Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/MRcChhBDJk3Z9rOOhY_XmIqR4zY.roa
File: MRcChhBDJk3Z9rOOhY_XmIqR4zY.roa (raw, json)
Hash identifier: 4vnsIcLA+srkqbxIP9QdnfsA8WJserkdgL5GYVof/VA=
Subject key identifier: 31:17:02:86:10:43:26:4D:D9:F6:B3:8E:85:8F:D7:98:8A:91:E3:36
Certificate issuer: /CN=77fbbce2c2080f81f5a0f98f279229826de4850b
Certificate serial: 01856F149E50C9363E9E9D79B3A266C0C62E
Authority key identifier: 77:FB:BC:E2:C2:08:0F:81:F5:A0:F9:8F:27:92:29:82:6D:E4:85:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_u84sIID4H1oPmPJ5Ipgm3khQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/MRcChhBDJk3Z9rOOhY_XmIqR4zY.roa
Signing time: Sun 01 Jan 2023 20:45:00 +0000
ROA not before: Sun 01 Jan 2023 20:45:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42181
IP address blocks: 194.0.160.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:9e:50:c9:36:3e:9e:9d:79:b3:a2:66:c0:c6:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77fbbce2c2080f81f5a0f98f279229826de4850b
Validity
Not Before: Jan 1 20:45:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=311702861043264dd9f6b38e858fd7988a91e336
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:d9:a7:b1:ee:ce:80:d5:6d:af:8e:96:4c:01:
79:30:73:05:06:47:aa:e2:19:f3:3c:ab:66:80:66:
ee:ff:e4:9b:6b:a4:66:ef:7c:ed:e0:db:50:68:5f:
c9:a2:a3:33:bd:45:8a:38:58:19:07:68:a4:ea:b9:
45:76:fc:e5:1c:8e:13:a0:37:8c:a5:cc:10:73:c8:
31:9e:ea:50:36:ba:f2:29:54:06:e3:ee:bc:16:d2:
ec:fd:b7:d3:fe:c3:e4:4b:61:f6:58:7a:b4:00:7d:
4e:ca:62:e4:28:0c:c3:14:5d:64:0b:b2:88:0e:bf:
32:15:50:0a:ac:54:4e:5b:a8:0a:e2:e2:90:d1:c6:
e6:aa:3d:0a:5c:59:b6:68:42:31:b5:1a:b2:a5:7b:
c6:42:84:d0:99:e9:e7:b1:08:ce:7a:b5:3b:d3:d1:
e3:69:cb:32:ab:c0:b5:02:5f:e9:5a:25:d6:fb:a7:
99:40:64:fc:aa:e2:27:9c:58:e4:4d:2a:85:08:45:
37:98:d4:29:79:26:7e:f6:75:f1:c9:6f:a3:1c:be:
3f:2b:34:7c:31:12:45:d5:d9:14:b7:be:10:0a:b8:
a1:d1:49:28:1d:0b:e1:31:bb:9e:f1:1c:45:12:e5:
35:07:90:fe:6e:fc:21:46:b2:8a:8f:7f:84:04:0a:
24:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:17:02:86:10:43:26:4D:D9:F6:B3:8E:85:8F:D7:98:8A:91:E3:36
X509v3 Authority Key Identifier:
keyid:77:FB:BC:E2:C2:08:0F:81:F5:A0:F9:8F:27:92:29:82:6D:E4:85:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_u84sIID4H1oPmPJ5Ipgm3khQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/MRcChhBDJk3Z9rOOhY_XmIqR4zY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/d_u84sIID4H1oPmPJ5Ipgm3khQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.0.160.0/24
Signature Algorithm: sha256WithRSAEncryption
37:ac:ca:90:16:a7:31:f8:c6:19:ef:73:20:e8:6e:d5:9f:c8:
a7:3a:d6:67:98:07:c8:a2:ba:78:8e:43:5c:5c:af:74:7d:40:
fd:ed:d6:25:a3:e6:78:32:ab:4a:0f:e9:7c:9b:02:d8:26:44:
a2:cc:ac:d7:7b:c0:9c:5c:cb:18:70:27:01:7c:15:b2:c1:9b:
10:89:43:d6:9b:b1:d5:cb:33:1d:da:d8:6a:55:2b:bf:da:b8:
b1:39:ba:8e:b6:eb:bd:13:1a:30:63:a7:77:06:8c:93:f6:e5:
20:20:ee:f1:1d:fb:6b:56:9c:c9:73:ec:4a:c8:00:0b:4c:71:
ba:a5:0d:1a:a6:1c:bf:eb:fc:82:df:f3:26:aa:10:86:76:8c:
63:df:53:25:0c:ef:73:8d:24:5a:c4:45:0c:98:f8:40:22:e0:
ff:63:d8:a0:dc:e7:e7:2c:30:63:5b:18:70:4b:54:69:e1:e9:
67:d6:95:f1:98:2e:05:ba:2d:cb:ac:c6:59:53:1f:e8:9a:26:
1d:1b:06:f4:9d:77:60:2a:0e:95:06:f5:37:f9:0f:7b:b8:09:
81:ea:14:db:f5:e0:74:32:ed:fe:eb:0e:3b:f4:2a:71:49:03:
fb:ff:5d:cd:8b:ee:f9:36:56:6f:dc:ef:6f:7e:b7:0e:93:81:
e5:7f:c4:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:18 2024 by rpki-client on console-fra.rpki-client.org