Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/00ddaf-3be5-420d-919f-3b4cb975a9bc/1/mRYuZIOAda7DZAB07BiuvX67qCY.roa
File: mRYuZIOAda7DZAB07BiuvX67qCY.roa (raw, json)
Hash identifier: lvmlhvW7TJXOOcmlJdXrV99nbWdit8//rduun8NjCwE=
Subject key identifier: 99:16:2E:64:83:80:75:AE:C3:64:00:74:EC:18:AE:BD:7E:BB:A8:26
Certificate issuer: /CN=b9b87b3b09ccb69a6de20468e90ecbb18f5ecbb6
Certificate serial: 018570151D9FE91F75C4A0BAC74C6CD51B2E
Authority key identifier: B9:B8:7B:3B:09:CC:B6:9A:6D:E2:04:68:E9:0E:CB:B1:8F:5E:CB:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ubh7OwnMtppt4gRo6Q7LsY9ey7Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/00ddaf-3be5-420d-919f-3b4cb975a9bc/1/mRYuZIOAda7DZAB07BiuvX67qCY.roa
Signing time: Mon 02 Jan 2023 01:25:10 +0000
ROA not before: Mon 02 Jan 2023 01:25:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50607
IP address blocks: 185.48.9.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Jan 2023 13:44:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:15:1d:9f:e9:1f:75:c4:a0:ba:c7:4c:6c:d5:1b:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9b87b3b09ccb69a6de20468e90ecbb18f5ecbb6
Validity
Not Before: Jan 2 01:25:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=99162e64838075aec3640074ec18aebd7ebba826
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:2d:67:04:6a:dd:3f:24:06:31:1d:18:a9:b6:
c3:7c:3e:d7:40:e5:85:76:52:78:e1:d7:ba:90:b0:
d8:2a:06:ed:6f:83:1c:c3:5f:d2:41:2e:71:3d:3a:
bf:45:47:e2:54:d3:6f:01:d4:34:32:d0:51:b7:40:
b1:60:26:6a:b3:fe:62:5f:38:d8:3e:fb:a3:ad:a9:
b7:d5:dc:8d:a1:2c:47:17:85:09:61:39:c1:47:3c:
2a:51:b7:9c:fd:2a:91:f7:5c:ac:7f:81:16:d7:98:
50:48:c6:2b:20:13:17:fa:ee:ac:ea:76:ba:67:00:
1b:ca:a0:9e:0b:94:e7:e9:9d:ee:f3:51:e3:b2:a1:
b7:13:f4:9d:03:42:a7:44:ae:98:7b:51:0b:23:c7:
d7:ca:1b:5e:4a:e5:2b:b1:f2:79:c9:47:f6:6e:43:
af:6c:34:c3:7f:65:37:24:9a:83:a2:5c:e1:c9:3b:
b4:62:2a:6f:4c:3d:a4:47:f2:3f:8c:08:c3:a6:e5:
8b:81:e6:cd:30:45:87:0e:e4:6e:67:16:4e:f0:66:
24:07:62:16:f4:b6:a0:16:a0:fc:6a:a1:52:0e:af:
19:01:40:4f:ec:32:91:48:b5:73:b4:36:9b:79:07:
70:41:e6:81:2e:ea:16:d7:1d:01:7d:74:87:4b:59:
ae:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:16:2E:64:83:80:75:AE:C3:64:00:74:EC:18:AE:BD:7E:BB:A8:26
X509v3 Authority Key Identifier:
keyid:B9:B8:7B:3B:09:CC:B6:9A:6D:E2:04:68:E9:0E:CB:B1:8F:5E:CB:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ubh7OwnMtppt4gRo6Q7LsY9ey7Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/00ddaf-3be5-420d-919f-3b4cb975a9bc/1/mRYuZIOAda7DZAB07BiuvX67qCY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/00ddaf-3be5-420d-919f-3b4cb975a9bc/1/ubh7OwnMtppt4gRo6Q7LsY9ey7Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.48.9.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:72:b5:c7:f0:3c:f0:17:bf:a5:e7:16:68:79:1f:0d:c2:cb:
f6:94:93:4a:5a:c1:91:f5:41:97:b4:f5:82:ed:38:a3:13:ac:
e6:6e:62:b9:5e:32:eb:9a:8b:37:36:b0:27:f1:65:c1:70:f4:
9e:7a:33:31:70:2a:88:bc:6b:12:e8:3e:4d:52:b5:57:96:cb:
0d:1b:d8:c0:c2:30:da:44:65:32:f1:3a:49:ff:83:e6:c4:9a:
7d:61:56:f9:14:74:d5:fe:ac:6d:87:a2:fb:ef:a6:a3:b6:5b:
df:44:12:9e:e1:91:42:d1:dd:99:89:8d:4f:5c:42:36:10:7d:
59:72:55:da:c4:8f:4d:12:c0:bc:17:71:3f:9b:da:51:87:2c:
85:22:21:9b:25:11:86:45:eb:08:e8:d5:e7:1e:a3:59:d3:74:
47:6f:2e:e6:a2:da:70:ad:21:91:37:00:5e:eb:95:4a:77:fe:
da:35:84:c3:29:2d:8b:d2:55:6a:fe:29:f7:1d:48:29:dd:91:
b7:de:2f:28:a1:3c:13:64:b5:7b:7c:60:aa:f7:b6:4f:2a:45:
fd:d9:28:7e:94:0d:f7:d3:5b:50:76:3e:43:20:bd:dc:97:6f:
82:60:86:ac:23:8e:40:af:0e:e4:94:c1:83:a6:41:db:8c:4d:
fa:27:de:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:11 2024 by rpki-client on console-fra.rpki-client.org