Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/2b2cb3-ccb6-41e0-89bc-1b760451dac8/1/MfSYeZdE14kh_fFihlQFMRF5tg4.roa
File: MfSYeZdE14kh_fFihlQFMRF5tg4.roa (raw, json)
Hash identifier: nOS9sFBdxtv1MT7nsIqHJJZaaTX1mQUtRIrOKOgg3Ss=
Subject key identifier: 31:F4:98:79:97:44:D7:89:21:FD:F1:62:86:54:05:31:11:79:B6:0E
Certificate issuer: /CN=d08db08e1338a579ad3789535fa73a5e54511ff1
Certificate serial: 01856FDDD4653F87143428A55AC98AA3C500
Authority key identifier: D0:8D:B0:8E:13:38:A5:79:AD:37:89:53:5F:A7:3A:5E:54:51:1F:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0I2wjhM4pXmtN4lTX6c6XlRRH_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/2b2cb3-ccb6-41e0-89bc-1b760451dac8/1/MfSYeZdE14kh_fFihlQFMRF5tg4.roa
Signing time: Mon 02 Jan 2023 00:24:46 +0000
ROA not before: Mon 02 Jan 2023 00:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204926
IP address blocks: 2001:678:58c::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:dd:d4:65:3f:87:14:34:28:a5:5a:c9:8a:a3:c5:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d08db08e1338a579ad3789535fa73a5e54511ff1
Validity
Not Before: Jan 2 00:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=31f498799744d78921fdf162865405311179b60e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:53:85:92:55:60:c4:cb:b0:19:c1:8c:a4:d8:
3e:9c:78:03:c2:7c:36:51:4b:e0:18:a9:a8:24:9c:
f5:2d:0e:33:b5:83:25:c0:a1:30:43:2e:bc:30:13:
ec:65:55:9b:69:9f:cd:0f:ae:50:eb:af:65:f6:a7:
b1:d0:ab:5a:46:63:6c:76:47:3e:bc:f1:78:bd:83:
c8:22:0d:e8:b2:8e:b2:10:f3:d3:a1:b6:81:04:b2:
96:dd:67:60:b0:06:b3:4f:d9:79:5a:fc:2e:3b:b7:
54:7e:fd:70:95:21:35:42:c9:a9:ad:3b:d9:b8:d8:
f8:3d:14:b0:65:7e:a0:ca:90:4c:ed:65:2c:39:82:
47:40:ec:3f:3a:62:46:91:e0:c5:80:c3:cb:04:9f:
43:80:99:e7:38:7d:c8:5f:13:2e:f0:19:30:34:69:
1a:37:1e:59:30:53:cb:45:42:21:4d:a4:64:6b:d4:
d3:0a:52:82:60:67:00:29:e5:f2:01:81:0b:c4:cb:
05:00:13:e4:b9:11:b3:fd:6e:9f:b8:f3:3f:b5:8f:
02:05:73:32:a1:9f:20:ac:59:7e:d5:6f:7d:ce:28:
80:e9:f0:92:96:4c:7b:55:e8:05:8f:8b:6c:7b:f5:
34:0c:37:08:89:f9:45:be:03:76:52:a0:a9:0d:d7:
6d:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:F4:98:79:97:44:D7:89:21:FD:F1:62:86:54:05:31:11:79:B6:0E
X509v3 Authority Key Identifier:
keyid:D0:8D:B0:8E:13:38:A5:79:AD:37:89:53:5F:A7:3A:5E:54:51:1F:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0I2wjhM4pXmtN4lTX6c6XlRRH_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/2b2cb3-ccb6-41e0-89bc-1b760451dac8/1/MfSYeZdE14kh_fFihlQFMRF5tg4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/2b2cb3-ccb6-41e0-89bc-1b760451dac8/1/0I2wjhM4pXmtN4lTX6c6XlRRH_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:58c::/48
Signature Algorithm: sha256WithRSAEncryption
39:57:ad:13:c5:8f:07:92:55:34:c4:ad:6e:5c:b0:fc:98:b0:
a2:72:64:6e:d2:9d:4f:77:e1:e8:bb:07:ff:ce:a4:0e:14:e2:
23:aa:d9:2a:86:86:f4:d2:96:d8:53:8d:47:2b:99:18:08:c6:
3d:c9:6e:d3:b4:a3:ca:56:90:84:f3:27:7a:34:78:8c:68:5f:
fd:76:f8:07:c6:15:2e:eb:58:ba:fe:5d:6c:29:c7:75:b1:69:
bb:70:37:81:4a:ea:e2:17:6b:2a:64:ca:c8:b2:ca:72:55:c5:
af:cb:2d:c6:0a:7b:17:4d:95:e8:67:91:df:bf:3f:0d:9d:5c:
10:da:43:9d:76:28:f5:1f:df:df:c7:50:4a:aa:24:a0:31:05:
12:b1:4f:78:3d:58:00:b8:70:91:c9:f0:6f:bb:96:b7:a9:78:
bd:c8:f8:79:51:06:ca:ab:70:dd:8e:2a:3a:03:70:d3:08:e0:
3c:6f:00:f6:70:ae:13:d8:65:d3:6f:8d:b1:8e:96:0f:57:62:
68:79:28:f0:17:9b:b8:04:1e:35:26:03:e9:8e:4a:f2:c9:a9:
fb:e9:c6:93:33:00:9a:20:c8:45:39:18:c4:b8:71:80:4c:5c:
2e:35:83:65:91:86:53:a4:88:8f:5a:22:52:4c:78:57:a8:25:
a0:9a:7d:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:15:05 2024 by rpki-client on console-fra.rpki-client.org