:72:1b:45:ee:5a:29:50:8a:18:04:82:b2:d6:fd:74:
55:12:a4:dc:7c:4a:29:e7:7e:26:cd:0f:99:bf:76:56:38:30:
4e:2a:19:21:36:d1:b8:be:c5:03:93:82:00:67:e0:57:57:34:
53:47:38:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:22 2024 by rpki-client on console-ams.rpki-client.org