Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/MubqcEE-PWRvjfevjr8S9PKiAq8.roa
File: MubqcEE-PWRvjfevjr8S9PKiAq8.roa (raw, json)
Hash identifier: rJSkvDZucYCkVKAy6LVQITDAvVbFPnI38SfCls4Cb/o=
Subject key identifier: 32:E6:EA:70:41:3E:3D:64:6F:8D:F7:AF:8E:BF:12:F4:F2:A2:02:AF
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01907E657C395914C7A6C711314D5E022801
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/MubqcEE-PWRvjfevjr8S9PKiAq8.roa
Signing time: Thu 04 Jul 2024 15:38:18 +0000
ROA not before: Thu 04 Jul 2024 15:38:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34918
IP address blocks: 217.60.238.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 31 Jul 2024 12:39:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:7e:65:7c:39:59:14:c7:a6:c7:11:31:4d:5e:02:28:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jul 4 15:38:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=32e6ea70413e3d646f8df7af8ebf12f4f2a202af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:79:50:38:37:51:5f:a7:cf:7d:49:a3:a2:cb:
02:b0:1e:a3:4e:01:14:cd:bf:e8:41:0f:ba:b9:42:
6b:8a:c0:6e:28:76:8e:19:4c:54:72:2c:a6:30:50:
ee:b3:6a:65:e5:09:e8:08:e0:88:af:15:5c:0c:24:
d8:a5:a6:ca:bc:0c:da:91:1a:ea:47:3e:94:8b:6d:
10:7c:92:05:6d:5a:00:23:81:07:05:91:49:c1:be:
9b:d7:8d:eb:f3:c5:2f:74:44:f1:1b:0a:5f:a6:03:
68:1d:b7:22:82:82:17:fc:6d:95:64:51:f7:24:48:
91:a4:09:d9:d2:86:b9:37:e7:c0:99:87:b8:8b:5d:
f7:1e:8f:de:6a:b7:3b:98:d8:15:90:01:79:b6:10:
5a:04:f3:e6:9a:e3:90:11:bc:fb:56:84:a6:a8:25:
b7:78:74:3a:90:20:a2:67:9a:d6:9e:b0:09:5e:03:
f3:85:39:ad:d9:20:f2:8d:65:d3:4b:b8:ad:0e:5d:
d4:59:78:09:30:bc:f0:b0:88:76:f3:00:76:30:6a:
3c:e4:85:0d:8f:ed:01:37:4a:de:c3:97:60:db:a4:
03:0d:e8:6c:28:f8:df:42:ac:a0:05:7d:7e:4c:1a:
41:7c:50:4a:e3:b7:77:f7:e7:21:73:9a:8e:e5:98:
ca:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:E6:EA:70:41:3E:3D:64:6F:8D:F7:AF:8E:BF:12:F4:F2:A2:02:AF
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/MubqcEE-PWRvjfevjr8S9PKiAq8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.60.238.0/24
Signature Algorithm: sha256WithRSAEncryption
59:08:7d:e6:64:7a:96:68:d8:cc:45:0a:bf:75:e0:f7:48:dc:
15:35:e2:8c:f1:3e:10:5e:56:9b:93:e3:b7:ea:54:86:34:11:
31:63:07:b1:1a:f7:ee:8d:28:f3:98:45:6b:30:07:c8:7e:a2:
0f:c6:d1:a2:57:c0:17:6c:5c:14:51:16:27:93:6f:40:82:16:
ac:95:a1:e2:14:3a:9b:d8:db:c1:3f:53:9a:f0:6b:33:fa:f8:
63:ed:0d:41:85:73:b0:e2:74:80:65:b5:69:42:f2:67:96:85:
dd:b6:ea:80:a8:25:72:1a:22:a3:1a:98:68:94:44:45:aa:f9:
e4:e1:9a:15:da:f2:df:0f:93:af:0a:74:8c:3d:b5:f2:db:c2:
71:de:38:4b:d1:8d:c7:b1:83:74:b5:55:66:09:9e:39:37:df:
53:c2:2c:09:55:f4:01:9d:f7:1a:81:9a:3c:f5:37:6a:9a:92:
92:b5:65:1b:32:41:19:f7:24:bb:13:83:13:e4:48:d6:52:dc:
57:3d:64:50:ef:27:73:ce:39:eb:e2:4d:ff:67:a0:d5:4f:64:
ba:b5:d2:6a:83:c2:8c:40:11:c8:20:e0:ac:06:de:a8:3e:d8:
ef:dd:33:23:18:43:10:e5:e9:1f:f3:d3:dd:74:1b:8a:75:69:
7f:82:01:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 31 14:29:34 2024 by rpki-client on console-fra.rpki-client.org