Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/MGZSHGMhYCtqjTPEef9uXLPvdbw.roa
File: MGZSHGMhYCtqjTPEef9uXLPvdbw.roa (raw, json)
Hash identifier: WRRp3eKVRT/yO/X2sj92VzC3f7xz7DT1oZDneRg8d1Q=
Subject key identifier: 30:66:52:1C:63:21:60:2B:6A:8D:33:C4:79:FF:6E:5C:B3:EF:75:BC
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 0186995F510A27BB82AB0F1358D1EC7B9B99
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/MGZSHGMhYCtqjTPEef9uXLPvdbw.roa
Signing time: Tue 28 Feb 2023 18:53:26 +0000
ROA not before: Tue 28 Feb 2023 18:53:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400377
IP address blocks: 185.96.83.0/24 maxlen: 24
185.110.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 06 Apr 2023 06:09:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:99:5f:51:0a:27:bb:82:ab:0f:13:58:d1:ec:7b:9b:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Feb 28 18:53:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3066521c6321602b6a8d33c479ff6e5cb3ef75bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:78:21:71:b5:8f:88:0e:2c:94:70:01:8b:44:
65:36:0e:4d:51:a0:7c:84:37:f2:55:ee:78:d7:15:
3d:e8:dd:81:e6:f6:26:69:2e:2d:25:d4:01:c8:d6:
4d:ce:0a:5a:fd:30:9b:cb:3e:ea:72:15:10:7b:7c:
fa:f3:79:a8:1a:73:35:14:6a:c6:06:e8:70:1f:f2:
80:2c:93:8b:21:66:d7:36:01:eb:bf:a4:f0:9a:c9:
23:77:05:52:d6:49:19:f3:a4:e8:33:de:a5:bc:d5:
09:96:25:53:d4:2f:aa:25:34:cd:ee:07:3d:83:23:
78:c5:08:80:da:a1:47:41:9c:e7:4b:c9:de:5b:82:
80:ae:c6:f9:7e:3f:13:86:1c:b9:95:a4:7b:3d:c2:
9a:8c:ea:cd:86:cd:bf:e0:ab:6d:07:bf:68:4d:cc:
2b:dc:6a:e6:16:35:37:44:39:f0:51:3e:92:fe:ec:
ec:d7:39:24:3e:1b:ad:08:24:ae:5a:cf:df:01:d3:
1b:5f:d1:cc:06:53:3d:10:c9:ff:cb:72:e3:fc:e7:
be:64:ec:c7:05:4d:8d:10:07:1f:6c:ef:01:86:b6:
aa:2f:d8:5f:12:66:b4:e5:5e:81:69:22:36:7f:04:
15:d7:b5:1d:f7:ca:69:5e:0b:0b:ea:78:8f:3b:d9:
20:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:66:52:1C:63:21:60:2B:6A:8D:33:C4:79:FF:6E:5C:B3:EF:75:BC
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/MGZSHGMhYCtqjTPEef9uXLPvdbw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.96.83.0/24
185.110.129.0/24
Signature Algorithm: sha256WithRSAEncryption
24:72:d1:48:d1:4a:9d:dc:9f:89:fa:7b:0e:a2:a7:d9:30:c3:
79:53:7d:65:87:0c:8b:10:ae:9f:65:02:c4:7a:45:a7:f2:d5:
bb:66:2c:10:5a:eb:d6:cb:46:dc:2d:a4:2a:e9:1c:2e:91:e6:
22:c9:22:ca:3a:f2:52:a9:c3:02:fa:f0:11:8b:47:e7:92:f6:
89:de:36:f3:76:00:3e:4b:8a:1e:6a:d3:8c:69:9c:d0:59:31:
c7:17:4f:8f:19:76:db:a4:c2:34:c5:b3:c7:b2:8c:f4:81:b7:
1b:44:7d:52:13:c8:f1:c1:1f:d6:2c:73:8b:34:c5:91:24:05:
17:05:e2:d9:7d:02:21:8f:2a:d0:70:08:ff:54:08:9a:f4:d2:
8e:71:96:73:02:65:b3:c7:e4:0a:8e:cb:ce:50:14:4f:cc:66:
1c:08:fb:b1:30:9b:f0:1e:c2:2d:76:ba:7b:1b:5f:35:2b:32:
fd:1d:30:b5:74:e5:05:a6:15:fc:6c:a8:a7:e8:66:98:38:18:
4c:39:13:a8:20:36:19:8d:6e:6c:ae:cd:bf:81:f9:c2:95:35:
21:e5:79:da:a7:9b:71:18:66:da:66:83:9f:10:15:73:fa:bb:
35:12:3d:11:a5:5c:f0:27:8a:cd:5e:7c:9b:8c:c8:64:93:b9:
70:0b:d7:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:59 2024 by rpki-client on console-fra.rpki-client.org