Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/Moui2_6cyqoAmtn4_pJ-b2Crpgw.roa
File: Moui2_6cyqoAmtn4_pJ-b2Crpgw.roa (raw, json)
Hash identifier: 90QloTBi7O5E4TFPOhTPh8xU+CxIWsgJ2iDjZM83Xuk=
Subject key identifier: 32:8B:A2:DB:FE:9C:CA:AA:00:9A:D9:F8:FE:92:7E:6F:60:AB:A6:0C
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 018BFDAFD7CE3C68F277EC109C28648955D4
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/Moui2_6cyqoAmtn4_pJ-b2Crpgw.roa
Signing time: Thu 23 Nov 2023 19:37:21 +0000
ROA not before: Thu 23 Nov 2023 19:37:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 91.186.216.0/22 maxlen: 24
94.241.168.0/21 maxlen: 24
83.147.216.0/24 maxlen: 24
178.253.26.0/23 maxlen: 24
178.253.55.0/24 maxlen: 24
83.147.244.0/22 maxlen: 24
83.147.252.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:fd:af:d7:ce:3c:68:f2:77:ec:10:9c:28:64:89:55:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Nov 23 19:37:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=328ba2dbfe9ccaaa009ad9f8fe927e6f60aba60c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:bd:88:2a:9f:1d:9e:3f:fe:65:39:1c:40:ca:
b2:47:da:74:e6:56:6c:87:67:a8:d8:c4:7c:90:15:
49:ed:d9:6d:e8:15:e1:9b:9a:0e:72:83:bd:51:f7:
84:eb:a3:dc:25:be:88:e2:05:38:d4:05:aa:0f:91:
b7:af:3a:c2:9b:d9:ae:f0:15:cc:09:a5:1d:19:7c:
f0:98:c0:27:44:50:24:f8:92:a2:e7:95:2a:fd:18:
13:a6:8f:fe:9c:88:54:98:32:10:29:c2:a0:d4:73:
e1:60:93:c1:eb:25:9d:f0:95:dd:f2:c0:91:e3:6e:
a8:12:57:93:3a:41:35:53:a4:86:17:94:46:53:4e:
90:8a:9d:c3:86:5c:90:ee:bf:f0:41:2e:1e:c6:23:
c8:f9:20:b9:27:cb:16:63:49:10:2b:91:fd:dc:20:
cf:9f:f5:c3:a2:20:45:48:6e:e9:1f:1f:a3:34:59:
65:0a:48:f7:f1:ac:b5:28:96:df:f6:a7:e8:27:fa:
8a:89:5f:08:19:67:f0:64:e1:5d:0d:dd:44:f5:44:
dd:e2:86:25:64:cf:09:35:9a:ba:79:99:2c:77:c2:
c4:40:f7:6c:f9:e6:1c:83:6e:83:44:f4:ad:ad:2c:
81:62:22:07:a2:57:a5:8b:d1:ba:7b:a5:63:d8:62:
c8:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:8B:A2:DB:FE:9C:CA:AA:00:9A:D9:F8:FE:92:7E:6F:60:AB:A6:0C
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/Moui2_6cyqoAmtn4_pJ-b2Crpgw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.216.0/24
83.147.244.0/22
83.147.252.0/22
91.186.216.0/22
94.241.168.0/21
178.253.26.0/23
178.253.55.0/24
Signature Algorithm: sha256WithRSAEncryption
21:d5:17:32:39:d7:b8:c5:dc:15:5a:64:af:cc:5d:a4:a2:29:
ab:a2:e3:15:26:42:4d:8f:de:83:ef:7b:e3:42:03:22:c3:47:
9b:0a:b3:28:79:7a:30:4b:11:a5:35:90:2e:c7:b6:d8:d1:5b:
f6:d5:89:47:9b:c2:61:a2:70:08:6a:50:29:23:e1:e7:f6:7b:
3e:f0:e9:55:10:17:34:e3:d0:cc:49:02:18:61:67:2e:cc:4c:
1a:5b:64:9a:67:ac:5e:62:44:c0:f5:90:32:6e:bb:26:dc:0f:
5c:e0:e9:2c:f0:d0:87:42:f6:b1:e7:7d:10:ca:bd:0d:fa:16:
46:d1:0f:ce:54:d0:00:75:7d:5b:37:98:0b:c3:9f:b9:c5:a0:
42:0b:66:9c:da:ef:5b:ac:f0:ed:91:af:3d:2f:5e:c1:3b:f3:
fa:2d:1c:19:4f:ef:82:2a:f6:29:b9:af:a3:cf:3e:fe:a5:b9:
8a:6d:62:96:23:4e:ca:bb:4f:da:95:f2:4e:e3:a7:ca:7c:1c:
cd:f2:ac:70:7c:e9:b9:25:e3:5d:ec:e0:c3:60:b6:87:a8:f8:
59:5f:bb:ca:a7:58:d6:f1:3a:8d:bc:9a:2f:b7:0a:8c:70:0e:
ff:27:7b:e6:22:f1:7a:de:6b:32:5d:81:69:83:c8:18:1b:df:
6a:81:2c:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 24 06:34:41 2023 by rpki-client on console-ams.rpki-client.org