Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/M0uGvi0S4MfgMp-MlWfHd73Fn5M.roa
File: M0uGvi0S4MfgMp-MlWfHd73Fn5M.roa (raw, json)
Hash identifier: EcQI83RF6ntexZMQfxr+0hQBSaKfOadvkzJMzzf2hxk=
Subject key identifier: 33:4B:86:BE:2D:12:E0:C7:E0:32:9F:8C:95:67:C7:77:BD:C5:9F:93
Certificate issuer: /CN=69f0070af877d6b986b307b9bc04ef19c440433d
Certificate serial: 01889FDD2BF3A13D8A72EEE16D2B78D16548
Authority key identifier: 69:F0:07:0A:F8:77:D6:B9:86:B3:07:B9:BC:04:EF:19:C4:40:43:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/afAHCvh31rmGswe5vATvGcRAQz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/M0uGvi0S4MfgMp-MlWfHd73Fn5M.roa
Signing time: Fri 09 Jun 2023 11:14:11 +0000
ROA not before: Fri 09 Jun 2023 11:14:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12693
IP address blocks: 185.127.208.0/22 maxlen: 22
2a06:cbc0::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9f:dd:2b:f3:a1:3d:8a:72:ee:e1:6d:2b:78:d1:65:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69f0070af877d6b986b307b9bc04ef19c440433d
Validity
Not Before: Jun 9 11:14:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=334b86be2d12e0c7e0329f8c9567c777bdc59f93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:76:5c:28:0f:c4:2e:31:bf:f8:ad:16:48:0a:
2a:bb:9d:97:f7:33:e1:82:27:61:d9:89:db:84:81:
70:2b:d9:c5:98:48:49:5b:6f:9c:c2:7b:5a:76:a8:
94:d7:25:1b:db:74:7d:04:29:a8:c7:01:c4:36:13:
ea:e5:cd:14:ce:95:5c:b5:a9:fa:67:c6:f8:a1:40:
66:51:8d:5f:28:30:c5:25:c0:76:cf:4c:e9:72:9c:
28:86:8d:33:fa:17:70:31:e1:40:a7:c2:7b:ab:49:
0e:71:4d:8f:ce:9b:34:52:72:e5:93:bd:7c:e7:4c:
da:e6:9e:96:10:39:c9:cd:e9:44:07:e1:27:74:2f:
77:34:d0:ce:a2:e3:58:95:ed:37:13:94:48:94:8c:
b8:3d:5a:47:05:ea:57:46:96:4e:75:fe:e8:0c:cc:
15:02:23:15:10:cb:ce:77:bf:4a:24:2c:3e:b4:09:
46:c3:84:b1:d9:9e:b6:d2:ee:37:2e:d0:0c:ee:c1:
8c:cf:1e:8c:a4:33:5c:20:35:25:5f:16:dd:5e:86:
c7:c6:bc:69:13:08:a6:77:80:f1:5a:e1:7e:00:fe:
b9:e1:7d:4d:18:c6:75:9d:db:31:8c:65:db:8f:b1:
33:0c:52:85:e5:bb:5c:dc:4b:3f:23:8c:ef:83:5e:
b9:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:4B:86:BE:2D:12:E0:C7:E0:32:9F:8C:95:67:C7:77:BD:C5:9F:93
X509v3 Authority Key Identifier:
keyid:69:F0:07:0A:F8:77:D6:B9:86:B3:07:B9:BC:04:EF:19:C4:40:43:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/afAHCvh31rmGswe5vATvGcRAQz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/M0uGvi0S4MfgMp-MlWfHd73Fn5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.127.208.0/22
IPv6:
2a06:cbc0::/29
Signature Algorithm: sha256WithRSAEncryption
8d:8d:c2:09:14:ee:9e:65:bc:b8:62:ae:13:5b:07:43:bc:3b:
0d:5a:bc:f3:e2:62:87:1f:93:f5:42:13:35:0b:e7:23:33:ea:
e8:0e:f5:8b:a8:cd:88:11:da:49:b9:5e:d5:f6:95:8f:bd:59:
4c:34:e0:48:67:11:03:4a:dd:2d:26:e7:ab:e1:e6:8d:0b:80:
00:2a:8f:16:ab:48:b4:1f:0e:47:0f:53:17:c2:68:b5:3b:3d:
5f:02:dd:3e:8e:c9:89:11:80:6e:96:fb:a6:ce:d1:71:01:23:
8e:64:40:c8:4c:44:55:0e:bc:23:52:0e:c1:1a:32:95:89:d7:
64:23:1f:96:c3:bd:3f:49:92:6d:41:2d:49:99:37:9f:fc:45:
5e:f5:05:2f:aa:55:8b:64:bd:b9:d3:b3:c6:4f:35:b8:68:d2:
cd:03:5c:b9:58:63:6b:52:22:ab:77:92:75:7b:aa:80:cd:a1:
e6:34:ee:93:16:65:47:59:0e:85:58:0a:83:7a:02:ee:bc:78:
8e:d7:f9:86:43:6b:39:86:87:3f:fb:a1:2c:6b:d1:e5:d2:c1:
3e:c5:d5:2b:22:c8:09:bb:0e:48:5e:a2:a6:26:28:7b:6a:1a:
12:88:17:d9:85:05:0a:05:a1:f2:40:3f:bb:b6:a8:68:54:6a:
53:5e:b7:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:58 2024 by rpki-client on console-ams.rpki-client.org