Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/7264d6-3bfd-4de9-8ffb-f3363cbd424c/1/MrzMmXPh-CchKBc3T4MzyOPIZ14.roa
File: MrzMmXPh-CchKBc3T4MzyOPIZ14.roa (raw, json)
Hash identifier: 7QZ6zj0u9KmhL68wyvqS+lFWCUD2nUu/m6jMJg+LHRY=
Subject key identifier: 32:BC:CC:99:73:E1:F8:27:21:28:17:37:4F:83:33:C8:E3:C8:67:5E
Certificate issuer: /CN=ab46686008a8c101e84ea878318ae58eb71cec82
Certificate serial: 01857227D37ABEE052A283296803686D5AE0
Authority key identifier: AB:46:68:60:08:A8:C1:01:E8:4E:A8:78:31:8A:E5:8E:B7:1C:EC:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q0ZoYAiowQHoTqh4MYrljrcc7II.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/7264d6-3bfd-4de9-8ffb-f3363cbd424c/1/MrzMmXPh-CchKBc3T4MzyOPIZ14.roa
Signing time: Mon 02 Jan 2023 11:04:50 +0000
ROA not before: Mon 02 Jan 2023 11:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3303
IP address blocks: 194.11.152.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:32:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:27:d3:7a:be:e0:52:a2:83:29:68:03:68:6d:5a:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab46686008a8c101e84ea878318ae58eb71cec82
Validity
Not Before: Jan 2 11:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=32bccc9973e1f827212817374f8333c8e3c8675e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:4f:a2:80:6f:a8:2e:d4:c6:b7:82:b6:43:3e:
45:5b:84:ca:d1:93:26:91:23:26:a0:b2:dc:1c:86:
e7:55:bf:11:7f:62:05:ee:81:d9:19:11:3e:a5:37:
b8:d3:7d:e3:05:63:2f:c7:a8:23:51:ed:38:07:44:
4b:4d:4e:4f:0b:9b:c2:36:34:e9:e9:6f:69:24:7d:
d1:7e:e7:fa:82:58:98:ee:98:f8:dd:61:9e:d4:72:
ac:08:5b:ef:f4:e7:a4:8b:96:62:0a:bb:6c:21:b9:
f7:5b:ca:4b:e7:08:83:72:aa:06:52:b9:7e:ac:2d:
91:63:5c:74:e1:b9:77:b2:a8:6f:7e:22:90:35:68:
ba:fa:de:72:2b:a3:d6:a6:54:2d:03:d2:a5:fd:2f:
5e:bb:61:41:89:7e:c2:c2:31:87:87:71:ea:f6:89:
63:1b:69:d6:a8:d3:11:d2:fd:40:dd:c4:98:14:e8:
c6:d6:8a:d1:56:72:eb:99:9a:b5:cd:e5:01:a5:ad:
35:de:ef:02:30:c0:a1:36:92:0a:aa:41:20:9e:51:
48:99:9f:13:81:60:c2:4e:cb:26:be:e5:86:e2:10:
7e:97:c4:62:b8:41:63:17:3c:c8:43:10:2f:25:04:
80:36:ba:16:bf:ee:fe:96:7c:25:da:9d:65:a7:66:
8c:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:BC:CC:99:73:E1:F8:27:21:28:17:37:4F:83:33:C8:E3:C8:67:5E
X509v3 Authority Key Identifier:
keyid:AB:46:68:60:08:A8:C1:01:E8:4E:A8:78:31:8A:E5:8E:B7:1C:EC:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q0ZoYAiowQHoTqh4MYrljrcc7II.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/7264d6-3bfd-4de9-8ffb-f3363cbd424c/1/MrzMmXPh-CchKBc3T4MzyOPIZ14.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/7264d6-3bfd-4de9-8ffb-f3363cbd424c/1/q0ZoYAiowQHoTqh4MYrljrcc7II.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.11.152.0/23
Signature Algorithm: sha256WithRSAEncryption
b3:e2:66:62:26:6d:f6:bc:21:5d:fa:97:34:35:65:5a:8f:85:
ea:15:26:e1:67:c7:91:70:92:4e:28:32:80:ba:17:f2:06:7a:
fc:08:2f:99:1e:ad:f4:7f:de:2d:25:02:17:d8:c6:c3:46:02:
23:dc:18:49:0d:6e:77:b7:f2:fd:54:63:0e:34:80:76:8f:bc:
be:83:2b:49:73:0b:58:b2:5a:8b:64:48:b9:88:6b:cb:e8:65:
06:79:07:a2:2f:e3:af:15:15:f9:58:9d:19:86:c8:fa:fa:0b:
d0:5d:be:bf:40:5a:cc:4e:87:24:0a:1e:20:3f:91:44:21:bd:
81:a1:63:77:06:7d:0e:3e:f7:31:5b:e7:2c:ae:b0:76:95:73:
b0:01:5b:d2:bc:2e:c0:e1:8e:2a:48:64:c6:f7:ae:5b:f9:66:
63:0e:8d:c3:cf:49:18:31:df:74:63:27:67:b0:ab:7d:a5:f3:
fb:1d:74:24:f4:b5:42:f1:7b:d1:36:8e:95:26:d2:4c:d2:51:
13:cd:69:d0:8e:82:50:15:b7:5f:a9:7d:f4:0f:77:e0:eb:e9:
d6:50:1c:0d:73:fe:8f:66:86:8e:20:1e:b9:5e:54:98:4f:0d:
a1:c2:78:9b:90:ce:f3:6b:b2:52:f0:d3:2d:f2:f9:35:38:4c:
26:91:93:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:31 2024 by rpki-client on console-ams.rpki-client.org