Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/MLoA8eFFF3N67Qz8AIveBGU_two.roa
File: MLoA8eFFF3N67Qz8AIveBGU_two.roa (raw, json)
Hash identifier: YV8x1/fUTwcBRWSW9jVoA9MRKpzyg/4ci9VPAr64PVU=
Subject key identifier: 30:BA:00:F1:E1:45:17:73:7A:ED:0C:FC:00:8B:DE:04:65:3F:B7:0A
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 01857246D08D1E19E34B71A3509648BCB10B
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/MLoA8eFFF3N67Qz8AIveBGU_two.roa
Signing time: Mon 02 Jan 2023 11:38:41 +0000
ROA not before: Mon 02 Jan 2023 11:38:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35499
IP address blocks: 85.187.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:d0:8d:1e:19:e3:4b:71:a3:50:96:48:bc:b1:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Jan 2 11:38:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=30ba00f1e14517737aed0cfc008bde04653fb70a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:e7:d2:db:16:0c:85:c3:86:e5:75:f7:ea:8c:
d1:6a:97:1a:c6:07:d9:16:fd:3c:8d:d1:46:66:5e:
87:de:f9:25:ae:2f:29:a1:b4:29:8c:cd:42:46:e5:
3d:5b:02:5e:63:82:9e:25:8a:ba:7c:cc:2d:07:d5:
e1:96:e2:ef:02:1a:4b:7b:44:d4:04:73:f5:9d:d7:
82:47:5e:56:10:54:a8:2a:57:3d:6a:6e:e0:68:9f:
8c:33:87:a8:c5:67:98:aa:c2:23:f1:10:a1:40:ab:
32:6d:0a:9e:a7:5e:10:8a:ea:ab:91:5b:ed:4a:6e:
f1:4e:2c:e5:06:98:25:04:0d:61:52:65:9b:3b:ee:
12:df:c7:0e:82:c5:18:d7:80:b5:1b:73:34:1d:e4:
7f:ed:51:9c:68:0e:0c:df:b9:3d:60:f0:40:e7:bd:
96:7f:c1:24:dc:92:52:3e:80:98:96:3f:12:04:95:
ac:ec:a9:84:c6:4e:04:ce:d7:47:2f:be:3a:87:82:
f0:fa:9d:47:06:fa:a4:af:26:a5:c0:08:87:57:28:
22:26:0c:2a:72:01:42:32:8d:45:31:ae:c6:21:17:
61:39:76:5b:a0:c7:49:20:9c:84:69:85:22:d1:85:
79:e4:13:cd:14:ae:12:13:d9:7c:4d:6f:0a:aa:db:
46:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:BA:00:F1:E1:45:17:73:7A:ED:0C:FC:00:8B:DE:04:65:3F:B7:0A
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/MLoA8eFFF3N67Qz8AIveBGU_two.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.187.21.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:55:e2:ed:0d:81:c5:18:d1:0d:c4:6b:51:b6:47:6a:4f:54:
61:69:05:87:ed:94:0d:76:83:36:f0:87:4a:09:96:64:0c:d0:
e5:42:9f:1b:43:0e:d3:bf:d0:1a:89:3d:2c:b3:a6:1e:20:7a:
fe:5e:ea:79:c0:2f:30:94:39:9e:f7:9e:69:eb:07:48:93:88:
7a:11:17:23:8d:8f:8a:dc:9c:0d:61:ef:31:f7:54:7f:a2:d5:
3e:89:99:de:a8:74:66:73:19:0f:57:1d:2f:ab:7b:c8:e9:c9:
48:7d:57:b1:52:6c:c3:01:f6:e8:3e:5d:c5:d8:cb:c1:be:ff:
76:09:7c:52:01:ad:34:b2:57:86:c3:5c:27:a1:20:21:8b:21:
e9:c5:8f:62:92:b0:64:cd:c2:5d:7e:c6:8a:89:2a:bf:65:af:
17:fd:c9:63:dc:b2:63:35:0e:9c:f4:51:ee:1d:52:d8:fd:b6:
1a:33:07:45:d4:0a:7a:60:85:8d:5b:2c:24:47:55:60:d9:31:
5a:58:c5:b2:5d:c6:42:22:32:e6:c9:c1:f8:29:57:fe:1e:f1:
ab:7f:5f:4f:21:ce:99:5c:91:ce:82:a9:8f:0b:4f:d5:78:10:
66:a7:b8:82:f4:da:7e:74:df:12:ab:5a:9f:f8:18:f7:43:8b:
91:2b:c2:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:12 2024 by rpki-client on console-fra.rpki-client.org