Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/12e2c4-243d-44df-b0dc-b9d668f051de/1/mxtu4GdQS-XcNlpb9yyNAMcNcjc.roa
File: mxtu4GdQS-XcNlpb9yyNAMcNcjc.roa (raw, json)
Hash identifier: VvhI7qD4VljMuDFw623t1knEg4RHYa39Ijs/toREUyo=
Subject key identifier: 9B:1B:6E:E0:67:50:4B:E5:DC:36:5A:5B:F7:2C:8D:00:C7:0D:72:37
Certificate issuer: /CN=a67f1cf27426070aeda7b26053453c283fdf7537
Certificate serial: 018804C91E4AA560AE98FB379BB87410E1F6
Authority key identifier: A6:7F:1C:F2:74:26:07:0A:ED:A7:B2:60:53:45:3C:28:3F:DF:75:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pn8c8nQmBwrtp7JgU0U8KD_fdTc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/12e2c4-243d-44df-b0dc-b9d668f051de/1/mxtu4GdQS-XcNlpb9yyNAMcNcjc.roa
Signing time: Wed 10 May 2023 08:31:09 +0000
ROA not before: Wed 10 May 2023 08:31:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3242
IP address blocks: 91.207.150.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:04:c9:1e:4a:a5:60:ae:98:fb:37:9b:b8:74:10:e1:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a67f1cf27426070aeda7b26053453c283fdf7537
Validity
Not Before: May 10 08:31:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9b1b6ee067504be5dc365a5bf72c8d00c70d7237
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e4:f9:fc:6b:94:29:e8:49:d9:8e:91:57:86:
55:45:57:c5:49:38:b8:3c:94:ad:4c:15:49:60:85:
9d:54:83:28:e1:90:8c:38:ee:25:f2:6b:4d:e4:2f:
0a:37:5c:79:dd:d7:ad:5e:3f:86:81:fc:b9:a6:8f:
4c:8a:b5:5c:7a:da:63:ea:7c:f4:d7:41:27:83:24:
36:05:d8:56:8f:1e:7c:3d:4c:2b:ab:3b:ec:87:6d:
6d:86:00:c9:31:cd:f6:fd:93:5c:df:b4:6a:e7:1e:
4f:30:fd:25:cd:86:fc:d8:8d:b1:f0:b5:c2:26:9a:
c3:28:fc:4f:99:59:d5:25:de:aa:2a:4f:82:51:4c:
09:d9:6a:ee:48:c3:6b:0b:60:7a:b8:2a:5a:a6:83:
49:60:54:18:10:a6:c4:b1:74:38:ab:77:41:a7:9d:
42:95:b8:31:cc:15:12:86:78:99:6e:dc:d1:54:1a:
2b:34:32:e7:53:ae:56:f5:53:86:02:d3:79:3e:08:
7c:69:61:f5:41:c7:0f:b3:87:53:07:cc:09:e3:f6:
83:0d:df:55:41:b5:63:ac:19:26:c6:90:ec:04:b5:
72:1a:c9:77:8d:ec:36:da:53:c6:3b:09:2d:3c:79:
23:c3:3b:ca:6d:40:c4:0b:72:0b:88:e0:25:2d:ce:
68:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:1B:6E:E0:67:50:4B:E5:DC:36:5A:5B:F7:2C:8D:00:C7:0D:72:37
X509v3 Authority Key Identifier:
keyid:A6:7F:1C:F2:74:26:07:0A:ED:A7:B2:60:53:45:3C:28:3F:DF:75:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pn8c8nQmBwrtp7JgU0U8KD_fdTc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/12e2c4-243d-44df-b0dc-b9d668f051de/1/mxtu4GdQS-XcNlpb9yyNAMcNcjc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/12e2c4-243d-44df-b0dc-b9d668f051de/1/pn8c8nQmBwrtp7JgU0U8KD_fdTc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.207.150.0/23
Signature Algorithm: sha256WithRSAEncryption
32:36:10:8e:e9:c7:96:1b:b9:ef:2d:10:7b:34:80:d9:35:bd:
64:98:d3:7f:63:4a:e9:24:aa:ff:79:d0:87:23:ee:56:fb:76:
70:da:07:f7:0c:14:b9:16:80:22:14:c3:68:bc:91:39:6d:eb:
4b:57:42:54:27:88:71:b6:59:8f:ba:40:4f:2d:a6:c0:b5:e6:
10:53:ee:8b:0b:56:43:44:cd:c9:19:85:83:39:99:2e:01:fc:
a7:98:46:ba:68:39:db:8d:7c:d3:e4:fd:75:d8:62:9e:03:8b:
80:50:41:45:f3:af:06:8a:f0:ef:ae:92:f8:51:40:cd:3e:f2:
1e:5c:84:48:3e:65:b8:bf:0d:1d:f2:c5:27:6d:b8:3f:60:b4:
a7:88:24:a4:52:9a:01:83:b5:68:45:bb:d2:37:44:ab:18:16:
fa:e8:d1:92:7b:e7:8d:69:4b:df:95:59:31:aa:b4:b5:ca:b2:
4b:2a:ff:7c:9c:ad:3a:28:23:5a:fe:52:b1:83:a3:bd:6b:7a:
57:74:f5:0b:d5:7b:1f:eb:61:31:b4:52:c8:32:51:e9:fe:d5:
55:b7:f8:42:bd:d3:2d:5a:bb:11:d1:72:0e:17:83:c8:a5:7c:
bd:53:bd:f3:d9:d2:4a:82:06:2d:60:e2:a6:ae:15:ea:19:18:
6a:09:5e:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:01 2024 by rpki-client on console-fra.rpki-client.org