Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/MHFdpiDM4yn_DaMFy-s1v1mmiTc.roa
File: MHFdpiDM4yn_DaMFy-s1v1mmiTc.roa (raw, json)
Hash identifier: HJyXVmIj0zDyv8LYhTprc4fL+YsykZ45mvUrhNRYkUA=
Subject key identifier: 30:71:5D:A6:20:CC:E3:29:FF:0D:A3:05:CB:EB:35:BF:59:A6:89:37
Certificate issuer: /CN=2093e383b2cc52d5eca30feb12697593c9c788a0
Certificate serial: 018570306C62E924FF7D714FA073766B9884
Authority key identifier: 20:93:E3:83:B2:CC:52:D5:EC:A3:0F:EB:12:69:75:93:C9:C7:88:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IJPjg7LMUtXsow_rEml1k8nHiKA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/MHFdpiDM4yn_DaMFy-s1v1mmiTc.roa
Signing time: Mon 02 Jan 2023 01:54:59 +0000
ROA not before: Mon 02 Jan 2023 01:54:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30746
IP address blocks: 193.47.147.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:6c:62:e9:24:ff:7d:71:4f:a0:73:76:6b:98:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2093e383b2cc52d5eca30feb12697593c9c788a0
Validity
Not Before: Jan 2 01:54:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=30715da620cce329ff0da305cbeb35bf59a68937
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:06:5c:14:ba:0a:ca:fe:e4:99:c3:46:7f:8f:
4d:ca:5b:13:86:32:13:f5:e7:d7:5b:79:b2:40:01:
f0:04:66:2a:1b:40:66:de:e1:ed:1e:29:9f:6a:c5:
38:11:0c:45:bd:87:e1:d2:73:98:44:da:10:61:09:
c9:71:36:0f:d7:a4:00:35:14:c1:7f:f8:e8:f1:64:
0a:5a:89:0a:4e:af:47:b7:93:70:89:48:82:6f:f0:
df:4e:aa:04:28:25:8a:d7:b8:bf:c0:66:c0:ab:0c:
0c:72:6c:ef:7b:f0:d7:f5:99:91:b5:a4:fd:73:b4:
2a:69:83:41:d1:48:12:a2:ed:91:7b:08:e8:71:ee:
ff:f2:58:78:14:c1:90:47:56:05:a9:71:07:8c:aa:
b5:43:d1:e6:86:eb:ab:d0:13:8e:e3:05:a7:ab:85:
bd:cf:cb:c9:ba:37:2b:49:76:aa:35:9e:0f:57:34:
e0:74:2b:00:84:1e:8e:1a:21:5e:0a:c6:14:1b:ba:
2d:9b:75:3a:fc:fa:7a:36:84:8b:06:bd:9c:e8:85:
6e:03:6a:5f:ea:bb:9f:4c:fa:f8:ac:76:a3:5e:6f:
27:55:6b:18:27:d5:ae:a3:4a:34:04:ea:29:81:a3:
a3:c3:d4:e6:9a:be:a4:0a:1b:51:d0:e8:e1:b9:ae:
52:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:71:5D:A6:20:CC:E3:29:FF:0D:A3:05:CB:EB:35:BF:59:A6:89:37
X509v3 Authority Key Identifier:
keyid:20:93:E3:83:B2:CC:52:D5:EC:A3:0F:EB:12:69:75:93:C9:C7:88:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IJPjg7LMUtXsow_rEml1k8nHiKA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/MHFdpiDM4yn_DaMFy-s1v1mmiTc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IJPjg7LMUtXsow_rEml1k8nHiKA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.47.147.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:05:50:c2:95:77:d9:a6:7a:c8:63:b5:bf:51:8b:8d:7e:b5:
19:2c:1c:c4:16:ca:7e:48:d9:21:ff:09:c8:da:90:f2:33:bd:
64:f2:b9:96:28:a4:64:53:74:6a:70:48:c1:3c:fc:3b:85:20:
e0:51:ad:b1:5f:e6:06:fe:fd:60:46:44:40:4a:12:9f:bf:82:
93:e0:a1:31:c0:21:89:f8:99:de:f3:66:48:ed:2c:9a:3d:0d:
75:56:72:95:f9:0f:8b:35:72:8d:d1:a3:5e:02:01:d8:ec:ae:
2e:04:88:9e:04:e4:1f:eb:12:11:21:73:79:3d:25:6f:63:1e:
ba:cb:a5:8a:10:d2:02:54:02:34:8c:d8:0a:67:9c:cf:1f:a2:
5d:03:c5:b3:9c:ba:d2:a7:63:58:00:53:f4:49:85:7b:db:4d:
9f:f7:55:42:25:64:23:db:d9:b9:5d:08:b0:08:b8:44:f6:cf:
b7:e5:7a:dd:56:64:19:28:c6:ac:77:5d:de:f7:72:f1:6c:78:
59:22:62:69:76:cc:a9:02:7c:f6:0d:cd:eb:62:d2:dd:24:5d:
ec:74:c5:33:fa:31:bd:f8:97:25:47:5c:fb:77:6c:46:29:43:
06:da:6a:83:9c:37:89:04:45:af:f1:a1:7c:4a:98:d7:60:2e:
26:b9:00:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:53:11 2024 by rpki-client on console-fra.rpki-client.org