Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/MXNHoSesnhySnV3EQTXYJXNmWbc.roa
File: MXNHoSesnhySnV3EQTXYJXNmWbc.roa (raw, json)
Hash identifier: 2gPtWiTvgsRvb2AfLxI0LxvatrKSbbVBP1UzXrS2xCM=
Subject key identifier: 31:73:47:A1:27:AC:9E:1C:92:9D:5D:C4:41:35:D8:25:73:66:59:B7
Certificate issuer: /CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Certificate serial: 01876F194F22B99E2B5AA28874402D89A286
Authority key identifier: F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/MXNHoSesnhySnV3EQTXYJXNmWbc.roa
Signing time: Tue 11 Apr 2023 06:55:42 +0000
ROA not before: Tue 11 Apr 2023 06:55:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48147
IP address blocks: 5.57.32.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:6f:19:4f:22:b9:9e:2b:5a:a2:88:74:40:2d:89:a2:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Validity
Not Before: Apr 11 06:55:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=317347a127ac9e1c929d5dc44135d825736659b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:83:a0:22:c9:57:e3:4c:1e:f0:03:95:e7:89:
18:98:21:f7:79:95:76:60:c8:3b:42:82:75:88:a2:
92:e1:69:37:01:39:a7:73:cc:8b:f0:73:2a:ac:d7:
4c:8a:9e:d3:5e:c9:6b:01:7e:9c:ad:40:37:ed:25:
1f:fd:e3:50:93:d9:43:19:92:42:45:ae:8c:d4:5a:
31:80:10:88:5a:3c:b5:48:17:3e:a6:cf:f6:a5:57:
1a:ea:83:01:9e:be:71:76:1f:6b:68:4c:b3:a6:1f:
01:74:90:7c:51:cc:33:35:07:30:df:1b:70:a8:41:
e6:15:d6:e9:55:d1:4f:48:cc:2f:4d:c0:e6:aa:2f:
66:0f:3c:1c:34:f2:63:8d:17:e7:96:96:d3:71:f7:
08:96:6d:e2:4b:27:e3:1f:84:2d:cf:d7:ac:96:91:
1b:7f:0f:78:92:d6:09:b7:bc:28:86:d5:8a:54:a4:
6b:7d:68:36:be:47:ee:07:37:cc:3a:b8:d3:90:87:
a3:a3:35:7c:46:6e:bd:81:7c:87:48:00:34:17:47:
1f:4f:a2:1f:54:93:4f:09:ec:04:6e:8e:58:a7:55:
41:c7:81:15:b4:cf:4e:92:21:ed:ff:d2:1c:08:8f:
e9:e9:9e:fd:88:28:fa:b9:49:af:35:16:e2:0d:84:
8c:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:73:47:A1:27:AC:9E:1C:92:9D:5D:C4:41:35:D8:25:73:66:59:B7
X509v3 Authority Key Identifier:
keyid:F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/MXNHoSesnhySnV3EQTXYJXNmWbc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.57.32.0/24
Signature Algorithm: sha256WithRSAEncryption
19:21:a3:20:92:9c:2f:5d:20:74:0f:fe:84:9b:e0:88:2a:48:
ef:fe:75:f9:8f:0b:28:70:4f:0d:30:f8:d3:f0:c6:76:a9:4a:
af:3f:e3:02:02:34:09:5c:3a:3b:29:bc:7e:95:74:d4:55:69:
9e:df:91:09:fe:ae:0b:3c:2b:59:0b:02:68:83:da:20:08:fa:
21:79:96:4e:3a:eb:83:91:18:0c:f3:64:7f:05:50:30:01:03:
35:dc:8b:ab:aa:db:2a:f6:42:3c:85:60:52:3a:5f:d4:14:49:
3e:3f:ad:7b:a7:61:f2:19:35:8f:e4:aa:f8:fd:c9:b8:0c:6e:
3b:e2:e9:f2:e9:d2:c8:bb:8e:d7:b3:d6:9d:bc:e0:09:1b:83:
63:34:46:07:93:2b:9c:d0:6d:b0:f8:e9:3b:92:38:63:39:b7:
54:b2:57:e7:d2:71:54:0c:28:91:10:bb:fd:61:19:88:cd:32:
42:74:01:7e:e4:ec:64:ce:38:1b:b3:cd:16:fe:2b:90:2b:ee:
69:77:87:bd:16:15:bb:10:45:7e:1f:2c:dc:bf:37:8c:ce:a0:
8c:36:3b:9a:74:02:b8:77:c4:dc:b2:ad:af:3b:25:ab:79:c3:
e4:0a:f7:89:81:ec:c5:f9:cf:30:95:19:e7:a4:73:c1:cb:3f:
c4:07:0c:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 20 11:35:09 2023 by rpki-client on console-fra.rpki-client.org