Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/210fbb-aa6e-49c9-918b-5558a8b53e3d/1/mfhrfZ3TceFTjxEuBxf1UOuRqN0.roa
File: mfhrfZ3TceFTjxEuBxf1UOuRqN0.roa (raw, json)
Hash identifier: EqSHkDwz8auCusTWbNlSEh4J2RBWtRZOeutnjx0KRJo=
Subject key identifier: 99:F8:6B:7D:9D:D3:71:E1:53:8F:11:2E:07:17:F5:50:EB:91:A8:DD
Certificate issuer: /CN=4da84d247ce37cdccf06e1571d226a2b85677bcd
Certificate serial: 018CC5003A2A10F047BC310B39C23CD74140
Authority key identifier: 4D:A8:4D:24:7C:E3:7C:DC:CF:06:E1:57:1D:22:6A:2B:85:67:7B:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TahNJHzjfNzPBuFXHSJqK4Vne80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/210fbb-aa6e-49c9-918b-5558a8b53e3d/1/mfhrfZ3TceFTjxEuBxf1UOuRqN0.roa
Signing time: Mon 01 Jan 2024 12:29:35 +0000
ROA not before: Mon 01 Jan 2024 12:29:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211327
IP address blocks: 93.180.134.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Apr 2024 05:20:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:3a:2a:10:f0:47:bc:31:0b:39:c2:3c:d7:41:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4da84d247ce37cdccf06e1571d226a2b85677bcd
Validity
Not Before: Jan 1 12:29:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=99f86b7d9dd371e1538f112e0717f550eb91a8dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:03:65:d1:13:d3:86:91:6b:b9:8a:16:3f:49:
bf:d4:83:03:ba:42:ab:57:5f:0e:97:64:82:ef:59:
65:58:41:b2:75:ae:68:43:cf:bb:73:99:c5:a1:04:
f6:26:bd:8f:9c:4c:52:21:97:48:15:b8:45:5e:52:
9e:e7:17:1a:1f:ef:74:63:12:2a:dd:63:ee:46:6b:
81:10:c0:ff:b3:f0:5f:82:01:66:46:3b:72:68:5c:
b7:9c:d4:aa:ed:4b:91:77:c7:ee:fb:fb:95:f5:cd:
5d:8d:89:4f:07:3f:1d:f7:90:59:1f:91:00:50:13:
71:77:92:f8:d8:72:c7:d7:b7:4b:1b:2f:f1:cd:9b:
52:d0:59:36:07:02:f0:d0:42:71:de:fd:f6:9c:2c:
84:ef:19:44:21:00:7e:19:c6:db:45:ff:4e:43:63:
a9:86:f1:5b:a1:05:4e:08:16:ec:26:08:4e:5e:19:
63:33:9e:73:a0:a8:03:0c:f5:ce:ad:cd:e2:fe:33:
e5:e0:6f:ef:1b:f3:99:99:77:1d:86:51:f6:2d:e1:
77:2b:45:cf:c4:a5:41:c3:47:c8:1b:c2:9d:97:8f:
1d:56:7e:07:87:4e:25:a8:56:cc:0b:0e:3b:14:88:
99:af:98:5d:11:53:c6:63:13:9b:7b:a8:41:c9:a6:
84:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:F8:6B:7D:9D:D3:71:E1:53:8F:11:2E:07:17:F5:50:EB:91:A8:DD
X509v3 Authority Key Identifier:
keyid:4D:A8:4D:24:7C:E3:7C:DC:CF:06:E1:57:1D:22:6A:2B:85:67:7B:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TahNJHzjfNzPBuFXHSJqK4Vne80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/210fbb-aa6e-49c9-918b-5558a8b53e3d/1/mfhrfZ3TceFTjxEuBxf1UOuRqN0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/210fbb-aa6e-49c9-918b-5558a8b53e3d/1/TahNJHzjfNzPBuFXHSJqK4Vne80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.180.134.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:fd:62:49:13:fa:dc:d6:16:bd:5a:2a:bf:04:1a:ff:cf:6d:
05:b6:9e:a5:52:b6:6c:bc:06:41:02:87:27:37:3b:f4:4a:d1:
72:4f:9d:88:ff:9c:1f:d2:cc:b5:fd:1d:b6:f3:f3:85:61:99:
2c:2d:e4:39:d1:1c:a5:69:89:2d:e1:3b:0e:88:66:5e:98:9a:
9c:9f:27:99:67:59:8c:f4:1c:7d:ae:29:d4:51:83:22:68:01:
17:81:78:db:dc:2a:40:8f:df:e1:ff:84:1c:24:5e:4b:a0:99:
1b:f8:a7:68:62:d3:5f:5a:db:41:61:03:b0:a8:b4:7f:01:be:
d1:e5:93:c3:c0:49:2f:94:ca:03:cd:7a:ee:46:74:9a:ba:45:
8a:46:90:16:f9:12:cc:18:24:6e:d0:1b:9a:ce:a5:07:9c:1c:
49:54:f7:b7:29:2e:c2:ac:71:8d:b5:6b:d8:37:25:52:ad:06:
b1:ea:ce:02:ab:9e:d1:1a:37:42:22:46:0b:ca:72:ca:6a:bb:
cd:82:0f:89:48:98:40:b8:d6:21:94:dd:f7:98:c3:f7:3d:96:
46:06:8a:1e:73:b3:98:d1:ea:dc:6e:e8:62:08:c6:d2:5b:08:
63:6a:50:c3:2b:23:6c:3b:82:e0:97:4b:94:b4:7d:41:b3:8d:
ca:9d:62:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 9 09:08:57 2024 by rpki-client on console-fra.rpki-client.org