Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/921df1-fa7d-4307-b9c3-7ce8c9704cf0/1/Mqc8nMILrBcNGWFcX7oePrc6r1E.roa
File: Mqc8nMILrBcNGWFcX7oePrc6r1E.roa (raw, json)
Hash identifier: qf86Xt3eQTQBUheYp5IH9Fk+S2NjjR8/Mba1NqY2AGg=
Subject key identifier: 32:A7:3C:9C:C2:0B:AC:17:0D:19:61:5C:5F:BA:1E:3E:B7:3A:AF:51
Certificate issuer: /CN=0cfe1058a31e3c1894bcf064c7e8370bba6cf8e4
Certificate serial: 01856BDC8928759168AF89209746FE03C8E3
Authority key identifier: 0C:FE:10:58:A3:1E:3C:18:94:BC:F0:64:C7:E8:37:0B:BA:6C:F8:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DP4QWKMePBiUvPBkx-g3C7ps-OQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/921df1-fa7d-4307-b9c3-7ce8c9704cf0/1/Mqc8nMILrBcNGWFcX7oePrc6r1E.roa
Signing time: Sun 01 Jan 2023 05:44:53 +0000
ROA not before: Sun 01 Jan 2023 05:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58175
IP address blocks: 193.200.254.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:dc:89:28:75:91:68:af:89:20:97:46:fe:03:c8:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0cfe1058a31e3c1894bcf064c7e8370bba6cf8e4
Validity
Not Before: Jan 1 05:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=32a73c9cc20bac170d19615c5fba1e3eb73aaf51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:a9:bb:a2:c3:08:c6:27:e0:93:19:28:55:11:
1d:77:ee:52:fc:93:51:1d:12:d3:cb:be:3d:4c:88:
0b:e3:f1:37:9d:22:72:91:a9:72:19:8b:a1:66:87:
5f:1f:01:97:79:ef:10:72:fc:3e:dd:ea:33:01:9d:
ce:45:fe:b3:60:33:33:f5:62:36:45:7a:3f:f7:b5:
77:0e:5b:17:2a:0a:c3:b5:bd:7b:2b:8b:34:26:50:
f2:c2:66:14:dd:34:7f:fc:14:74:3a:a3:af:29:4f:
5c:25:33:49:08:74:24:b5:d8:69:fb:6a:4a:9c:88:
f3:e9:1a:89:ac:94:d6:5e:2b:22:f1:f5:11:bc:34:
c2:32:f9:f0:f9:53:d7:e6:2f:45:10:a8:64:75:23:
c7:cc:e7:60:a4:a9:cd:e8:2b:5c:a4:d7:25:46:30:
ae:51:12:04:3d:0b:ec:5a:cb:e6:28:b3:c0:a7:93:
0f:f1:a3:68:57:e1:00:c0:5f:2f:79:cd:77:9e:23:
0a:85:a7:06:b6:5f:a7:6d:25:fa:4a:a6:3b:ce:25:
57:43:87:ab:95:45:ce:49:30:80:01:57:c8:be:d6:
2b:66:05:29:05:70:da:6d:4e:fb:a6:ca:d2:91:02:
7f:b3:e7:2b:46:2e:b2:81:00:43:d8:01:b7:15:2e:
fd:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:A7:3C:9C:C2:0B:AC:17:0D:19:61:5C:5F:BA:1E:3E:B7:3A:AF:51
X509v3 Authority Key Identifier:
keyid:0C:FE:10:58:A3:1E:3C:18:94:BC:F0:64:C7:E8:37:0B:BA:6C:F8:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DP4QWKMePBiUvPBkx-g3C7ps-OQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/921df1-fa7d-4307-b9c3-7ce8c9704cf0/1/Mqc8nMILrBcNGWFcX7oePrc6r1E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/921df1-fa7d-4307-b9c3-7ce8c9704cf0/1/DP4QWKMePBiUvPBkx-g3C7ps-OQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.254.0/24
Signature Algorithm: sha256WithRSAEncryption
83:27:bb:5b:d3:f1:94:f2:ad:7e:f3:2d:53:0d:ba:f1:59:c7:
14:2f:36:c2:aa:f3:1b:95:42:63:27:13:85:bd:b4:dc:1a:97:
2f:5b:60:87:e0:c0:35:43:f5:2b:94:06:1a:71:d2:00:e7:6e:
ac:b9:cd:1e:b1:97:5d:c8:39:2e:83:ea:99:2c:f0:00:24:c2:
57:e8:94:2d:de:dd:35:14:a8:a2:33:cf:76:af:13:26:27:fb:
d1:51:4d:55:6a:9c:95:12:f9:24:48:8a:16:56:83:a1:21:e6:
bc:a2:e5:73:c1:28:de:d1:95:54:fa:7f:69:6d:b0:f5:94:33:
b7:af:1e:b6:2b:39:55:56:4e:28:b9:e0:b7:5c:94:ae:54:8e:
13:7a:7e:32:c7:2f:d9:9b:c7:75:3f:38:4d:c5:86:ed:77:8d:
8a:a6:5e:c8:9b:07:e3:5e:2f:d5:9a:f0:8c:de:e9:c3:ba:a4:
08:b3:75:f2:12:21:0b:17:cb:6c:10:a8:7f:b1:58:ac:ce:a4:
fa:0d:ec:9d:46:ff:b0:83:15:cb:31:67:e7:d4:4d:00:2d:4c:
c9:50:16:05:84:9b:ab:cb:e2:bf:55:47:b8:c1:42:41:de:9d:
fd:b4:be:9b:0b:82:dc:c1:31:d7:60:89:87:a0:d6:33:d0:ac:
1e:4c:19:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:17:01 2024 by rpki-client on console-ams.rpki-client.org