Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/mzkH2q20KZlfRrsx1Jel6txUY8w.roa
File: mzkH2q20KZlfRrsx1Jel6txUY8w.roa (raw, json)
Hash identifier: Wm+vX4X3haf/7OkZ0z/8Gh03YUWWylMnlwV0oawbLnk=
Subject key identifier: 9B:39:07:DA:AD:B4:29:99:5F:46:BB:31:D4:97:A5:EA:DC:54:63:CC
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 01857095AFF08DEDDF8D6B55524C6DADB62A
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/mzkH2q20KZlfRrsx1Jel6txUY8w.roa
Signing time: Mon 02 Jan 2023 03:45:36 +0000
ROA not before: Mon 02 Jan 2023 03:45:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209668
IP address blocks: 92.253.232.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:af:f0:8d:ed:df:8d:6b:55:52:4c:6d:ad:b6:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9b3907daadb429995f46bb31d497a5eadc5463cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:1e:31:13:a8:a8:8f:75:51:cb:ad:1e:b5:90:
67:cd:17:b8:ba:f2:00:c6:3e:5b:de:c8:75:ff:f2:
3a:45:37:1f:d0:3f:1b:30:bd:17:bd:18:58:1d:ca:
b8:20:d7:46:fc:b0:a0:19:17:9d:b8:d6:77:ac:ef:
44:ae:36:ea:43:14:c2:fa:3a:bb:b0:11:92:72:9b:
aa:f5:8d:34:b9:46:6e:13:5e:0a:f6:c5:45:8a:a1:
f5:ca:f4:0e:84:97:93:cf:15:ee:93:19:ac:01:18:
5c:bb:6d:36:63:d7:39:36:e8:26:03:d9:42:18:63:
29:11:77:bf:d4:04:e7:73:cd:fa:08:da:a4:a7:7d:
7d:b3:a9:0e:57:d4:e6:1f:f9:0a:5d:44:4c:a9:73:
74:07:9e:ed:fe:e1:60:61:3b:d1:88:98:62:2d:e2:
d7:f6:53:79:42:89:c4:8f:96:55:46:7c:65:04:55:
24:43:4a:50:86:f7:42:2d:17:51:86:c3:a0:aa:20:
1c:2d:70:6f:98:48:56:85:ca:8d:bd:d9:b9:d6:c4:
77:d5:d8:de:29:de:7b:9e:a6:81:91:6a:18:89:68:
54:27:ed:bc:ca:69:4f:f6:a7:9b:ab:6f:8c:35:17:
fd:12:c5:af:55:3d:94:d4:bf:6f:2b:7c:06:bf:b9:
c4:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:39:07:DA:AD:B4:29:99:5F:46:BB:31:D4:97:A5:EA:DC:54:63:CC
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/mzkH2q20KZlfRrsx1Jel6txUY8w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.253.232.0/24
Signature Algorithm: sha256WithRSAEncryption
93:0e:f4:70:26:11:1c:e4:f7:05:13:b5:4e:fc:88:2c:c1:86:
4d:31:f9:f6:fc:83:c4:d2:4c:df:f3:d6:29:91:80:a3:77:3c:
22:9f:3e:f5:c5:57:23:69:61:df:b1:bf:27:26:80:da:6a:31:
89:14:5a:1a:37:3d:f6:99:d1:de:db:62:5c:00:4f:f6:cc:0b:
39:cf:0e:69:71:c7:9e:84:8b:4b:6c:d1:c9:27:a9:e3:f0:5a:
09:80:91:61:c6:80:a7:4d:49:4a:99:1b:3c:e3:cf:07:7b:5b:
2e:3c:79:93:75:1a:e5:54:a0:04:7f:46:ed:f0:53:80:fc:ee:
07:ba:ff:52:e0:da:95:05:fe:63:1f:9b:a8:b4:f5:c6:bc:7e:
78:bb:f5:40:7f:ac:a6:1f:f6:79:59:34:50:47:a3:2a:9f:56:
8d:cf:9c:b9:0d:96:25:32:d6:43:2b:27:76:41:4d:f9:76:48:
36:24:df:fe:c5:8f:b4:1b:ca:5c:06:fa:b7:4e:bf:27:58:21:
6f:1d:78:e5:9d:64:f7:27:d3:fd:c9:d4:b5:e1:05:ac:d5:6d:
27:29:fa:c8:f6:13:ef:6c:d8:14:0d:2b:4a:7d:29:98:e6:a8:
84:0c:5a:e8:c5:4e:a5:47:f1:7d:2b:8b:dc:00:72:2d:48:35:
2c:80:23:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:21:01 2024 by rpki-client on console-ams.rpki-client.org