Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/mxySJyNuRMNnlUHBEfR9YiU723s.roa
File: mxySJyNuRMNnlUHBEfR9YiU723s.roa (raw, json)
Hash identifier: VctB6jov3u1IL/KXsc1zd+c0CnYVXsXKUz/En9Aosh8=
Subject key identifier: 9B:1C:92:27:23:6E:44:C3:67:95:41:C1:11:F4:7D:62:25:3B:DB:7B
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 018BF0C061DD887AA0B244253FCB3BC7E9A8
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/mxySJyNuRMNnlUHBEfR9YiU723s.roa
Signing time: Tue 21 Nov 2023 07:20:21 +0000
ROA not before: Tue 21 Nov 2023 07:20:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 215998
IP address blocks: 83.137.156.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f0:c0:61:dd:88:7a:a0:b2:44:25:3f:cb:3b:c7:e9:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Nov 21 07:20:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9b1c9227236e44c3679541c111f47d62253bdb7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:28:e2:f8:12:71:2d:cc:f9:d5:6c:c2:e3:eb:
07:c3:fa:99:68:e4:ff:05:63:e6:42:0b:81:98:32:
5f:42:8d:26:c1:96:fa:68:fc:19:6b:68:14:31:38:
90:06:9b:71:ad:9f:34:7c:c6:86:44:f1:de:73:e9:
31:7d:e3:1d:5b:d4:0b:9d:7f:fb:30:01:a1:34:d4:
fe:0f:69:9b:5b:77:7a:f8:75:79:ff:04:a6:91:4e:
e0:ae:3f:2c:05:80:2b:b0:dd:79:ac:68:ba:17:49:
39:55:ac:22:08:f1:93:94:81:cd:42:2d:1d:cc:b0:
99:7b:4b:a6:b1:70:fa:a2:4b:bc:2c:10:cb:68:b6:
9a:02:6d:9b:35:41:a3:8b:70:90:c5:92:1c:13:dd:
4b:5b:e6:80:e5:47:32:87:46:9c:46:07:50:a8:75:
10:e1:d0:49:19:63:13:cf:99:fe:e1:50:82:c3:55:
d6:a8:78:39:31:d8:50:2e:47:15:57:40:7d:7f:05:
95:3b:d2:e6:3a:fb:60:d8:f5:68:76:4b:23:04:ed:
08:a9:3f:27:05:9d:22:11:95:f6:17:a3:57:3a:0d:
20:cd:95:9a:e6:dc:bf:c5:b6:9d:1d:09:78:9b:05:
ca:89:6c:0e:b8:75:6e:af:aa:74:88:97:a5:9a:2b:
08:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:1C:92:27:23:6E:44:C3:67:95:41:C1:11:F4:7D:62:25:3B:DB:7B
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/mxySJyNuRMNnlUHBEfR9YiU723s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.137.156.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:0a:16:1e:8e:ef:99:5a:f3:9b:b2:31:a4:ae:26:a7:54:6b:
c8:0e:d2:39:e9:ad:15:20:dd:d8:aa:95:c3:4b:78:84:13:3f:
b7:23:9b:af:ef:d2:52:38:11:fc:d3:e5:86:14:f9:94:0d:8a:
ae:a2:d7:cb:52:72:34:9b:4c:46:62:ea:72:19:8f:ac:5d:40:
19:90:24:2e:2c:0f:e2:c8:21:fb:7d:5b:3d:0a:f7:f5:ac:e5:
c4:61:a1:de:5c:ea:f6:cc:89:a9:f4:25:da:56:38:2e:3f:2a:
72:de:e9:1d:d3:6a:14:5b:35:a1:62:4a:09:33:d2:b9:32:67:
b3:3a:eb:a8:24:9e:f4:b8:48:e9:fe:cb:65:8a:14:a8:a5:6a:
b4:6a:59:e7:02:66:80:07:57:7a:b6:a2:9b:32:8b:4c:c2:d2:
72:b9:7a:b1:53:13:ec:c9:d7:96:fe:13:3d:a8:7c:41:65:24:
10:89:85:0f:50:9e:f2:43:c4:a3:4f:6f:73:86:f3:b4:30:50:
62:94:07:d3:35:25:c2:bc:b3:6d:b0:6e:2d:81:bb:6a:42:31:
29:a9:8b:5f:b6:fd:77:a8:e1:89:58:36:26:53:d0:53:c1:33:
fe:80:20:d1:49:5c:a0:5c:f5:c3:58:88:f3:03:b2:51:86:65:
08:83:f3:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 08:10:20 2024 by rpki-client on console-fra.rpki-client.org