Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/0661d0-8478-44f3-92d2-f0cd98bd4d98/1/MZxUCA8QnfNwy72N1UOoY7VCGJ0.roa
File: MZxUCA8QnfNwy72N1UOoY7VCGJ0.roa (raw, json)
Hash identifier: xTYCsRmpA9xVibvGdkbJ2qE5NnZ3QaH20b9c5gu6h0U=
Subject key identifier: 31:9C:54:08:0F:10:9D:F3:70:CB:BD:8D:D5:43:A8:63:B5:42:18:9D
Certificate issuer: /CN=385e4d3a6709740dd91b98f5590687b5d596d806
Certificate serial: 0186CB31A3AF7065A7F906EF7389C674093D
Authority key identifier: 38:5E:4D:3A:67:09:74:0D:D9:1B:98:F5:59:06:87:B5:D5:96:D8:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OF5NOmcJdA3ZG5j1WQaHtdWW2AY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/0661d0-8478-44f3-92d2-f0cd98bd4d98/1/MZxUCA8QnfNwy72N1UOoY7VCGJ0.roa
Signing time: Fri 10 Mar 2023 11:04:33 +0000
ROA not before: Fri 10 Mar 2023 11:04:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201864
IP address blocks: 146.19.138.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:cb:31:a3:af:70:65:a7:f9:06:ef:73:89:c6:74:09:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=385e4d3a6709740dd91b98f5590687b5d596d806
Validity
Not Before: Mar 10 11:04:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=319c54080f109df370cbbd8dd543a863b542189d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:9d:d9:45:43:72:97:7b:99:88:20:e3:50:a5:
9a:80:17:ef:53:07:8d:f5:2a:98:47:27:5a:02:f9:
8d:c9:b1:91:79:86:99:a1:6e:8f:1c:c9:e4:0f:57:
b5:e5:fa:3d:5c:11:17:e6:a7:9a:2b:1b:8f:0f:63:
62:6b:0a:85:cc:6b:58:0d:cf:18:22:d8:25:1f:97:
f3:2f:77:7a:12:88:b3:46:ce:6f:c1:7f:51:f6:85:
a1:55:b9:46:14:91:e1:f4:45:10:f4:82:19:9f:ff:
6d:f7:a4:8c:3c:78:ee:d9:f3:4d:bb:e5:4a:96:64:
c8:25:b9:61:6b:b9:ab:02:81:24:5e:3d:4b:20:ab:
56:36:91:94:da:56:ae:35:5a:bd:83:b0:74:c4:06:
ca:d7:a4:9e:3f:16:96:a4:ea:0b:66:d6:58:9d:33:
14:96:26:48:92:c0:74:a3:f9:1a:33:a8:5b:93:0b:
21:1e:c8:99:49:17:ea:84:87:e1:b9:50:92:f8:ee:
5d:43:4a:43:12:30:49:73:04:e4:0f:4e:5d:25:2f:
15:81:e3:24:97:bb:6c:bb:5b:3e:99:6e:e6:e7:f9:
76:51:46:c8:78:d9:6b:18:5c:21:63:b5:6b:b6:e0:
1d:aa:92:20:6d:94:b2:5d:73:e0:4e:8c:ca:f4:4e:
15:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:9C:54:08:0F:10:9D:F3:70:CB:BD:8D:D5:43:A8:63:B5:42:18:9D
X509v3 Authority Key Identifier:
keyid:38:5E:4D:3A:67:09:74:0D:D9:1B:98:F5:59:06:87:B5:D5:96:D8:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OF5NOmcJdA3ZG5j1WQaHtdWW2AY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/0661d0-8478-44f3-92d2-f0cd98bd4d98/1/MZxUCA8QnfNwy72N1UOoY7VCGJ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/0661d0-8478-44f3-92d2-f0cd98bd4d98/1/OF5NOmcJdA3ZG5j1WQaHtdWW2AY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.138.0/24
Signature Algorithm: sha256WithRSAEncryption
50:18:b5:ce:59:74:42:84:c2:68:16:dd:0d:33:c7:ff:c1:5b:
40:d2:f4:2a:30:ad:2e:04:7d:90:85:f5:8b:42:00:4b:4d:be:
85:12:ee:0d:3b:a0:2d:9c:d5:d6:00:6e:06:77:b9:8a:68:e6:
e6:76:69:18:07:ed:8d:d3:74:57:bd:6c:40:02:65:32:ed:95:
c9:f7:30:a1:24:91:8d:5e:8d:5d:d6:75:95:5b:a3:cf:2d:b7:
8e:d4:3b:a8:39:45:4e:d0:cf:55:d5:e5:3c:cf:67:3c:88:99:
c0:a5:b5:f6:a5:f0:96:e2:22:b5:13:36:cf:8f:da:f4:12:af:
90:1e:4e:b9:82:00:92:9c:6b:19:ce:f6:80:5a:f0:60:3a:fa:
37:7b:8d:fb:5f:75:a8:f7:32:14:d1:7f:22:ae:25:3e:1b:b4:
3f:72:e9:91:f6:33:60:fe:90:24:0b:d7:d8:b6:1e:6e:1f:14:
aa:e9:da:ab:47:e0:f1:e3:3a:d9:0f:4a:cd:65:09:dc:59:b3:
c3:96:76:34:03:3a:85:2e:1e:79:c1:8a:bc:66:41:0f:67:77:
eb:e8:12:03:4f:58:61:8f:36:82:56:de:66:6f:96:21:d4:76:
18:86:27:5b:9c:bc:fd:c1:69:1c:31:3e:d9:95:50:8b:ab:5f:
34:e3:ca:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:14 2024 by rpki-client on console-fra.rpki-client.org