Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/MH7EAIFSTD3QNKx29988UWFVyOo.roa
File: MH7EAIFSTD3QNKx29988UWFVyOo.roa (raw, json)
Hash identifier: c/brcH6C74hFMDxnkniBc4nUWVJpNlGXeR+VtG/Iw1c=
Subject key identifier: 30:7E:C4:00:81:52:4C:3D:D0:34:AC:76:F7:DF:3C:51:61:55:C8:EA
Certificate issuer: /CN=0c90c356e2864f43894857443555d8b5c0352819
Certificate serial: 01890C0C332A48C69655B0AC7ECE39D94F17
Authority key identifier: 0C:90:C3:56:E2:86:4F:43:89:48:57:44:35:55:D8:B5:C0:35:28:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DJDDVuKGT0OJSFdENVXYtcA1KBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/MH7EAIFSTD3QNKx29988UWFVyOo.roa
Signing time: Fri 30 Jun 2023 11:24:33 +0000
ROA not before: Fri 30 Jun 2023 11:24:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198441
IP address blocks: 185.86.193.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 30 Jun 2023 12:17:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:0c:0c:33:2a:48:c6:96:55:b0:ac:7e:ce:39:d9:4f:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c90c356e2864f43894857443555d8b5c0352819
Validity
Not Before: Jun 30 11:24:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=307ec40081524c3dd034ac76f7df3c516155c8ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:50:22:67:46:99:2c:ce:58:72:81:1d:82:16:
ac:10:ee:e8:cd:27:a5:61:76:8a:98:ad:f0:95:7f:
2a:06:8e:de:68:8a:d8:c8:f6:cd:a9:bc:d8:75:3c:
fd:c0:32:53:28:18:e9:65:e2:64:70:0f:1c:bf:ae:
13:c0:31:4e:14:38:1f:4f:6b:18:de:9d:89:58:9d:
fb:9a:c0:5b:4f:87:1f:a1:a1:28:d4:df:45:a6:5e:
b9:11:71:17:70:cc:92:8f:00:87:7e:9e:63:3c:e5:
e9:fa:93:33:08:d1:00:45:7a:88:fa:04:32:84:0a:
f5:d7:b9:02:fc:67:f8:94:e6:7e:98:93:b1:f0:ec:
96:6c:79:79:a6:bd:ad:ad:a4:90:32:3c:f1:bd:a5:
8b:b6:ab:40:2f:a1:28:0b:ab:b1:7b:bc:4b:df:f0:
eb:30:4d:01:3f:0d:3d:e1:09:54:11:ca:b9:17:77:
fd:67:59:36:ba:64:5b:12:f2:79:b0:3d:fe:2a:fd:
8f:31:bd:a3:ea:15:16:88:9f:dc:94:e5:9d:48:23:
20:0a:6f:45:69:2a:94:6c:6a:c5:e3:ba:64:9c:c6:
2d:87:91:82:0a:c4:e5:fe:c3:cb:6f:7c:12:18:56:
9f:66:b0:74:a4:b7:6c:e2:07:9a:8d:d5:9f:60:78:
dc:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:7E:C4:00:81:52:4C:3D:D0:34:AC:76:F7:DF:3C:51:61:55:C8:EA
X509v3 Authority Key Identifier:
keyid:0C:90:C3:56:E2:86:4F:43:89:48:57:44:35:55:D8:B5:C0:35:28:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DJDDVuKGT0OJSFdENVXYtcA1KBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/MH7EAIFSTD3QNKx29988UWFVyOo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/DJDDVuKGT0OJSFdENVXYtcA1KBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.193.0/24
Signature Algorithm: sha256WithRSAEncryption
35:4c:b6:f1:f2:57:60:c2:ac:3d:c0:27:98:cb:e5:1f:85:86:
02:1c:f9:a6:3b:26:cc:eb:66:8b:34:7f:d1:6e:96:98:b7:97:
a0:19:d9:47:bd:a8:d2:64:09:0c:ed:76:50:b8:68:dd:3f:df:
2f:13:46:41:61:36:75:78:b9:35:b6:9f:95:7e:34:2c:03:5f:
2e:7a:98:f5:a1:70:c5:2d:54:6d:26:91:58:a9:5a:4d:68:ff:
ee:73:9d:98:87:1c:07:d4:d7:38:a0:cd:c7:63:81:55:0b:73:
b4:e3:75:cc:af:30:76:c9:20:d8:5c:75:97:69:d3:0e:54:52:
73:79:f5:ab:eb:3b:3b:65:bc:8b:33:44:e0:14:19:42:2c:40:
7f:ca:c8:ba:12:96:a6:86:ec:b9:b5:f2:73:47:2d:d5:33:7d:
f4:af:54:b0:5f:e3:90:08:83:9b:f7:6c:68:47:4f:d6:69:9f:
76:62:32:e1:ac:10:b2:51:5e:ac:d7:34:80:3c:3a:dd:fe:6a:
9b:f3:ca:ad:79:4c:4c:6b:d2:b3:85:70:42:bf:e4:fd:a0:56:
63:1a:28:63:84:87:d4:85:8c:64:c2:85:cf:05:24:ed:ec:08:
d6:3e:02:c0:a7:44:93:4b:da:aa:bd:47:81:46:8b:6b:34:71:
36:a8:59:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:49 2024 by rpki-client on console-ams.rpki-client.org