Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/MUeEQMo2DY3wskia2rZrZkRdkxM.roa
File: MUeEQMo2DY3wskia2rZrZkRdkxM.roa (raw, json)
Hash identifier: gbu6SugsxnmYIuPYhjWj5kW5flhvMK1b3TwyMimrT60=
Subject key identifier: 31:47:84:40:CA:36:0D:8D:F0:B2:48:9A:DA:B6:6B:66:44:5D:93:13
Certificate issuer: /CN=b6817762d9fc8f11b01cf5234b6e431cfbec1bcd
Certificate serial: 01869383AD45596A1AED3E83A3B73C25970F
Authority key identifier: B6:81:77:62:D9:FC:8F:11:B0:1C:F5:23:4B:6E:43:1C:FB:EC:1B:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toF3Ytn8jxGwHPUjS25DHPvsG80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/MUeEQMo2DY3wskia2rZrZkRdkxM.roa
Signing time: Mon 27 Feb 2023 15:35:25 +0000
ROA not before: Mon 27 Feb 2023 15:35:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29316
IP address blocks: 195.137.198.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:93:83:ad:45:59:6a:1a:ed:3e:83:a3:b7:3c:25:97:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6817762d9fc8f11b01cf5234b6e431cfbec1bcd
Validity
Not Before: Feb 27 15:35:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=31478440ca360d8df0b2489adab66b66445d9313
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:85:74:81:df:6c:1d:ba:4f:90:fb:c8:dc:79:
ea:55:a1:0b:ca:5d:ac:0d:dd:db:92:42:bf:5b:7d:
d9:0e:74:72:a1:23:1c:36:8d:4c:2e:cd:ad:d0:63:
d5:d0:10:d8:fd:26:fd:9a:ef:a3:86:2d:43:79:cf:
e5:80:f9:60:d4:a3:33:90:c7:56:b2:1b:92:57:63:
c1:f1:ba:1d:db:c2:34:13:a4:6c:4a:3f:e5:d3:b9:
a4:24:5e:4b:5c:ce:00:09:2e:7f:e5:ed:08:5a:1f:
c7:5b:12:2a:5a:a5:73:ee:64:95:13:7b:b2:a1:53:
d6:9d:f8:6f:af:58:1e:a4:33:2a:7f:ec:50:12:37:
c9:e0:1e:8c:1c:f4:a3:46:2a:2d:e2:a3:2c:5c:9f:
52:fe:2d:01:30:9c:9f:b7:7d:ec:79:f9:aa:94:26:
87:2b:b0:46:ff:83:84:9c:aa:fa:84:5f:cf:fa:0b:
ac:0e:7a:24:67:c8:7f:dd:6e:e8:5e:93:46:a2:a2:
9b:cf:3c:34:b9:80:a8:bf:17:50:1a:f1:54:19:4d:
cc:10:1c:3b:11:39:f1:09:33:8c:0c:90:78:c9:1f:
81:8a:e4:3a:04:bc:dd:54:64:e1:3a:80:fe:10:f4:
29:c9:0f:29:91:4e:8d:3e:8d:cb:f2:ea:43:cf:60:
97:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:47:84:40:CA:36:0D:8D:F0:B2:48:9A:DA:B6:6B:66:44:5D:93:13
X509v3 Authority Key Identifier:
keyid:B6:81:77:62:D9:FC:8F:11:B0:1C:F5:23:4B:6E:43:1C:FB:EC:1B:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toF3Ytn8jxGwHPUjS25DHPvsG80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/MUeEQMo2DY3wskia2rZrZkRdkxM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.137.198.0/23
Signature Algorithm: sha256WithRSAEncryption
53:c9:80:92:93:1e:c9:e2:59:b1:e8:17:88:42:f8:80:dc:6c:
20:e4:3b:ef:4d:01:6a:9a:b5:b8:79:91:73:d4:07:01:40:53:
5f:2d:16:8b:99:f2:dc:6a:f3:a2:43:92:c9:98:36:b2:ac:2b:
a0:d9:dd:ce:ac:c2:e3:4b:f1:65:66:a1:a9:fc:c2:33:a5:8c:
95:7f:08:39:fe:de:0b:e5:43:6c:4e:19:e8:37:5d:51:17:9e:
d7:83:38:15:3b:62:7b:83:d2:c3:86:7d:9d:fb:a1:e5:6e:61:
e9:6c:21:de:89:33:27:18:08:b0:54:89:e6:4c:b5:90:26:03:
3a:c1:d1:25:84:0a:6a:4c:1b:c9:81:9b:8f:80:6c:c4:2f:42:
99:fa:5c:b1:26:94:c2:59:01:7f:5e:97:85:2d:f6:7d:42:ff:
d2:65:80:90:66:83:bb:60:d5:43:45:29:9a:f5:e2:47:56:8d:
22:47:20:35:bc:cd:07:82:33:b0:71:44:27:78:52:38:9c:b9:
e5:32:30:1d:ab:3e:00:d8:fb:9a:2d:73:bc:7e:95:13:27:06:
74:86:02:9d:76:41:67:51:2f:10:0c:00:1d:bb:cf:8a:2b:d1:
79:a8:7c:ef:06:28:e5:28:72:94:d7:07:54:ac:9d:4e:34:c9:
82:c0:2c:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:10:45 2024 by rpki-client on console-ams.rpki-client.org