Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/MHKdbB-fQjucEdgO1K5AI6IQJ6A.roa
File: MHKdbB-fQjucEdgO1K5AI6IQJ6A.roa (raw, json)
Hash identifier: IQZa+SjICq4veU+QpQ/TRvEmVAH8s+iH2mgwdrMzLUE=
Subject key identifier: 30:72:9D:6C:1F:9F:42:3B:9C:11:D8:0E:D4:AE:40:23:A2:10:27:A0
Certificate issuer: /CN=f030658f16d2d88d34164592fcd4de13131f1695
Certificate serial: 018CC56E6254912317DF942EE074C10F7167
Authority key identifier: F0:30:65:8F:16:D2:D8:8D:34:16:45:92:FC:D4:DE:13:13:1F:16:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8DBljxbS2I00FkWS_NTeExMfFpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/MHKdbB-fQjucEdgO1K5AI6IQJ6A.roa
Signing time: Mon 01 Jan 2024 14:29:54 +0000
ROA not before: Mon 01 Jan 2024 14:29:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205007
IP address blocks: 217.196.104.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 20 Feb 2024 16:36:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:62:54:91:23:17:df:94:2e:e0:74:c1:0f:71:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f030658f16d2d88d34164592fcd4de13131f1695
Validity
Not Before: Jan 1 14:29:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=30729d6c1f9f423b9c11d80ed4ae4023a21027a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:26:24:57:a4:df:82:0f:d4:ec:91:a8:a4:1e:
17:07:f2:44:1a:ac:e1:60:5b:55:74:af:79:69:7e:
37:5b:cb:d3:3b:54:fb:97:e8:f2:a1:1d:f8:e0:11:
5a:25:15:27:2a:b6:61:7c:bc:b7:25:bd:51:ee:1c:
5f:d2:8c:e7:a5:b1:43:82:3d:ee:b8:56:71:42:f9:
b3:80:b7:f7:c9:f5:16:de:e5:fb:18:53:c1:c7:2a:
98:c1:e9:d3:8f:f7:b6:72:9d:a0:fa:10:7a:03:28:
6d:57:3b:7b:2d:8c:0f:dc:69:6a:13:35:56:ab:f4:
a7:22:c8:ce:60:0b:7d:61:66:ee:3e:a8:be:d9:82:
63:65:9e:91:6c:a9:c9:52:8f:4d:a3:94:2a:83:02:
c9:b6:42:86:a8:96:eb:67:df:1d:45:1f:a8:16:a4:
f1:4f:08:fe:e1:9d:40:c0:e7:51:6d:da:a3:be:63:
d0:d9:db:28:12:0d:f3:5d:54:98:87:b1:85:4a:c6:
48:ee:c1:fc:4e:ce:bc:4c:85:e1:85:f6:1b:55:c4:
54:db:3e:6c:94:a4:fd:01:fa:4b:d0:ba:c9:a9:a6:
13:89:55:32:69:98:cc:cb:18:d7:6c:64:7d:34:a4:
72:4a:84:7f:04:52:7d:3b:31:78:0a:bf:cd:f5:0b:
77:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:72:9D:6C:1F:9F:42:3B:9C:11:D8:0E:D4:AE:40:23:A2:10:27:A0
X509v3 Authority Key Identifier:
keyid:F0:30:65:8F:16:D2:D8:8D:34:16:45:92:FC:D4:DE:13:13:1F:16:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8DBljxbS2I00FkWS_NTeExMfFpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/MHKdbB-fQjucEdgO1K5AI6IQJ6A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/8DBljxbS2I00FkWS_NTeExMfFpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.196.104.0/24
Signature Algorithm: sha256WithRSAEncryption
31:33:8e:92:81:c6:39:19:f3:4b:ee:59:75:0f:fb:56:44:7e:
3b:66:e4:8b:41:26:e5:ec:9b:53:29:78:c1:0a:c6:e2:b1:8b:
ce:7c:b6:03:ab:19:a1:ec:c4:04:5e:49:31:98:01:62:b7:64:
38:07:b4:41:27:87:2a:80:8f:0e:30:ab:a0:af:fd:7d:a9:34:
53:f0:53:ea:15:b3:52:b1:7b:3b:b4:3b:09:9d:30:81:cb:31:
e8:6d:18:97:18:15:6d:92:c0:41:4b:7d:d1:5c:93:cf:09:7a:
59:1c:f1:a5:90:4e:22:68:82:a8:25:c6:c0:79:fb:f7:f7:14:
7a:f2:1f:b7:a4:30:82:5a:fe:72:6f:4c:6b:c8:6e:a6:5f:c4:
3a:82:8b:9e:c1:8b:e1:aa:2c:c4:73:53:d7:1e:f2:7a:b4:f2:
e0:13:84:44:9c:4c:38:4b:1b:62:c7:9f:6f:b1:66:c4:00:ab:
fd:fa:50:e8:dc:03:db:e4:dc:34:a8:4d:71:87:13:ae:c6:04:
ed:00:d9:6d:2e:1a:35:81:2f:d5:50:67:89:f0:85:2d:f9:0b:
e0:54:cd:60:4a:4a:1f:04:86:46:65:3e:bc:da:72:6a:55:88:
8d:d6:4c:a1:4a:5f:34:2f:06:14:c2:fb:a2:b9:8b:42:cb:b9:
77:cb:44:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:37 2024 by rpki-client on console-fra.rpki-client.org