Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/296972-a1b9-4517-82cb-f2cdb7f575e9/1/MfkopFoMqPsVu9EaHNe-uz78Dtc.roa
File: MfkopFoMqPsVu9EaHNe-uz78Dtc.roa (raw, json)
Hash identifier: eOM9iGwIYuzQ+M0ThbBQ+BeBfKaOq0bQe15zPoUB32A=
Subject key identifier: 31:F9:28:A4:5A:0C:A8:FB:15:BB:D1:1A:1C:D7:BE:BB:3E:FC:0E:D7
Certificate issuer: /CN=bd8a8557df7fb2c418f8ebf17c0a1ef0625d74a3
Certificate serial: 018D79AB728A525531F3C92C9C2F3D257382
Authority key identifier: BD:8A:85:57:DF:7F:B2:C4:18:F8:EB:F1:7C:0A:1E:F0:62:5D:74:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vYqFV99_ssQY-OvxfAoe8GJddKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/296972-a1b9-4517-82cb-f2cdb7f575e9/1/MfkopFoMqPsVu9EaHNe-uz78Dtc.roa
Signing time: Mon 05 Feb 2024 14:28:15 +0000
ROA not before: Mon 05 Feb 2024 14:28:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16189
IP address blocks: 193.41.222.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 12 Feb 2024 08:35:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:79:ab:72:8a:52:55:31:f3:c9:2c:9c:2f:3d:25:73:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd8a8557df7fb2c418f8ebf17c0a1ef0625d74a3
Validity
Not Before: Feb 5 14:28:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=31f928a45a0ca8fb15bbd11a1cd7bebb3efc0ed7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:1b:17:9f:16:6b:5c:94:e2:c2:bf:1a:80:9a:
4e:1f:47:40:1b:24:3d:51:9d:cd:7a:7a:74:74:49:
97:9b:78:1e:28:3e:7d:8f:ad:7d:41:ef:fd:8a:64:
4c:fd:02:91:b2:5d:91:2f:fc:09:ea:0c:79:e1:1a:
fc:f2:fa:c4:f7:d8:d7:bc:ca:ef:95:1b:84:1d:2c:
31:a6:de:cd:9f:6d:aa:22:ea:2a:32:c8:dc:75:cb:
69:bf:2a:0e:23:e5:c2:04:24:65:de:6d:32:55:6e:
75:22:fb:42:c3:7a:e4:36:72:f7:6b:67:43:2a:60:
92:d0:ce:4e:8f:0e:13:90:21:b0:22:28:7f:2f:74:
2d:c1:56:76:ea:35:b6:1f:7d:ee:da:2b:b8:c2:47:
a4:8b:0b:19:62:30:f9:e4:39:fe:cb:0a:2a:af:ce:
95:e8:e9:ed:7c:34:47:04:7a:5b:47:03:91:42:07:
4f:9b:38:1d:f0:36:92:ec:e6:34:fa:fd:70:5d:e5:
3e:35:e1:fb:e5:3f:af:10:3d:76:c9:45:f7:87:ed:
84:3b:8a:e2:af:5d:88:d3:61:a4:a5:9d:27:f6:38:
72:30:f6:a6:ef:58:ad:c2:f5:17:ee:ce:76:dd:40:
58:aa:c0:88:26:ec:d6:8a:ff:85:4b:cb:49:7f:89:
34:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:F9:28:A4:5A:0C:A8:FB:15:BB:D1:1A:1C:D7:BE:BB:3E:FC:0E:D7
X509v3 Authority Key Identifier:
keyid:BD:8A:85:57:DF:7F:B2:C4:18:F8:EB:F1:7C:0A:1E:F0:62:5D:74:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vYqFV99_ssQY-OvxfAoe8GJddKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/296972-a1b9-4517-82cb-f2cdb7f575e9/1/MfkopFoMqPsVu9EaHNe-uz78Dtc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/296972-a1b9-4517-82cb-f2cdb7f575e9/1/vYqFV99_ssQY-OvxfAoe8GJddKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.41.222.0/23
Signature Algorithm: sha256WithRSAEncryption
26:9d:4c:ea:78:f9:3c:42:cc:98:fb:23:dc:8b:3d:ad:5b:57:
64:03:cf:26:a2:c9:e5:20:de:64:0b:5b:79:d0:f1:24:33:df:
53:74:df:57:1c:e3:7b:e1:ac:52:4d:b2:9c:19:76:ed:96:10:
1f:a9:10:7a:7c:4b:1e:56:3b:6d:ad:d9:a8:c4:dd:f9:8e:36:
68:e1:29:1f:45:e1:1c:fd:3a:a3:bb:28:5b:6d:1d:2a:69:b4:
21:90:23:3f:70:db:38:45:f0:12:dc:d1:43:62:bc:19:4e:1f:
ca:a7:ab:a8:c8:48:10:2b:ba:2d:48:c9:10:fa:6a:a7:ac:a0:
60:e1:a0:dc:e1:1f:59:8e:8e:72:43:f2:46:65:15:3f:a5:06:
50:4f:a9:c3:cb:9f:96:98:39:de:45:b5:9c:5b:47:58:06:7d:
99:ae:b8:ec:26:47:8f:b3:9a:66:cc:80:e7:f1:b7:f2:5d:b8:
00:ef:db:08:9e:05:1a:6b:f1:5d:ba:95:01:76:fb:19:29:af:
62:00:12:c0:34:40:38:8c:76:c9:6d:3c:b0:62:ec:97:0b:64:
76:cc:7c:44:8e:df:ed:16:89:86:36:51:c7:a6:72:c0:27:9e:
1a:c3:66:98:47:5c:62:a4:f4:c5:24:e9:4c:e5:19:ea:a3:49:
4b:6f:68:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:10:21 2025 by rpki-client