Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/MfWphXXAzaV9GT8r5aLN7PDqzZ8.roa
File: MfWphXXAzaV9GT8r5aLN7PDqzZ8.roa (raw, json)
Hash identifier: xpS4Jr4AxSs8MMmhHUTeUAkU341eiNlsgND3nmFyEsw=
Subject key identifier: 31:F5:A9:85:75:C0:CD:A5:7D:19:3F:2B:E5:A2:CD:EC:F0:EA:CD:9F
Certificate issuer: /CN=3263787fd0f94b37813eef16bc8137423ee3fef3
Certificate serial: 01864F39C56E6D19000859EB82A0C33A609B
Authority key identifier: 32:63:78:7F:D0:F9:4B:37:81:3E:EF:16:BC:81:37:42:3E:E3:FE:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/MfWphXXAzaV9GT8r5aLN7PDqzZ8.roa
Signing time: Tue 14 Feb 2023 09:20:31 +0000
ROA not before: Tue 14 Feb 2023 09:20:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48266
IP address blocks: 192.145.55.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:4f:39:c5:6e:6d:19:00:08:59:eb:82:a0:c3:3a:60:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3263787fd0f94b37813eef16bc8137423ee3fef3
Validity
Not Before: Feb 14 09:20:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=31f5a98575c0cda57d193f2be5a2cdecf0eacd9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:a4:1d:6e:09:a9:81:55:c2:76:18:ce:71:eb:
ea:0f:81:87:98:bc:f4:b7:65:bd:bc:21:34:b1:1c:
04:d4:f1:ab:65:fe:db:0e:80:0e:e2:38:2c:c2:0a:
2f:c7:57:93:ae:2b:6e:f0:12:c5:49:d0:20:c1:79:
3e:f3:3c:80:ab:9e:2a:45:ee:23:77:eb:f9:40:ab:
3a:63:bb:ac:50:6a:f7:92:c7:fa:15:13:ea:57:93:
41:e9:35:93:9b:77:37:93:f1:1c:a1:39:95:79:34:
a6:de:4b:d7:3e:c1:05:9e:cc:9b:2b:41:29:40:29:
c5:a1:8e:a3:93:26:52:ed:ed:94:92:8b:f4:34:4a:
24:43:5c:45:57:ec:5b:54:8e:80:d4:73:65:5a:e6:
db:80:b5:a2:b4:95:00:80:38:a1:37:a2:8e:09:db:
7e:7e:e1:59:11:19:66:a7:50:41:bb:56:a7:6c:c9:
12:1a:a9:e9:86:73:ac:6d:22:3a:28:88:66:65:e3:
af:3a:5b:44:79:0e:78:ec:74:0b:75:89:9c:a8:9e:
a8:8e:17:0e:63:9a:a3:94:66:9e:96:3b:56:12:05:
ee:61:21:01:26:20:c5:e4:01:9a:78:a1:ca:02:d9:
bc:db:4e:1c:67:fc:1c:99:d0:ec:80:5c:18:d1:99:
cd:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:F5:A9:85:75:C0:CD:A5:7D:19:3F:2B:E5:A2:CD:EC:F0:EA:CD:9F
X509v3 Authority Key Identifier:
keyid:32:63:78:7F:D0:F9:4B:37:81:3E:EF:16:BC:81:37:42:3E:E3:FE:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/MfWphXXAzaV9GT8r5aLN7PDqzZ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.145.55.0/24
Signature Algorithm: sha256WithRSAEncryption
07:91:70:e5:92:c4:3f:d1:b0:e1:82:4d:da:4f:5e:ba:a1:a3:
f7:77:29:d0:c3:a4:19:62:91:4c:d9:4a:a2:19:9d:5f:e8:5e:
e9:fc:d1:98:eb:ce:56:dc:a7:23:c4:ed:17:3a:34:49:b6:44:
7d:7c:8a:a8:cd:89:2e:63:e2:c1:74:ac:1a:47:82:58:f8:e2:
84:cb:87:d2:c5:15:4f:2f:69:2c:82:8b:c7:22:8f:d7:ac:ee:
f6:49:24:03:1b:e1:5e:59:b5:01:1f:ce:26:a6:9f:48:e1:5d:
94:cc:e2:37:f9:e6:12:17:f6:90:3b:bc:47:21:03:1b:25:4c:
6e:31:42:3c:07:6d:53:68:5c:20:c1:29:d0:68:16:77:9c:af:
de:c7:73:f9:92:4f:88:b8:5d:9e:b3:86:5a:b7:27:8f:3b:72:
00:2c:ea:54:82:84:bc:a6:dd:ce:d0:c2:00:b5:95:c3:2b:64:
29:bd:af:84:ac:c5:ee:6e:26:e1:ec:1e:a6:0f:0d:e5:05:0a:
80:25:28:28:ac:82:a8:a4:87:7d:b1:61:1f:23:45:2f:ec:1e:
1f:c9:75:48:86:90:75:98:81:98:f8:cf:2a:76:54:77:d0:31:
ee:36:d9:af:01:0a:83:ff:07:7a:9b:d0:ce:ae:4c:9e:27:33:
bd:8c:9d:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:26 2023 by rpki-client on console-fra.rpki-client.org