Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/9d7cd7-ee63-4886-8fe1-b5ce6b6fd4d1/1/mkHRt_wWzCyAIu75Sl3EIQGdDP0.roa
File: mkHRt_wWzCyAIu75Sl3EIQGdDP0.roa (raw, json)
Hash identifier: EIarInpcmBzXva+eyP5neizbaQImA/i91udYb0Vk2Yc=
Subject key identifier: 9A:41:D1:B7:FC:16:CC:2C:80:22:EE:F9:4A:5D:C4:21:01:9D:0C:FD
Certificate issuer: /CN=e1977859d071f7150837b2acb4353ff33efd831c
Certificate serial: 018EA9CD650B64F3EFCC2B69EDBD4B17C6F7
Authority key identifier: E1:97:78:59:D0:71:F7:15:08:37:B2:AC:B4:35:3F:F3:3E:FD:83:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Zd4WdBx9xUIN7KstDU_8z79gxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/9d7cd7-ee63-4886-8fe1-b5ce6b6fd4d1/1/mkHRt_wWzCyAIu75Sl3EIQGdDP0.roa
Signing time: Thu 04 Apr 2024 15:49:53 +0000
ROA not before: Thu 04 Apr 2024 15:49:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215219
IP address blocks: 193.221.125.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Apr 2024 10:28:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:a9:cd:65:0b:64:f3:ef:cc:2b:69:ed:bd:4b:17:c6:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1977859d071f7150837b2acb4353ff33efd831c
Validity
Not Before: Apr 4 15:49:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9a41d1b7fc16cc2c8022eef94a5dc421019d0cfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:a7:f6:e3:90:3d:1e:72:f9:89:9a:67:0a:f4:
7f:7f:5c:fa:fd:0a:a1:39:89:c8:f1:71:f6:01:c2:
ca:40:75:ad:70:fa:55:57:03:ab:8e:b7:19:aa:d0:
5f:c5:ca:43:cf:e0:73:63:b1:28:ba:87:5c:5b:6a:
e0:39:f3:0f:a1:14:24:a9:ea:b3:ac:aa:35:3c:9f:
10:db:b0:34:d3:21:33:46:14:f7:aa:d3:54:d0:f3:
15:80:a5:86:9f:43:aa:f3:6c:2a:1f:a6:e6:65:3d:
da:03:94:4d:7c:e9:31:a5:e1:57:9a:e4:74:3f:f0:
40:6e:4c:04:cd:9f:e0:94:74:09:bb:22:d1:39:e7:
c0:44:9b:5c:04:06:08:e7:6a:24:9f:09:6d:86:30:
2e:4e:8c:16:61:ef:e1:9b:30:45:e8:cb:ac:b8:22:
93:f6:d6:cc:34:f1:9a:fc:d4:92:96:6b:37:64:f1:
3d:b2:52:5e:5a:57:f8:14:af:46:e9:55:5a:56:51:
47:a3:fd:5f:7c:ca:1d:43:2a:1e:b5:24:8e:b4:b3:
e6:5e:cb:a6:0c:6e:0a:76:a5:9c:74:48:4a:5b:cf:
d2:5d:1d:8a:84:99:76:2b:d8:44:40:cc:dd:2d:d6:
f1:3b:dc:00:eb:8c:01:32:c7:db:55:23:3a:01:46:
8e:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:41:D1:B7:FC:16:CC:2C:80:22:EE:F9:4A:5D:C4:21:01:9D:0C:FD
X509v3 Authority Key Identifier:
keyid:E1:97:78:59:D0:71:F7:15:08:37:B2:AC:B4:35:3F:F3:3E:FD:83:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Zd4WdBx9xUIN7KstDU_8z79gxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/9d7cd7-ee63-4886-8fe1-b5ce6b6fd4d1/1/mkHRt_wWzCyAIu75Sl3EIQGdDP0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/9d7cd7-ee63-4886-8fe1-b5ce6b6fd4d1/1/4Zd4WdBx9xUIN7KstDU_8z79gxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.221.125.0/24
Signature Algorithm: sha256WithRSAEncryption
33:03:c4:f3:29:4e:7a:b2:04:a8:f2:1e:01:01:ac:b7:73:94:
73:74:60:9f:19:eb:c0:1f:ce:dc:c4:9f:0a:6a:dc:cc:6f:40:
f6:72:0b:d6:1d:77:0f:12:e7:07:49:70:2c:59:a0:44:be:84:
4c:22:59:46:0a:fa:d7:3f:a5:1a:c8:38:8c:b0:cf:61:9a:5b:
f8:85:20:ee:5e:03:a3:bd:dc:b8:09:16:c7:57:f5:7c:b6:36:
4b:21:7a:b1:3f:03:4c:c9:3c:f1:3b:af:67:6c:23:cb:8c:9b:
8b:39:ab:39:ff:4d:20:b4:aa:60:57:0b:fc:04:b9:0a:cb:ad:
03:89:68:c7:0f:3d:d8:01:28:a6:c1:1f:78:2a:35:16:13:84:
f7:7d:02:70:7d:99:89:97:f2:b4:4c:f4:58:2b:ad:05:b1:c5:
bf:ef:63:3c:f4:7c:f4:ba:38:90:5f:84:02:c9:7c:74:47:eb:
2e:66:41:2e:d2:ce:60:53:7c:0f:10:f2:f4:75:3b:3a:d7:9f:
a2:ae:97:59:a7:2f:b0:ab:be:06:28:ae:bc:dd:c4:46:9b:2f:
12:27:f3:6f:38:49:04:0f:51:64:57:ba:5a:5e:62:77:54:aa:
58:f0:d0:82:c1:ea:cc:ad:71:5f:8e:1e:81:78:ba:98:fe:f3:
88:3f:e6:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 8 14:03:08 2024 by rpki-client on console-ams.rpki-client.org