Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/mNdzQWwaFPtOjLdcotAhvCeGpmk.roa
File: mNdzQWwaFPtOjLdcotAhvCeGpmk.roa (raw, json)
Hash identifier: Y+cj68R2PlCeFLJ2zWjuIF2xo7/AZbrDKK4wlphqNiM=
Subject key identifier: 98:D7:73:41:6C:1A:14:FB:4E:8C:B7:5C:A2:D0:21:BC:27:86:A6:69
Certificate issuer: /CN=fcf53402fa76fa06376cdea6bcd395e180079db7
Certificate serial: 01856DE64B8E9D9F636B4C2CFD091AE30EC3
Authority key identifier: FC:F5:34:02:FA:76:FA:06:37:6C:DE:A6:BC:D3:95:E1:80:07:9D:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_PU0Avp2-gY3bN6mvNOV4YAHnbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/mNdzQWwaFPtOjLdcotAhvCeGpmk.roa
Signing time: Sun 01 Jan 2023 15:14:47 +0000
ROA not before: Sun 01 Jan 2023 15:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39247
IP address blocks: 195.72.147.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:e6:4b:8e:9d:9f:63:6b:4c:2c:fd:09:1a:e3:0e:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fcf53402fa76fa06376cdea6bcd395e180079db7
Validity
Not Before: Jan 1 15:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=98d773416c1a14fb4e8cb75ca2d021bc2786a669
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:48:b6:4b:a1:da:f5:d4:28:54:76:35:5d:9f:
ed:83:38:ff:17:96:94:16:49:23:b9:4e:1d:cc:dd:
98:01:b6:b7:f0:a6:c2:f5:90:33:de:dc:9b:b3:6f:
58:0e:74:c7:cc:a6:d7:16:66:f6:34:b0:dc:f8:a9:
84:d1:01:e1:59:d2:87:7b:c4:37:63:88:ec:6d:74:
ef:1e:c4:1f:8b:e0:93:38:9f:df:44:dd:e1:79:62:
28:d4:19:db:28:5f:1f:82:cc:5f:d8:7e:4a:f8:e0:
9c:19:d6:10:cd:7b:2a:23:f2:96:fe:b6:51:67:04:
3b:6e:fb:eb:51:c8:19:a6:f9:1d:cc:47:16:64:33:
ca:b5:5a:71:2c:9c:e1:2b:60:8b:11:b2:f8:ce:12:
e1:eb:e9:a4:d3:f5:a4:5b:ff:2c:e7:21:6c:20:49:
c7:29:aa:a5:9a:5b:97:5f:e2:2a:c2:02:b5:72:68:
37:7f:c2:b0:7e:68:79:c8:fe:33:4a:30:fd:a2:6e:
31:be:69:5a:24:5d:f5:59:7e:87:f5:08:7b:0b:4d:
91:90:c2:c0:40:bf:ab:33:61:0d:94:49:da:92:31:
85:70:d4:d3:ba:be:4b:2a:60:a0:7d:f7:5e:99:ba:
ab:87:55:11:fc:7b:69:18:0a:2d:a1:f6:11:3d:4f:
7b:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:D7:73:41:6C:1A:14:FB:4E:8C:B7:5C:A2:D0:21:BC:27:86:A6:69
X509v3 Authority Key Identifier:
keyid:FC:F5:34:02:FA:76:FA:06:37:6C:DE:A6:BC:D3:95:E1:80:07:9D:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_PU0Avp2-gY3bN6mvNOV4YAHnbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/mNdzQWwaFPtOjLdcotAhvCeGpmk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.72.147.0/24
Signature Algorithm: sha256WithRSAEncryption
43:ae:16:e7:1e:c1:c2:d1:8b:a9:59:77:70:a9:67:24:ce:a9:
a0:68:ce:df:cc:58:fd:75:91:52:80:19:6c:31:8d:fc:33:47:
b5:5e:e7:4b:9f:7b:5c:62:bb:80:aa:db:6b:05:2f:6d:2a:61:
d9:14:8c:e6:10:de:47:ff:35:28:6f:6a:47:4c:81:96:7d:75:
a2:0e:14:c7:82:39:06:db:e8:66:c0:3f:5d:fa:b4:94:b9:a2:
06:bd:1f:7c:57:16:27:bc:bb:44:28:c5:59:ae:a4:d8:34:f7:
0a:d8:43:c9:b7:1f:8c:bb:ce:60:37:aa:db:32:6e:a4:f0:ea:
fb:5f:d3:23:cf:17:8f:89:c7:29:03:33:a8:61:0c:49:4d:c5:
5f:41:4b:33:82:91:b6:34:51:d3:1a:9c:28:c8:6c:3f:dc:ba:
0f:3a:a2:c3:aa:66:8c:c8:31:de:d0:99:82:75:05:33:23:7b:
70:aa:0c:4b:79:ab:75:21:1e:01:58:bc:bf:58:f4:c3:88:d1:
f6:8c:2a:fd:52:4e:69:d6:4d:ac:b3:27:20:c7:d0:a3:f0:a6:
b0:06:38:88:8f:54:0e:6b:03:7e:5b:fd:b6:13:b0:2d:d1:fa:
24:44:af:96:f7:df:60:14:59:85:75:4e:3f:55:8d:72:f0:0f:
c2:92:76:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:20 2024 by rpki-client on console-fra.rpki-client.org