Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/MrPijy1bP66FGzsjgYVOF92SIcA.roa
File: MrPijy1bP66FGzsjgYVOF92SIcA.roa (raw, json)
Hash identifier: mpCM0JgugWd/2Z+ZjxwHHgrIri5gepQViQL6IfJNWLY=
Subject key identifier: 32:B3:E2:8F:2D:5B:3F:AE:85:1B:3B:23:81:85:4E:17:DD:92:21:C0
Certificate issuer: /CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Certificate serial: 018570707E928E934EDF95D252672F501EF9
Authority key identifier: CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/MrPijy1bP66FGzsjgYVOF92SIcA.roa
Signing time: Mon 02 Jan 2023 03:04:58 +0000
ROA not before: Mon 02 Jan 2023 03:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2874
IP address blocks: 57.79.0.0/16 maxlen: 32
57.86.0.0/16 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:7e:92:8e:93:4e:df:95:d2:52:67:2f:50:1e:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Validity
Not Before: Jan 2 03:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=32b3e28f2d5b3fae851b3b2381854e17dd9221c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:74:36:e8:ba:16:36:5e:c9:e8:f1:f2:dc:1e:
6d:67:34:c3:a9:a1:64:41:97:ef:74:cd:59:58:ae:
b4:27:00:b6:0c:dc:49:b7:3d:04:53:2f:8a:19:76:
11:86:e7:a5:0c:67:df:aa:90:18:3e:bd:8a:ec:92:
30:dd:bf:f2:b8:80:41:b8:c9:4f:c4:bd:8f:45:b5:
fa:73:e9:50:6f:64:4c:59:72:fb:df:29:7e:7f:6a:
f0:d3:cc:3c:36:9e:80:39:9d:95:56:ca:53:68:e6:
f8:0e:f5:98:98:6e:da:45:03:28:95:55:ee:76:b8:
7d:0a:cb:c3:34:10:0d:31:ff:c7:51:6a:9e:0c:5e:
79:7b:c0:bc:64:2f:38:be:59:b5:b3:43:ff:b8:1b:
e5:b1:b9:90:99:03:50:c9:c5:b8:b0:8a:da:84:d8:
9d:f4:6b:fa:2a:2e:1a:b4:a7:21:45:6d:24:39:17:
96:9c:28:0b:56:00:2b:9f:bf:ab:db:a3:3a:cc:cf:
c9:b7:7a:b1:be:5b:7d:85:f1:98:57:da:3e:08:65:
1d:4b:f5:15:e8:4e:0b:3b:17:e6:80:09:a3:e9:90:
d6:5a:6e:fe:dd:55:fe:ac:9f:75:62:d0:d5:3f:05:
38:00:ad:0f:0e:32:60:d1:44:b0:45:ce:8d:5c:d5:
df:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:B3:E2:8F:2D:5B:3F:AE:85:1B:3B:23:81:85:4E:17:DD:92:21:C0
X509v3 Authority Key Identifier:
keyid:CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/MrPijy1bP66FGzsjgYVOF92SIcA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/zbg8_lSJg18pTQr03U2249wl8fM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
57.79.0.0/16
57.86.0.0/16
Signature Algorithm: sha256WithRSAEncryption
16:44:b8:f3:5c:8f:ce:13:f4:c1:36:64:64:e4:ee:de:33:44:
b7:11:39:3f:58:82:eb:1e:0c:84:30:b4:8a:66:9c:0a:bb:bd:
0b:76:67:fa:76:72:2f:6c:4d:8e:14:9c:fe:16:6c:c8:5f:8c:
e5:72:0b:6f:c1:7d:8f:be:9a:3e:00:fb:c3:b7:84:63:72:26:
e6:94:bc:cc:8d:f0:2b:97:2c:f4:35:3b:57:0c:44:33:21:73:
bb:a9:9b:bb:bb:e6:25:a6:75:7b:80:eb:b4:58:9a:cc:ef:3a:
bc:d8:20:ef:7f:20:20:aa:b2:78:31:98:80:f0:7a:24:6e:23:
d5:25:4d:f6:68:c7:1b:5f:42:a0:8b:f6:85:08:08:ae:cb:44:
01:e3:4e:cc:d4:1e:59:66:6a:af:07:1f:72:e7:ef:24:05:40:
26:e4:2e:83:a3:05:d4:c8:0f:93:2d:64:aa:18:52:51:31:85:
d9:c1:61:40:fe:e1:20:8f:36:a4:28:04:c3:ed:1b:34:b9:83:
c5:86:ad:c8:77:8f:96:89:4d:07:9d:be:ea:03:dc:c2:62:ce:
6a:25:da:4d:19:b1:97:4c:16:2a:60:6b:9f:7c:f9:58:4c:f7:
f0:26:86:60:a0:ed:be:25:96:55:e1:9a:a1:3b:4c:4e:86:e1:
c5:53:b2:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:44 2024 by rpki-client on console-fra.rpki-client.org