Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/mbJ82iuvoRVDgkTBqtqzCbVyVuc.roa
File: mbJ82iuvoRVDgkTBqtqzCbVyVuc.roa (raw, json)
Hash identifier: wMOMipkh+tHeHay6byJbjaCcnpjoCPsYbt0liRYazGI=
Subject key identifier: 99:B2:7C:DA:2B:AF:A1:15:43:82:44:C1:AA:DA:B3:09:B5:72:56:E7
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018571B63271AD551EC20589A1AAF22F38CB
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/mbJ82iuvoRVDgkTBqtqzCbVyVuc.roa
Signing time: Mon 02 Jan 2023 09:00:43 +0000
ROA not before: Mon 02 Jan 2023 09:00:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43618
IP address blocks: 193.37.66.0/24 maxlen: 24
193.37.67.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b6:32:71:ad:55:1e:c2:05:89:a1:aa:f2:2f:38:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 09:00:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=99b27cda2bafa115438244c1aadab309b57256e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:1b:87:57:cf:86:a7:77:4e:7a:8d:2d:b9:9e:
9e:4e:46:0e:64:b6:5a:f0:7e:bc:b6:38:20:13:d2:
8d:d5:cb:91:1b:eb:e5:9d:e0:a4:48:21:5e:97:66:
08:53:83:07:e7:9e:67:42:87:6b:2e:ef:1d:75:ce:
3d:82:fc:47:e0:d7:73:bc:77:69:19:0f:ec:27:98:
22:c5:f7:ba:a1:51:59:e4:39:0e:37:e7:c9:48:7e:
b8:16:a2:83:f3:c8:68:b6:d3:9f:22:f1:f7:9f:d6:
20:91:9d:b8:47:c8:4c:ce:22:1b:5d:d9:98:c9:97:
97:06:7d:ad:cb:f2:78:e5:f7:58:0f:a4:e9:03:f9:
c6:5f:87:65:84:15:f4:ef:e0:5d:fb:33:5e:b9:73:
87:2d:a6:01:90:53:9c:1c:47:d7:23:5d:57:1a:68:
1b:90:c3:ab:b0:3a:b7:c5:8b:6c:d1:27:8b:d0:42:
f4:3e:fa:37:ed:b6:b7:2c:6a:fd:17:48:08:ff:10:
1b:93:b1:50:1b:cf:07:af:da:d8:62:01:67:2b:a7:
76:c3:f3:47:c1:5d:21:4e:1b:b2:b6:67:50:dd:b1:
bb:3a:75:b7:27:40:e7:58:d6:d2:26:ed:6a:bf:84:
98:5a:92:6e:56:55:e8:79:07:36:b4:3b:31:47:65:
d7:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:B2:7C:DA:2B:AF:A1:15:43:82:44:C1:AA:DA:B3:09:B5:72:56:E7
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/mbJ82iuvoRVDgkTBqtqzCbVyVuc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.37.66.0/23
Signature Algorithm: sha256WithRSAEncryption
00:4a:e0:44:af:b8:64:bd:4a:b9:56:6c:6a:72:1a:6c:d2:a7:
58:bb:04:65:f1:17:76:29:d0:cc:b6:b5:83:25:18:ee:30:18:
6e:ab:92:d4:8e:ff:bb:89:47:0f:78:4b:40:eb:78:b4:09:28:
ed:84:61:89:02:ae:65:dc:c7:36:10:11:92:be:ae:b8:51:71:
19:58:8c:33:71:89:d2:28:a7:05:b5:c4:35:ba:cf:ed:06:0d:
e2:29:87:73:af:d6:68:9d:aa:6a:f1:00:54:67:6d:3b:44:e5:
7d:79:99:dd:7d:d0:1a:0d:78:f4:80:3b:37:3f:29:84:06:8f:
4f:a8:2f:68:05:d2:37:4b:47:92:f2:e6:14:08:bc:a9:14:da:
ba:19:a1:4d:8f:3a:d3:1c:ed:5c:16:ed:ba:2f:6f:ed:10:60:
71:a1:79:87:d4:0f:7e:d4:f7:37:59:01:39:fc:76:ca:a0:7a:
e3:34:88:9e:c6:b3:73:0d:13:b1:c7:b1:3c:72:b3:ab:6e:e3:
0e:63:86:cb:63:44:95:1a:8c:8e:89:99:0f:fb:5b:ba:24:20:
f7:24:fe:ce:fe:c3:88:8c:79:6a:d0:16:60:38:8d:cd:58:6e:
08:75:b0:f5:46:28:3b:16:9c:89:f4:4e:b9:3c:63:93:06:cd:
f9:ae:ea:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org