Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/MaJH3CgMIJoYQGrkDTComTmjwL0.roa
File: MaJH3CgMIJoYQGrkDTComTmjwL0.roa (raw, json)
Hash identifier: NrYc+XfAKS1zM6VJVbHij++k1W2d0qesfpTCCc6tWK0=
Subject key identifier: 31:A2:47:DC:28:0C:20:9A:18:40:6A:E4:0D:30:A8:99:39:A3:C0:BD
Certificate issuer: /CN=fe779e56238b6f2ea068ede4e20aef00c904132b
Certificate serial: 018740B5480D7ECF524D3CB45C726E33EF0B
Authority key identifier: FE:77:9E:56:23:8B:6F:2E:A0:68:ED:E4:E2:0A:EF:00:C9:04:13:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/MaJH3CgMIJoYQGrkDTComTmjwL0.roa
Signing time: Sun 02 Apr 2023 06:43:54 +0000
ROA not before: Sun 02 Apr 2023 06:43:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 92.53.172.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 14 Apr 2023 19:57:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:40:b5:48:0d:7e:cf:52:4d:3c:b4:5c:72:6e:33:ef:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe779e56238b6f2ea068ede4e20aef00c904132b
Validity
Not Before: Apr 2 06:43:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=31a247dc280c209a18406ae40d30a89939a3c0bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:82:f2:ae:03:2c:25:3b:6b:09:a2:c0:7c:03:
c4:a5:8a:b9:42:58:2f:04:1e:b9:f6:fc:49:dc:c4:
c5:1a:ba:96:50:1d:c3:3d:11:6f:a1:08:53:87:fa:
e8:df:86:41:ce:7e:4f:93:4a:09:6a:cc:21:35:db:
d2:56:a5:90:92:2c:0e:cd:a1:76:32:f3:0b:5d:14:
bc:e0:b1:1e:5e:3b:1e:e2:2a:48:57:0c:14:76:ad:
0e:58:a3:6b:66:7a:c4:03:aa:c8:1c:86:68:45:bf:
5d:da:2c:ea:67:e5:33:f6:06:ed:d5:b3:dc:c5:fe:
8d:00:97:72:e4:ea:d9:7e:d5:b2:b8:25:e0:7a:ce:
1b:9d:9e:f4:d0:43:a5:b6:0e:d6:1c:25:33:63:bf:
34:01:92:df:e7:99:ff:39:72:0d:c0:fd:79:ae:b0:
0e:a5:7e:2e:85:3c:8a:5e:f2:f3:c8:db:cb:84:7f:
51:d8:6e:40:14:fd:e9:40:e4:d0:de:16:4a:24:81:
da:69:61:59:39:7f:17:ad:e1:2d:14:ce:b8:60:b2:
dc:21:8d:12:c2:83:b8:1f:55:19:c3:3a:ac:65:66:
90:87:8d:1b:11:f2:c4:68:8c:73:ce:d5:8e:d6:48:
53:c0:88:08:7f:ec:e6:97:86:35:3a:96:2e:d2:92:
2a:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:A2:47:DC:28:0C:20:9A:18:40:6A:E4:0D:30:A8:99:39:A3:C0:BD
X509v3 Authority Key Identifier:
keyid:FE:77:9E:56:23:8B:6F:2E:A0:68:ED:E4:E2:0A:EF:00:C9:04:13:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/MaJH3CgMIJoYQGrkDTComTmjwL0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/_neeViOLby6gaO3k4grvAMkEEys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.53.172.0/22
Signature Algorithm: sha256WithRSAEncryption
01:66:17:2a:24:30:a5:cd:e2:a2:05:76:81:06:2f:8f:9a:9c:
79:4d:29:f3:4a:53:e8:04:75:47:a2:28:70:d5:0b:c6:fd:59:
ab:ee:8f:b6:81:a4:be:7f:d7:b7:a7:f4:c6:41:13:08:e6:56:
34:df:c9:70:62:ca:05:12:06:50:bc:98:2e:af:06:4b:0b:24:
e9:d7:7d:40:e2:e7:3a:49:b6:d8:ac:e6:a0:1f:10:63:c1:04:
eb:9c:05:78:ea:95:26:99:ed:a3:3c:bf:91:39:1e:53:a1:a3:
52:b3:de:f4:f6:a8:c5:df:49:06:16:3d:61:b2:a6:31:88:3b:
50:9e:f1:b3:e5:fa:61:d6:60:1c:32:52:b4:4c:13:e7:6b:38:
b1:c4:6a:f5:ca:b2:c6:6c:e9:24:06:73:e1:96:b4:50:6c:d9:
81:c3:91:37:d3:fc:8e:6c:d2:a8:d2:16:4d:e1:a5:cf:8b:0d:
3c:89:43:71:0e:90:15:db:03:2b:8a:6b:44:86:b3:b0:8b:da:
1d:66:2e:0a:d3:4a:5c:9d:5a:aa:29:d4:53:13:0e:95:80:b4:
43:af:3c:61:a3:c4:78:17:10:6f:34:e0:85:90:84:73:6d:a1:
5a:65:a2:d4:7a:fc:20:06:cd:8b:98:52:a1:11:55:a5:18:7b:
52:70:59:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:04 2024 by rpki-client on console-ams.rpki-client.org