Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/MzJTidpSmxMrMacRprIDpFflqHY.roa
File: MzJTidpSmxMrMacRprIDpFflqHY.roa (raw, json)
Hash identifier: u9MgJO9KxK8w0dVMMj1AS+2jpwrlkiCAq9/x2+dSFp8=
Subject key identifier: 33:32:53:89:DA:52:9B:13:2B:31:A7:11:A6:B2:03:A4:57:E5:A8:76
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 018DCB99B5178E473822731892FA6E52A1FB
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/MzJTidpSmxMrMacRprIDpFflqHY.roa
Signing time: Wed 21 Feb 2024 12:17:44 +0000
ROA not before: Wed 21 Feb 2024 12:17:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47750
IP address blocks: 91.247.177.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 Feb 2024 04:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:cb:99:b5:17:8e:47:38:22:73:18:92:fa:6e:52:a1:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Feb 21 12:17:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=33325389da529b132b31a711a6b203a457e5a876
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:29:9e:d4:17:a3:78:cf:53:df:52:c8:68:4a:
73:f7:46:61:c8:06:e6:52:ae:08:62:b9:9d:29:d0:
b3:22:89:b4:22:8c:b6:32:45:38:eb:46:95:67:1b:
11:8d:68:8e:da:48:7d:2e:d3:a9:4f:47:72:9a:ec:
02:4b:44:27:c0:a6:87:48:91:1d:87:a4:ba:0c:0a:
86:fc:0b:3c:36:51:6b:0f:45:cf:67:55:f4:f9:aa:
69:ef:05:99:cc:8c:b1:9c:d9:90:9e:b8:98:bf:14:
0a:12:b5:59:87:d9:44:42:ad:71:47:1e:94:a1:9e:
9d:59:c4:cc:c3:53:b7:9a:77:f4:52:a7:33:79:2f:
0c:77:74:38:f2:70:27:bc:d1:2f:db:dd:37:38:d7:
df:39:73:19:2a:ff:be:04:be:64:57:8a:27:01:49:
5a:89:64:e3:8d:8c:f1:1c:46:66:77:e3:b2:ad:9c:
c8:74:be:44:89:41:30:f5:6e:89:75:bc:b4:4f:11:
cb:c4:4c:48:65:e6:80:a7:a1:22:6f:08:e8:e9:ff:
b1:31:17:0b:c8:ca:29:79:67:4f:e4:1a:c0:9c:67:
6c:9c:21:39:81:f7:91:83:77:63:28:cf:43:42:f4:
81:a1:09:75:13:4b:35:4b:b2:42:17:de:7f:fc:3d:
66:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:32:53:89:DA:52:9B:13:2B:31:A7:11:A6:B2:03:A4:57:E5:A8:76
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/MzJTidpSmxMrMacRprIDpFflqHY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.247.177.0/24
Signature Algorithm: sha256WithRSAEncryption
00:d8:20:d0:52:c5:b4:a9:d2:46:58:85:f5:30:8b:aa:7a:77:
8b:cf:82:28:c5:30:ec:c6:5b:fe:f4:64:aa:8f:c3:e1:6b:b2:
61:9b:ec:c7:7d:61:f1:2f:77:1d:ed:47:66:51:4d:cd:a7:be:
37:30:70:e1:d0:ca:83:3f:92:91:80:46:c7:8d:d9:90:a8:f1:
03:7f:92:19:c5:dc:63:a4:7f:1f:85:b4:08:49:6b:82:b2:55:
68:ba:17:6a:c5:cb:2f:74:f4:28:14:06:33:88:20:97:d4:de:
c8:27:71:7f:18:46:21:fd:73:8a:38:e2:cd:50:f6:bf:4f:3e:
8f:91:57:18:8d:a9:47:34:cc:b3:ba:e6:19:7c:0a:cf:2e:9e:
21:a5:fe:6b:b6:36:7f:4c:b6:18:fd:c1:0c:e5:b2:a9:14:a8:
36:63:2e:ab:60:2b:14:8e:46:45:c4:e6:00:47:2a:d2:da:37:
96:36:01:1b:57:fc:06:5f:25:48:c7:84:6b:1c:63:b6:53:d2:
5e:0b:53:3d:a1:56:bb:c9:e5:bd:f5:2b:bc:73:76:4f:c0:de:
db:d2:83:ec:88:b7:96:82:e6:fe:f2:e6:41:57:9a:ee:78:dc:
bd:d2:a6:70:33:af:4d:eb:1a:05:79:8e:1b:f5:92:81:e3:0f:
3e:cc:38:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 23 05:17:01 2024 by rpki-client on console-fra.rpki-client.org