Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/MrHD-yhuKiCLBrMYFgfNQCTT76s.roa
File: MrHD-yhuKiCLBrMYFgfNQCTT76s.roa (raw, json)
Hash identifier: sUKDMfT2wFcbND+tKDHVGOvKXeRz6DgZMSuqAxeie0A=
Subject key identifier: 32:B1:C3:FB:28:6E:2A:20:8B:06:B3:18:16:07:CD:40:24:D3:EF:AB
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 0187509F5EDDB27148EBC555D2766846AD52
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/MrHD-yhuKiCLBrMYFgfNQCTT76s.roa
Signing time: Wed 05 Apr 2023 08:53:54 +0000
ROA not before: Wed 05 Apr 2023 08:53:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205220
IP address blocks: 5.10.248.0/22 maxlen: 22
188.64.12.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:50:9f:5e:dd:b2:71:48:eb:c5:55:d2:76:68:46:ad:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Apr 5 08:53:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=32b1c3fb286e2a208b06b3181607cd4024d3efab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:04:a9:42:9b:08:ec:c5:f0:d9:20:c2:d6:0c:
cb:77:d4:11:72:d5:f4:9b:27:6a:56:bd:c1:64:aa:
84:e1:1c:e6:5b:04:4c:90:4b:71:a6:14:39:7c:51:
87:b8:b4:6a:12:80:1e:75:36:bb:8a:57:50:7f:78:
3b:6b:16:d1:46:ac:1b:5f:b1:df:8b:4b:a9:e2:64:
8a:1b:7f:04:57:40:ad:da:c6:ab:a4:94:53:08:5d:
ab:c4:00:19:9f:cc:3a:61:3f:12:75:96:aa:2e:af:
47:5f:dd:01:df:66:4b:4b:9c:ce:7b:15:fe:02:7f:
b6:97:33:c2:ba:91:89:18:3d:29:6a:a9:32:b5:2e:
db:4c:60:86:1a:a7:7f:cc:11:bd:f9:d5:af:d3:d5:
7c:8e:7e:d2:a4:99:fe:cc:45:a3:93:78:cf:78:23:
cb:c5:7f:06:69:c4:6b:cb:97:fe:94:e7:f9:b6:05:
6e:79:29:32:a4:82:8f:24:e5:e7:58:4b:5a:0f:a9:
52:ad:8f:40:53:f0:2d:fb:2b:56:bf:93:21:8a:de:
01:98:89:91:98:ac:bd:b0:b0:9a:ef:88:f9:65:ce:
c9:a7:1e:d2:28:27:54:e7:c0:e0:d3:f0:b8:bc:33:
a9:35:93:85:4c:6f:07:45:2a:81:0e:f6:5d:24:0e:
75:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:B1:C3:FB:28:6E:2A:20:8B:06:B3:18:16:07:CD:40:24:D3:EF:AB
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/MrHD-yhuKiCLBrMYFgfNQCTT76s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.10.248.0/22
188.64.12.0/22
Signature Algorithm: sha256WithRSAEncryption
48:ed:34:f5:c8:76:8b:21:c1:9e:57:71:0e:8b:7c:f1:53:79:
64:27:ef:94:38:60:01:98:68:bb:4b:07:16:3b:21:b0:f6:e3:
1f:15:63:06:0e:3c:73:d7:88:af:a4:8b:2c:b2:34:46:fb:97:
dd:53:c6:be:ff:3c:3c:c5:e1:7b:3d:97:15:e0:c3:03:4b:25:
1c:d4:3f:c5:cd:03:c5:98:ec:9c:77:5c:96:28:5a:76:11:9c:
9d:42:8d:74:ff:98:36:a1:5c:61:15:ec:f7:84:43:17:47:3f:
0a:34:8a:e6:19:c6:90:70:7c:6b:bd:ed:94:64:38:78:7f:b7:
eb:8f:90:ed:bd:fa:c9:d5:60:95:c1:b3:4d:36:41:ff:3b:3c:
a1:bc:46:2e:6a:c2:07:73:9a:e9:74:35:f3:7d:2d:03:e8:16:
cb:1d:33:cd:e8:d4:11:f2:da:af:9c:35:77:d9:84:8b:a3:e0:
9b:64:f7:a2:31:f6:78:61:67:ca:97:bd:93:b0:47:43:cc:79:
8b:e9:5f:1d:ec:03:f8:4a:67:98:9b:1d:27:62:8d:70:94:8f:
5d:bf:21:f5:60:18:50:d7:64:ef:fc:52:98:d0:a0:b5:b4:dc:
02:10:6a:bf:00:dc:05:2f:6d:6c:62:43:e0:2c:bc:c0:c4:6f:
d9:4f:90:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:50 2023 by rpki-client on console-ams.rpki-client.org