Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/MBlX_4scDrLD8ESC8U6AzKEZ-5g.roa
File: MBlX_4scDrLD8ESC8U6AzKEZ-5g.roa (raw, json)
Hash identifier: c/fHPpzHi1clIHABnlBLECQWpcIuqN1e6uLM1pBAYf8=
Subject key identifier: 30:19:57:FF:8B:1C:0E:B2:C3:F0:44:82:F1:4E:80:CC:A1:19:FB:98
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018C7F269E66823A502FE3540B1526CA9568
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/MBlX_4scDrLD8ESC8U6AzKEZ-5g.roa
Signing time: Mon 18 Dec 2023 22:58:06 +0000
ROA not before: Mon 18 Dec 2023 22:58:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198055
IP address blocks: 2a0e:b107:1d12::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:7f:26:9e:66:82:3a:50:2f:e3:54:0b:15:26:ca:95:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Dec 18 22:58:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=301957ff8b1c0eb2c3f04482f14e80cca119fb98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:83:96:5b:85:d4:cf:f7:61:22:de:21:20:2b:
07:ea:51:2d:4e:82:e7:f4:95:40:1f:80:4d:7f:99:
37:93:49:dc:57:01:0f:83:7d:7b:db:cb:e7:0a:15:
f7:8f:be:6a:fe:3d:7b:67:a9:0f:5e:cd:f8:01:1f:
58:30:5b:5b:54:4b:e4:ff:84:47:70:f3:65:ec:93:
20:fd:0a:54:1a:eb:a5:c8:01:9e:ef:13:4c:0b:8b:
86:b4:02:c2:30:b0:e2:6f:e1:89:d3:1e:f3:96:2a:
81:d7:d5:bb:46:c1:bd:55:e6:66:94:62:20:12:44:
5a:5d:ae:ef:eb:68:99:82:e8:8e:01:22:25:3e:e2:
24:7d:7b:26:94:d5:4a:76:02:93:61:6c:bb:78:07:
08:af:33:5e:18:e7:0d:18:9e:fc:30:a7:ad:fb:ce:
23:37:51:65:44:58:8d:75:f3:5a:9d:dd:87:ae:69:
51:0f:81:38:9e:aa:38:f0:01:27:87:03:55:9e:0c:
c7:44:88:3e:2c:45:ae:40:bc:16:b8:3b:a6:1e:68:
0c:29:b9:f8:e5:5c:cc:50:9e:ca:ba:d6:be:6f:70:
0a:a0:ec:04:71:c1:34:66:d1:5d:2a:39:dc:09:f1:
a1:a3:1c:18:a1:50:ec:bb:d5:9b:17:17:37:02:9e:
4b:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:19:57:FF:8B:1C:0E:B2:C3:F0:44:82:F1:4E:80:CC:A1:19:FB:98
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/MBlX_4scDrLD8ESC8U6AzKEZ-5g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1d12::/48
Signature Algorithm: sha256WithRSAEncryption
5b:b7:37:55:91:6f:23:af:87:ac:92:e2:47:5c:e4:7d:22:3f:
a9:32:56:4a:d4:57:a7:91:5f:ef:78:ad:13:ba:9c:40:e8:e1:
38:e3:96:c7:53:22:91:b4:51:87:4b:18:89:57:8f:40:93:8b:
da:f9:d0:73:e4:54:84:74:3d:4b:7c:89:f1:82:82:7f:51:e5:
ff:78:19:08:45:fc:0b:2a:c7:ee:24:6e:cf:26:d8:0f:9c:61:
0d:cd:38:41:fd:52:15:c5:58:df:bf:dc:2f:11:d0:db:a4:34:
02:74:9e:02:7b:96:c3:1c:e1:75:61:e4:31:4d:d2:e7:d6:a7:
49:7b:20:ed:c4:10:0f:f4:87:02:97:01:4d:6f:fa:42:1d:e1:
3e:f4:b5:cc:e4:7e:ee:7f:da:d3:be:df:7a:17:a7:25:1f:3c:
7d:0a:ab:51:79:58:9d:18:c9:9f:93:79:88:c0:23:0c:c4:2c:
92:47:e7:76:20:a0:ab:5f:c5:71:62:59:ca:f6:4c:47:c1:7e:
5d:b4:81:db:c0:79:22:3e:5c:e6:86:ee:8f:ec:15:07:03:8a:
07:4d:49:92:28:95:e2:de:95:32:f4:23:72:43:40:db:5e:80:
43:6b:7a:67:0c:81:d7:c7:8a:d6:e7:b7:02:d5:6f:7f:8d:f3:
49:c2:77:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Dec 19 18:47:54 2023 by rpki-client on console-ams.rpki-client.org