Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/2mdd_bAEJqj_9PWmT0fodlMHyio.roa
File: 2mdd_bAEJqj_9PWmT0fodlMHyio.roa (raw, json)
Hash identifier: 8YH1UdcxU9yGVnLLzy0fBlch1ZSopVCfKLMpGUaeEO8=
Subject key identifier: DA:67:5D:FD:B0:04:26:A8:FF:F4:F5:A6:4F:47:E8:76:53:07:CA:2A
Certificate issuer: /CN=8338ef41b2c0105a91ccbb9c89337faeb129ff84
Certificate serial: 01856C65F998D7FE8134BB7EF56744AC6679
Authority key identifier: 83:38:EF:41:B2:C0:10:5A:91:CC:BB:9C:89:33:7F:AE:B1:29:FF:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/2mdd_bAEJqj_9PWmT0fodlMHyio.roa
Signing time: Sun 01 Jan 2023 08:15:00 +0000
ROA not before: Sun 01 Jan 2023 08:15:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211716
IP address blocks: 79.133.96.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:65:f9:98:d7:fe:81:34:bb:7e:f5:67:44:ac:66:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8338ef41b2c0105a91ccbb9c89337faeb129ff84
Validity
Not Before: Jan 1 08:15:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=da675dfdb00426a8fff4f5a64f47e8765307ca2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:49:44:5b:6e:5d:53:ab:48:2c:5a:dd:1e:54:
c0:f4:07:7a:8d:4f:31:87:c8:54:ba:b0:30:90:db:
c9:d8:d9:50:d9:88:d8:3e:67:21:b0:48:66:5e:10:
34:00:a8:f7:44:8c:70:bd:ab:2e:cc:01:c2:e1:61:
0e:f1:78:3c:41:1f:a7:60:10:aa:6a:c7:1e:3d:f9:
c6:f3:e1:ea:0f:ac:81:30:49:92:32:9c:c6:64:14:
e6:9f:3e:62:a6:67:95:20:74:65:f0:34:9b:48:12:
d3:d8:c8:a2:68:f2:6c:64:58:02:34:de:93:3e:d2:
f5:56:b5:53:9f:7c:87:0c:8d:c5:5d:a2:76:b1:ab:
99:c6:de:40:5e:c0:87:13:e7:28:3d:2f:bd:b9:3a:
c5:a4:27:3c:28:d6:fe:c4:a7:e2:1c:ff:08:20:ee:
93:bd:0a:f3:23:ab:9c:f7:05:1b:43:9c:69:d4:94:
55:18:9c:c1:57:0f:c4:9b:fc:23:ed:66:b6:62:32:
7a:4b:73:4b:da:56:f3:1c:64:7e:19:e8:b7:0a:9c:
aa:0b:2f:8c:34:9b:b9:20:91:5b:7a:fe:25:12:1f:
80:fb:3d:a3:86:e8:83:c9:30:61:9c:07:36:80:bb:
c7:ae:2a:a3:3d:19:0e:f5:63:66:67:9d:24:11:b6:
ea:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:67:5D:FD:B0:04:26:A8:FF:F4:F5:A6:4F:47:E8:76:53:07:CA:2A
X509v3 Authority Key Identifier:
keyid:83:38:EF:41:B2:C0:10:5A:91:CC:BB:9C:89:33:7F:AE:B1:29:FF:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/2mdd_bAEJqj_9PWmT0fodlMHyio.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/gzjvQbLAEFqRzLuciTN_rrEp_4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.133.96.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:4c:02:77:19:6f:3e:18:e5:ad:38:6d:9f:45:59:7b:95:e7:
18:f8:f0:3c:9c:2e:91:7d:98:fb:94:02:c3:58:c6:c4:96:cd:
71:73:37:ad:af:05:c2:a5:a4:03:4c:fb:d3:5e:4b:d8:3e:cc:
28:1f:30:7f:30:cf:4b:d4:cc:28:d9:d2:1f:d2:c9:2d:fd:bd:
e8:33:44:e8:90:56:69:3a:8c:74:dd:54:43:30:bd:c7:2e:04:
d9:b7:db:cc:ee:81:20:a7:e3:b4:e6:5f:2c:ca:e4:76:32:5a:
2d:2f:32:06:b8:18:43:c2:ba:e4:66:cd:7c:69:74:0d:32:48:
54:18:4f:08:fa:6a:33:a0:aa:c6:40:09:9f:e6:1c:c7:56:05:
ca:d2:5b:12:b8:9f:5e:54:ee:f9:0d:2e:c4:34:f8:eb:65:09:
ff:f7:64:16:4d:e4:4e:7e:00:d7:7c:86:9d:10:b7:c0:6d:fe:
54:13:9a:ae:60:e5:1a:73:a7:ba:72:41:99:b3:cc:85:dd:7e:
81:74:ba:87:be:e1:28:8f:2e:cf:a3:9f:1f:b2:43:85:01:b9:
96:09:94:dc:fe:6c:62:cd:18:a5:7c:28:ca:ee:65:2b:c7:7f:
c9:99:5e:d5:9b:b0:7c:3d:1c:d1:88:99:fb:42:45:fb:f1:6f:
68:4c:46:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:22 2024 by rpki-client on console-ams.rpki-client.org