Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/MwXs059JGaLW1jN1e1PybpAS4Tg.roa
File: MwXs059JGaLW1jN1e1PybpAS4Tg.roa (raw, json)
Hash identifier: GwzsIl5ACAjvYPjafhA9nyfZpoEuYHRypMhK/Qc7gpU=
Subject key identifier: 33:05:EC:D3:9F:49:19:A2:D6:D6:33:75:7B:53:F2:6E:90:12:E1:38
Certificate issuer: /CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Certificate serial: 01856F5DD272E09C00D8838C9BD2E608DBFE
Authority key identifier: 87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/MwXs059JGaLW1jN1e1PybpAS4Tg.roa
Signing time: Sun 01 Jan 2023 22:04:57 +0000
ROA not before: Sun 01 Jan 2023 22:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205302
IP address blocks: 212.183.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:d2:72:e0:9c:00:d8:83:8c:9b:d2:e6:08:db:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Validity
Not Before: Jan 1 22:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3305ecd39f4919a2d6d633757b53f26e9012e138
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:82:e9:1a:bb:47:d7:62:10:95:42:99:7a:6d:
8d:97:fb:94:57:96:f8:63:71:32:dc:74:52:c7:7a:
0a:ef:f1:22:73:85:b2:41:ea:5b:0a:6f:5e:b1:78:
b6:74:35:8c:33:f4:bc:72:00:c9:55:2d:66:01:6c:
8e:b3:1a:d8:e7:0c:ff:45:1e:8a:4d:f4:8b:13:be:
6d:86:b0:77:b1:32:9a:fc:db:83:db:5a:4a:39:3f:
29:d8:f1:4d:8e:a7:6b:8e:34:7a:7b:3c:7a:48:55:
2f:fb:04:55:ee:56:2d:4d:e7:da:ef:2c:a2:b1:0e:
f6:48:ab:8d:c9:28:d4:f6:a8:35:84:6f:41:47:87:
23:0c:23:6e:da:e9:e0:5f:24:ce:84:a9:2c:ac:d1:
4f:5c:93:e0:c8:b7:67:e6:61:3c:4f:05:bb:ec:3d:
2b:b8:01:0f:61:c3:fc:ff:df:f0:8d:03:58:09:e4:
d9:f2:d7:e3:2d:27:d5:be:0d:df:04:ea:ab:5c:be:
5f:31:9d:65:9f:53:2a:94:54:d0:5f:53:07:3f:2b:
58:b0:0e:43:5c:60:dc:60:56:5c:c6:25:b9:6d:e6:
4a:a1:ae:6a:54:e9:f9:59:61:3d:31:d6:17:12:6d:
21:09:fa:39:85:8e:bc:4c:97:bf:81:a7:f4:bd:ea:
70:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:05:EC:D3:9F:49:19:A2:D6:D6:33:75:7B:53:F2:6E:90:12:E1:38
X509v3 Authority Key Identifier:
keyid:87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/MwXs059JGaLW1jN1e1PybpAS4Tg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/hwxYmk8iqcov-ZtMSPi99JKHFyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.183.4.0/24
Signature Algorithm: sha256WithRSAEncryption
af:e3:f5:92:b4:51:e5:66:6e:68:46:09:c2:59:62:f8:1c:ca:
8f:17:95:51:c6:39:42:d7:23:84:f8:86:fc:1f:a6:25:55:0a:
50:42:42:93:e7:6f:90:fd:56:08:89:89:e9:7c:44:df:0a:16:
53:37:82:bd:0b:b0:ca:79:4f:88:fc:9a:c4:84:8a:62:b8:6a:
fe:0f:27:eb:ad:bd:99:31:1b:d9:6b:71:bc:08:79:13:83:c9:
6e:d1:d3:5b:df:50:61:fc:30:3d:84:e7:47:87:92:76:47:dd:
e4:4b:5e:9c:ad:8c:d1:35:e8:e2:f5:c1:e4:bf:1c:44:3c:83:
c2:9b:a0:63:ce:a4:9d:b2:49:b0:a8:a4:44:11:58:66:c1:46:
2d:19:4f:75:17:15:ec:2e:b2:20:a4:32:0f:7f:57:2a:87:e8:
58:f5:8c:a2:03:13:1e:c6:cf:69:26:f2:72:15:34:cd:9b:94:
2f:fd:eb:2c:eb:fc:92:4f:e4:c8:b0:d2:73:c4:5f:fa:63:e8:
6b:e5:5b:20:de:88:11:74:bc:61:0b:13:1e:26:a8:5d:ce:b8:
af:7a:26:9a:79:6f:3a:fa:e5:b0:40:fd:ea:68:4d:b1:80:b4:
16:9a:23:f9:76:c0:00:59:38:1e:e1:83:49:e0:63:86:e4:81:
c1:7f:34:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:16 2024 by rpki-client on console-ams.rpki-client.org