Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/MGf8FfnMunIJkILZ_iiEcI9DUCE.roa
File: MGf8FfnMunIJkILZ_iiEcI9DUCE.roa (raw, json)
Hash identifier: QtPJ5Oibo+FgeUKW97URWnq46wNQExh6piY56/kDVf0=
Subject key identifier: 30:67:FC:15:F9:CC:BA:72:09:90:82:D9:FE:28:84:70:8F:43:50:21
Certificate issuer: /CN=89da60f049dfba34be4b4e8418b9ff492125c449
Certificate serial: 0186AA7726CB631283DFA0DE598691FA1BF0
Authority key identifier: 89:DA:60:F0:49:DF:BA:34:BE:4B:4E:84:18:B9:FF:49:21:25:C4:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/idpg8EnfujS-S06EGLn_SSElxEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/MGf8FfnMunIJkILZ_iiEcI9DUCE.roa
Signing time: Sat 04 Mar 2023 02:33:00 +0000
ROA not before: Sat 04 Mar 2023 02:33:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1
IP address blocks: 94.206.108.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:aa:77:26:cb:63:12:83:df:a0:de:59:86:91:fa:1b:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89da60f049dfba34be4b4e8418b9ff492125c449
Validity
Not Before: Mar 4 02:33:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3067fc15f9ccba72099082d9fe2884708f435021
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:4f:29:b1:bb:57:59:38:97:93:db:b1:c2:12:
b1:0c:32:70:d9:02:0a:ef:a8:47:e8:33:6f:b7:89:
15:d4:bb:39:29:1a:7f:b1:01:ef:3b:0c:ab:97:76:
55:27:2a:48:9b:b4:a3:f2:71:ac:d9:bb:f8:06:8a:
c0:ce:48:09:e8:c9:98:f8:17:c9:c8:39:10:56:44:
a1:7a:8e:f1:2a:f1:6c:b5:e8:da:0f:e3:d0:45:39:
04:1e:4d:77:00:06:2d:87:f9:a8:7b:9b:fe:da:6f:
94:aa:50:1e:51:b1:e3:ef:fc:db:c3:f7:71:b7:b9:
b6:38:93:92:54:7f:f9:11:02:96:80:d2:09:c1:8a:
80:71:0b:18:dc:43:99:8e:b8:9d:e0:f0:2d:f5:14:
66:9e:2e:1f:9e:36:26:54:2d:9f:b7:23:ab:a4:34:
f9:64:d0:96:de:06:67:4f:da:3f:d7:48:ca:e1:bd:
06:7e:03:ce:06:02:4c:fc:f5:99:c5:8b:7e:fe:01:
bd:c8:d7:db:3d:e8:dd:c9:07:7c:6a:f0:38:ef:d1:
cf:fa:a1:60:22:70:29:6a:5c:70:4f:0f:12:95:cb:
d8:3d:1c:7e:63:2d:72:24:c2:58:3d:b6:df:7b:f6:
fc:d7:ad:4b:a7:04:02:48:7e:b9:cd:3d:29:70:39:
e6:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:67:FC:15:F9:CC:BA:72:09:90:82:D9:FE:28:84:70:8F:43:50:21
X509v3 Authority Key Identifier:
keyid:89:DA:60:F0:49:DF:BA:34:BE:4B:4E:84:18:B9:FF:49:21:25:C4:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idpg8EnfujS-S06EGLn_SSElxEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/MGf8FfnMunIJkILZ_iiEcI9DUCE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/idpg8EnfujS-S06EGLn_SSElxEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.206.108.0/23
Signature Algorithm: sha256WithRSAEncryption
2c:99:f5:a8:b7:dc:12:36:a0:73:43:82:ef:35:86:8b:a8:31:
94:8d:3d:51:7f:e4:84:d3:bb:fb:3c:23:10:99:85:54:0f:e0:
eb:1c:fd:a1:76:dd:72:65:ae:0c:07:fa:7e:7c:36:f6:0b:eb:
17:76:69:16:89:2a:69:96:e6:02:30:d7:2f:83:e4:91:40:59:
fb:9b:32:18:2c:9d:05:06:36:4d:e4:e1:fa:1d:52:5b:d4:e7:
d2:1b:da:9c:ef:6d:e3:99:0d:5f:fa:1d:ff:65:92:e8:fb:de:
1f:7d:26:db:b3:34:91:21:da:d1:2f:b0:8a:21:96:90:ea:fb:
12:3d:1f:3c:e6:97:0a:f4:bd:17:97:08:6a:2d:a7:7d:88:04:
f6:56:b6:72:be:57:f9:f5:94:a7:20:16:bc:51:bb:03:67:bf:
fe:34:c6:fd:c6:79:c6:fb:56:80:59:f8:fe:fe:08:e6:24:4a:
97:ee:41:e7:da:a3:2c:6f:55:07:e2:1c:d4:4d:f9:91:fc:b6:
ae:5d:33:5a:8a:14:6e:3c:a9:85:c2:e7:3f:48:46:f1:3c:13:
fe:72:a5:01:88:47:27:98:2d:67:6d:d4:f1:f1:9c:6b:9f:ec:
f2:d9:15:72:11:c5:f1:b3:45:85:c1:6a:c8:71:bd:87:d3:ad:
8a:e0:a1:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:37:15 2024 by rpki-client on console-fra.rpki-client.org