Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/MK7sPWIWuYCctK2z-e_MN8CZd-k.roa
File: MK7sPWIWuYCctK2z-e_MN8CZd-k.roa (raw, json)
Hash identifier: iv2jnFvvwn4TvlnhT1Be+Co0MB7H1mMivVekDzt4SOg=
Subject key identifier: 30:AE:EC:3D:62:16:B9:80:9C:B4:AD:B3:F9:EF:CC:37:C0:99:77:E9
Certificate issuer: /CN=d48a27f44b10404c52f6ffc4e08dc82bf8b5dee4
Certificate serial: 0187ED42B7A7846E7A2D33A3BAE5CEF4E2DE
Authority key identifier: D4:8A:27:F4:4B:10:40:4C:52:F6:FF:C4:E0:8D:C8:2B:F8:B5:DE:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Ion9EsQQExS9v_E4I3IK_i13uQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/MK7sPWIWuYCctK2z-e_MN8CZd-k.roa
Signing time: Fri 05 May 2023 18:53:05 +0000
ROA not before: Fri 05 May 2023 18:53:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 393427
IP address blocks: 168.75.224.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:ed:42:b7:a7:84:6e:7a:2d:33:a3:ba:e5:ce:f4:e2:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d48a27f44b10404c52f6ffc4e08dc82bf8b5dee4
Validity
Not Before: May 5 18:53:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=30aeec3d6216b9809cb4adb3f9efcc37c09977e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:34:b9:2b:e1:f2:e2:d9:a9:4a:32:b3:c4:7a:
d9:dc:bc:88:5f:75:ca:cc:d2:ee:99:dd:b2:c5:40:
eb:9a:52:62:f9:b0:bb:22:7b:46:7a:3f:d8:49:1d:
a1:e0:e3:bb:c8:cb:68:20:02:8c:12:c7:20:1f:3f:
56:70:20:a2:8c:e4:ed:39:87:09:b1:fe:37:06:7d:
79:e2:83:a0:87:ee:a5:19:09:5f:5a:2b:78:5b:da:
64:f1:dd:4b:21:69:f5:4e:bf:3d:75:3c:33:c4:79:
2a:52:a1:35:24:1d:1e:ad:d5:04:ab:8c:de:d0:ec:
51:29:e6:af:d6:3d:a5:4d:39:84:e1:a6:79:dd:5b:
09:07:2b:8d:10:93:43:ba:ab:9c:8a:51:d8:70:03:
fc:5b:fe:4f:9d:4b:fc:a9:67:f7:c5:d2:98:c5:92:
b3:c7:54:63:84:13:09:65:bf:16:e8:19:31:25:62:
ba:0d:5c:1c:1a:f7:9b:7c:2c:6b:68:10:a3:0a:83:
83:75:ec:96:f0:1e:99:72:89:79:38:90:86:4e:81:
22:b6:ab:59:15:c4:35:72:93:1e:5e:6a:bb:48:8f:
1c:a4:cc:91:6e:77:2d:00:86:9e:d5:e8:a1:a4:a6:
9f:d4:41:c9:2c:94:4c:65:ff:e0:7c:9a:e4:6f:c4:
cb:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:AE:EC:3D:62:16:B9:80:9C:B4:AD:B3:F9:EF:CC:37:C0:99:77:E9
X509v3 Authority Key Identifier:
keyid:D4:8A:27:F4:4B:10:40:4C:52:F6:FF:C4:E0:8D:C8:2B:F8:B5:DE:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Ion9EsQQExS9v_E4I3IK_i13uQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/MK7sPWIWuYCctK2z-e_MN8CZd-k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/1Ion9EsQQExS9v_E4I3IK_i13uQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.75.224.0/20
Signature Algorithm: sha256WithRSAEncryption
7f:fe:ab:23:27:7d:06:e2:7e:57:87:8a:cd:01:4c:5c:9c:2c:
3a:2f:83:46:88:8e:78:80:a2:e1:f2:bd:ee:1b:4a:02:51:09:
62:92:1b:5f:19:c0:09:4f:28:79:4d:98:c4:62:5d:12:9e:c9:
ec:9e:60:6c:07:7d:17:c3:ba:90:49:a5:39:97:2d:4a:28:62:
fb:b2:cf:9a:37:91:0f:b3:83:c6:b5:8d:7c:d7:00:15:39:76:
a0:33:cb:a7:a4:3f:a4:9c:6c:b7:16:c4:c1:35:c3:27:43:a2:
7c:07:2e:90:79:1e:9f:65:81:e5:b6:8f:73:95:d2:d3:24:8a:
24:f6:be:9c:15:fb:d3:02:b8:9f:e2:cf:1f:a2:c5:59:75:1c:
5d:8e:69:8a:75:5a:03:7f:f3:02:54:f5:96:af:ad:d9:0a:b1:
3d:d4:1d:ab:1d:6a:f3:ab:79:cb:41:7c:89:e5:4b:91:ce:8b:
28:50:85:2d:fd:91:2b:21:b1:d3:fb:6a:65:03:1c:c4:57:f5:
ca:78:32:0f:4e:1b:ef:e8:bb:96:ef:14:ca:5e:2b:18:8a:ff:
57:f0:7d:f6:7c:63:b3:2c:58:eb:03:a4:bf:c0:28:14:92:8d:
5f:ff:2d:4c:fa:b7:f3:eb:48:fe:0d:0d:64:04:83:bd:4e:74:
93:37:20:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:44 2023 by rpki-client on console-ams.rpki-client.org