Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/1f5feb-7acf-4c1d-8e9f-1f262d9c9b07/1/MFaRFLFRO4yyyCHA3tWZGdhF3LM.roa
File: MFaRFLFRO4yyyCHA3tWZGdhF3LM.roa (raw, json)
Hash identifier: xb3t9E5af0qJR421VJgEqvFtrhFy1fzCHGB5KqwvhsQ=
Subject key identifier: 30:56:91:14:B1:51:3B:8C:B2:C8:21:C0:DE:D5:99:19:D8:45:DC:B3
Certificate issuer: /CN=24a918f1b10ec1d660b1cfcb1bfe196c2feb06bf
Certificate serial: 01856BC10F8A380606F85741F79C7C5654B6
Authority key identifier: 24:A9:18:F1:B1:0E:C1:D6:60:B1:CF:CB:1B:FE:19:6C:2F:EB:06:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JKkY8bEOwdZgsc_LG_4ZbC_rBr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/1f5feb-7acf-4c1d-8e9f-1f262d9c9b07/1/MFaRFLFRO4yyyCHA3tWZGdhF3LM.roa
Signing time: Sun 01 Jan 2023 05:14:52 +0000
ROA not before: Sun 01 Jan 2023 05:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 193.16.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:c1:0f:8a:38:06:06:f8:57:41:f7:9c:7c:56:54:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24a918f1b10ec1d660b1cfcb1bfe196c2feb06bf
Validity
Not Before: Jan 1 05:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=30569114b1513b8cb2c821c0ded59919d845dcb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:0d:ec:0b:6e:de:9f:a0:db:b2:93:38:0f:28:
95:f2:12:0c:93:c2:59:42:9e:5c:7b:1b:e4:69:d4:
0b:58:91:0e:fc:0d:99:ca:49:82:99:e1:5b:23:d1:
68:33:ac:fd:66:eb:2a:10:c1:20:a3:21:22:35:72:
1c:51:7b:02:61:eb:7c:c0:9a:83:11:9b:1e:40:c6:
62:2c:5a:76:41:79:0a:2b:a2:a1:1a:0c:46:a2:6f:
d9:03:ff:ce:ac:34:bb:e7:48:ff:b9:42:3b:60:45:
a6:31:5b:62:c0:cd:2c:de:dc:29:2f:31:06:7c:8a:
3b:a9:b2:7f:95:6c:1e:d7:fb:f4:1e:cf:4f:18:b0:
5f:83:97:6c:63:4f:99:06:3b:91:e5:b3:6b:9b:c3:
9f:ad:8f:cc:65:69:2f:de:b4:ab:f4:f1:1c:66:f2:
5c:d6:7e:0f:9e:8d:53:5e:05:e2:26:6a:18:ba:0e:
c7:3d:8c:3f:10:1b:d8:08:df:39:63:cf:56:54:d3:
73:5a:c9:c5:7e:da:2a:1f:99:71:3f:8e:ac:d8:b7:
c7:1c:27:52:3f:d9:8b:e8:d6:36:26:26:4a:a6:df:
35:14:5a:be:8c:5c:cf:4e:dc:46:b2:e5:a9:1c:d8:
4b:a4:92:50:12:a2:59:06:73:e8:32:5f:b7:49:be:
aa:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:56:91:14:B1:51:3B:8C:B2:C8:21:C0:DE:D5:99:19:D8:45:DC:B3
X509v3 Authority Key Identifier:
keyid:24:A9:18:F1:B1:0E:C1:D6:60:B1:CF:CB:1B:FE:19:6C:2F:EB:06:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JKkY8bEOwdZgsc_LG_4ZbC_rBr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/1f5feb-7acf-4c1d-8e9f-1f262d9c9b07/1/MFaRFLFRO4yyyCHA3tWZGdhF3LM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/1f5feb-7acf-4c1d-8e9f-1f262d9c9b07/1/JKkY8bEOwdZgsc_LG_4ZbC_rBr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.16.22.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:bf:8f:dc:e5:c9:92:d4:04:9c:eb:e3:7b:c1:73:b4:52:ec:
8c:17:68:86:53:84:be:f9:33:f3:de:e9:0c:7e:c5:e8:da:61:
e0:f9:a1:d5:33:b8:b7:05:50:35:a0:7f:fd:b1:a7:c8:52:95:
66:ac:0d:3e:c3:53:41:ba:5a:95:1c:e7:83:e9:7d:5c:95:1d:
55:c5:67:9f:a3:79:3f:a1:c7:a1:1d:c7:da:34:f6:3d:25:9f:
96:f5:b8:42:de:bc:93:bc:ec:a1:6f:cf:0b:ca:ad:c6:00:6c:
a6:ca:c4:81:99:b3:0e:f3:fa:ed:fe:8b:76:49:50:31:1c:43:
13:8a:54:64:0d:c7:4f:36:71:dc:da:89:85:2a:04:d7:59:71:
29:a8:06:8c:28:6d:ee:a2:a3:76:a8:5e:3c:a5:bf:a1:70:ec:
e1:30:f9:09:90:4c:ac:e3:f1:da:2d:da:92:61:24:98:9e:db:
8d:44:00:b0:19:00:06:cd:c5:d9:fc:15:da:29:eb:c5:70:4b:
d1:25:d0:11:af:1b:f1:07:46:fc:4c:0c:57:7d:59:8b:d1:14:
0c:51:f6:86:7f:ed:e2:d4:45:f8:64:c6:c0:d1:99:f3:9d:7f:
10:6e:8d:20:e9:bc:7b:c1:65:4e:e9:1c:26:a9:d1:0b:95:3e:
ae:d6:9c:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:44 2024 by rpki-client on console-ams.rpki-client.org