Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/MpzjkpOv42oeFjfyaDYk59qRup0.roa
File: MpzjkpOv42oeFjfyaDYk59qRup0.roa (raw, json)
Hash identifier: iETm3eqoGBPX6WiP8fGZJnSgn3jww5afmzMZ8UUFGoY=
Subject key identifier: 32:9C:E3:92:93:AF:E3:6A:1E:16:37:F2:68:36:24:E7:DA:91:BA:9D
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 01877B8D294F47508CE5458FA8652B39011A
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/MpzjkpOv42oeFjfyaDYk59qRup0.roa
Signing time: Thu 13 Apr 2023 16:57:41 +0000
ROA not before: Thu 13 Apr 2023 16:57:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 83.147.240.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Jun 2023 16:26:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:7b:8d:29:4f:47:50:8c:e5:45:8f:a8:65:2b:39:01:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Apr 13 16:57:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=329ce39293afe36a1e1637f2683624e7da91ba9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:91:90:a0:ac:2c:65:8e:7a:c5:5d:20:17:69:
28:02:94:80:75:ef:6b:b9:28:01:a2:c3:15:e7:8b:
14:8c:e7:6d:bb:50:40:3f:5d:2e:c2:b4:a2:ce:c5:
41:96:1e:ac:08:10:2f:c3:44:39:ca:72:4c:3f:cb:
58:bc:cf:5d:6a:cd:65:e2:07:4e:f5:1f:ce:20:b2:
0f:5c:67:43:3d:1f:77:20:ea:17:4c:8a:bf:f9:40:
4b:52:0d:04:c5:9e:a3:3e:35:11:37:af:a3:e1:f3:
c8:f2:27:34:9e:94:c0:fe:0a:bd:91:c7:e2:66:7c:
81:50:72:1f:43:61:7e:4e:95:09:9a:75:1d:c0:10:
28:32:91:c5:1e:05:71:ac:49:56:2f:28:62:90:0e:
01:73:49:3a:c5:ab:90:f0:20:31:86:0e:0c:7c:bd:
63:5a:db:ab:b2:62:a1:31:70:b4:59:b7:de:70:0d:
5b:bc:a0:eb:37:c4:61:49:f3:1f:89:58:7a:24:c4:
71:4c:f3:97:a9:31:76:c6:45:1d:cd:9a:93:63:ac:
7c:da:db:f9:4b:8d:83:75:5c:5f:1e:c6:2c:06:90:
91:26:3d:80:03:69:3b:bb:16:7b:ff:86:c7:e3:37:
e2:0c:25:d0:85:51:a3:0b:c0:c7:9e:58:3b:20:22:
6b:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:9C:E3:92:93:AF:E3:6A:1E:16:37:F2:68:36:24:E7:DA:91:BA:9D
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/MpzjkpOv42oeFjfyaDYk59qRup0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.240.0/22
Signature Algorithm: sha256WithRSAEncryption
8b:fa:6c:aa:74:f1:30:ce:76:47:9f:ba:a6:cb:c0:29:43:e2:
09:8a:44:4e:85:7b:60:ae:7f:db:aa:1b:3f:0b:ca:96:70:a7:
97:65:13:6d:b5:9b:5b:d1:93:0b:7d:af:47:5d:76:73:ca:6f:
9d:ea:d6:e9:b3:cc:28:8b:ea:cc:d6:40:36:ae:87:f6:db:94:
a9:b1:ec:fe:b4:a9:c0:76:58:56:72:95:82:9e:23:38:12:75:
5d:df:67:1e:9c:40:37:7d:da:17:9a:d3:47:86:85:19:fa:f7:
db:6d:bb:6a:1f:c2:e5:24:b6:9c:d3:f1:96:bf:74:f5:6e:81:
96:c0:44:f5:df:b9:0b:66:88:86:9e:73:87:98:f8:b5:3f:d2:
a5:62:ea:7f:a5:63:c5:6c:6c:23:ef:fd:5b:90:11:cb:b4:0c:
06:63:e9:96:67:8c:e4:df:3e:34:25:a3:7a:b4:38:ae:56:e4:
71:f4:ed:0e:cb:ac:72:12:1e:44:03:eb:fc:17:89:55:8a:13:
ea:98:b4:05:38:1f:2c:60:06:41:b5:1a:e0:2e:8e:6e:b1:09:
a8:18:c1:c9:8a:a9:04:56:39:a8:03:b9:61:3b:da:7c:c0:a8:
d4:f1:ea:37:71:c7:86:e6:f3:fe:38:f4:1f:19:8e:0f:f9:2a:
6a:39:b4:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:19 2024 by rpki-client on console-ams.rpki-client.org