Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/4c3160-de12-4929-a483-7c65a852f092/1/MXgq48tY4CPKVSDCk2vfj86P5DI.roa
File: MXgq48tY4CPKVSDCk2vfj86P5DI.roa (raw, json)
Hash identifier: b8bGbgcy0lxP9fZRkW9bo5ueXqAGsds9qf/mT0YOsGM=
Subject key identifier: 31:78:2A:E3:CB:58:E0:23:CA:55:20:C2:93:6B:DF:8F:CE:8F:E4:32
Certificate issuer: /CN=d38cd9440552e7dab9cd5631d4ab872451535b7a
Certificate serial: 018648B46227C2FA3BA44C2C488522198B27
Authority key identifier: D3:8C:D9:44:05:52:E7:DA:B9:CD:56:31:D4:AB:87:24:51:53:5B:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/04zZRAVS59q5zVYx1KuHJFFTW3o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/4c3160-de12-4929-a483-7c65a852f092/1/MXgq48tY4CPKVSDCk2vfj86P5DI.roa
Signing time: Mon 13 Feb 2023 02:57:06 +0000
ROA not before: Mon 13 Feb 2023 02:57:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.180.144.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:48:b4:62:27:c2:fa:3b:a4:4c:2c:48:85:22:19:8b:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d38cd9440552e7dab9cd5631d4ab872451535b7a
Validity
Not Before: Feb 13 02:57:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=31782ae3cb58e023ca5520c2936bdf8fce8fe432
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:79:9c:0b:cd:66:61:4f:89:16:07:93:f7:fc:
3a:c4:78:d9:40:b3:f8:fc:ff:89:c2:8d:dc:49:59:
c0:00:57:59:d9:a9:51:ca:51:7c:6f:59:0e:90:2f:
1a:43:5f:c9:85:18:a4:fe:17:21:86:ff:f9:a6:1f:
fe:07:19:18:1a:74:54:e1:d1:a9:50:d7:4a:d5:07:
e3:1b:44:68:ec:7c:21:84:b4:e2:72:22:19:96:16:
8c:b7:68:26:89:03:2e:34:db:72:73:bd:ff:1c:99:
79:75:e1:21:ef:07:e4:86:8f:0a:0c:75:20:3b:80:
60:79:33:5c:e7:ae:0d:f4:cb:ec:2f:3b:60:aa:2e:
95:3b:5d:f9:77:6c:e6:ca:80:96:9c:ce:42:25:b1:
89:b2:36:de:8d:28:85:01:7d:2e:55:46:16:09:cc:
73:19:f0:dd:1d:65:1c:41:e8:9d:e1:95:e7:1c:99:
d1:60:37:11:00:18:bb:25:e2:34:e7:69:e0:9f:fc:
6d:35:b1:6d:0d:78:87:3b:c1:3a:ae:42:a7:ec:40:
37:f5:82:e4:ee:a1:af:cf:20:55:b3:54:63:1c:c0:
74:81:24:6c:39:d7:fd:73:0d:fd:59:d4:cb:4c:72:
57:69:00:32:e1:60:db:21:6a:41:91:2e:3f:7e:be:
76:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:78:2A:E3:CB:58:E0:23:CA:55:20:C2:93:6B:DF:8F:CE:8F:E4:32
X509v3 Authority Key Identifier:
keyid:D3:8C:D9:44:05:52:E7:DA:B9:CD:56:31:D4:AB:87:24:51:53:5B:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/04zZRAVS59q5zVYx1KuHJFFTW3o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/4c3160-de12-4929-a483-7c65a852f092/1/MXgq48tY4CPKVSDCk2vfj86P5DI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/4c3160-de12-4929-a483-7c65a852f092/1/04zZRAVS59q5zVYx1KuHJFFTW3o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.180.144.0/24
Signature Algorithm: sha256WithRSAEncryption
09:a5:f4:7b:53:08:be:de:66:d3:53:3b:f0:26:7a:07:34:f0:
7c:49:5e:2c:df:51:28:db:0c:ec:a5:c0:56:f4:af:f8:5c:46:
87:6b:7a:62:73:c9:7a:09:11:05:43:2c:82:ef:8a:89:bc:d5:
c3:84:09:63:8a:50:f3:25:cc:fe:29:0b:72:ae:ec:01:88:e5:
62:ef:4b:e2:23:6e:6b:dc:68:22:bd:35:a3:d5:d6:3b:32:77:
7a:12:b1:7b:70:5f:db:f5:ab:03:1d:41:b3:00:a8:ec:b9:bc:
c4:42:3e:d7:02:95:c7:23:e1:22:ea:d2:10:93:04:44:a1:eb:
44:01:9a:0c:4e:55:d3:9e:57:d2:13:dd:b3:31:0d:dd:a5:b4:
3f:c2:09:a9:87:02:fb:e4:4f:73:19:15:fd:83:81:92:57:38:
c6:9b:fc:e8:46:00:86:82:94:bc:60:bc:35:3e:13:af:0c:49:
7f:2a:bd:17:d8:98:79:c5:a3:28:3c:26:71:b7:12:a8:01:e3:
62:f0:49:83:1c:8b:c3:f2:ad:9a:d0:24:ed:b3:4e:92:6b:b9:
41:39:3c:e7:5e:e2:79:fe:70:cc:e3:ab:31:78:e3:7b:08:eb:
2e:21:fd:43:6a:eb:be:ed:85:30:19:f5:e4:5e:f9:96:74:99:
71:05:8d:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:14 2023 by rpki-client on console-fra.rpki-client.org