Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/MQRRR-YvU-0H4xKZDa8BG5LnMXo.roa
File: MQRRR-YvU-0H4xKZDa8BG5LnMXo.roa (raw, json)
Hash identifier: DKCLsCXHDow/W+xU05WrWVe1NQXAFWKIgEp94JJ2yEc=
Subject key identifier: 31:04:51:47:E6:2F:53:ED:07:E3:12:99:0D:AF:01:1B:92:E7:31:7A
Certificate issuer: /CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Certificate serial: 01856C813B1E80C313D59E059A3DC101A295
Authority key identifier: FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/MQRRR-YvU-0H4xKZDa8BG5LnMXo.roa
Signing time: Sun 01 Jan 2023 08:44:46 +0000
ROA not before: Sun 01 Jan 2023 08:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202286
IP address blocks: 195.20.109.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:30:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:81:3b:1e:80:c3:13:d5:9e:05:9a:3d:c1:01:a2:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Validity
Not Before: Jan 1 08:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=31045147e62f53ed07e312990daf011b92e7317a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:b3:09:df:bb:ff:41:53:8f:18:d6:42:11:85:
28:e1:73:9e:8f:b2:11:f8:5d:d6:0c:3c:65:b2:35:
9e:83:ad:e0:ef:bf:37:5b:de:56:a2:ee:04:cd:bd:
a0:cf:a3:66:62:31:2b:d7:d5:06:94:c1:b1:a6:db:
ed:f2:46:13:67:50:0b:18:ef:e4:19:13:2f:07:a3:
06:7f:46:76:25:0b:3c:9d:4a:43:51:ca:a4:86:2b:
ac:b2:da:cc:8c:29:0e:3c:9a:c5:f0:68:fe:22:60:
b1:c1:86:cf:01:39:37:e5:ac:0a:57:4e:ee:e5:30:
71:c3:26:41:e8:29:91:4d:d8:ae:0d:ae:ac:24:85:
a9:c2:2e:52:1d:4e:49:99:a8:93:66:58:92:20:11:
c0:bb:79:10:c0:c4:4f:3f:95:96:45:d3:ec:39:7a:
4b:b0:88:b4:3e:8a:cb:43:3b:af:c7:85:1b:24:04:
7d:2c:be:f0:ad:79:78:92:48:be:07:70:f6:f7:f3:
5b:5f:50:c6:ab:5e:1d:79:50:85:b0:13:75:71:78:
4b:57:03:17:77:c3:a3:70:d8:5f:6e:2f:62:44:26:
4b:09:97:b2:78:21:88:e1:49:2f:0d:62:50:31:43:
47:9a:1e:ae:b0:c7:be:ad:1b:a5:0d:48:a4:8b:d2:
f6:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:04:51:47:E6:2F:53:ED:07:E3:12:99:0D:AF:01:1B:92:E7:31:7A
X509v3 Authority Key Identifier:
keyid:FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/MQRRR-YvU-0H4xKZDa8BG5LnMXo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/_TfMjxazxsvTNGqj7WF3Hz6DrJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.20.109.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:37:c1:ac:df:be:c4:6f:6e:f6:59:a0:f0:45:4f:48:58:93:
a5:95:2f:8d:61:b6:7c:b1:6a:08:cd:8d:45:7a:d1:df:09:6c:
db:d5:ba:af:f9:25:bb:b2:3c:fe:6a:0e:86:51:70:ec:d9:1a:
f5:a8:e9:a1:0e:52:2b:7c:d1:ce:19:69:03:ed:44:33:5b:39:
7e:9b:b1:ab:0a:22:b0:8b:af:85:b5:20:ae:00:96:82:f9:c7:
8a:f7:50:6a:a5:94:75:f8:b2:cf:7d:fe:11:7a:df:5e:8d:0b:
49:2d:93:ee:06:ff:38:b4:7a:c9:32:c6:cf:ef:77:db:49:97:
81:bb:27:0f:66:8d:cf:b9:fa:2c:a8:3b:9c:e1:d9:f1:90:a6:
2e:dd:ca:1e:eb:10:4a:4e:62:85:a5:71:63:f1:7a:a9:6a:9c:
09:f2:a4:ef:ba:c7:e1:3a:30:89:e3:4f:6f:c1:d8:55:b6:0a:
22:33:3b:e7:5b:49:40:b8:fa:ba:75:88:49:c4:61:5b:9b:43:
9a:8d:27:66:30:5f:3b:ac:3d:a0:5d:f3:03:45:b3:75:01:15:
ce:92:b1:c4:89:84:3b:8f:92:9a:a7:59:55:67:9b:b9:6d:80:
8f:89:36:0d:df:14:67:30:b0:74:45:8e:45:3b:f4:71:96:e7:
72:17:50:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:00 2024 by rpki-client on console-fra.rpki-client.org