Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/138046-7be0-4017-a98b-a7247e9d5f3a/1/MUPdkce6nJ2-MKRdMIoOCr1YVqU.roa
File: MUPdkce6nJ2-MKRdMIoOCr1YVqU.roa (raw, json)
Hash identifier: 3LbNi60n+q5z2VTFnVPDAewYhpbDE6OEOlg9M4j/rjA=
Subject key identifier: 31:43:DD:91:C7:BA:9C:9D:BE:30:A4:5D:30:8A:0E:0A:BD:58:56:A5
Certificate issuer: /CN=b343514630dc17f3fe9b51dd434184d0b62b03c0
Certificate serial: 018573BA9CB0BD9F6427B51D805F86550A78
Authority key identifier: B3:43:51:46:30:DC:17:F3:FE:9B:51:DD:43:41:84:D0:B6:2B:03:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s0NRRjDcF_P-m1HdQ0GE0LYrA8A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/138046-7be0-4017-a98b-a7247e9d5f3a/1/MUPdkce6nJ2-MKRdMIoOCr1YVqU.roa
Signing time: Mon 02 Jan 2023 18:24:47 +0000
ROA not before: Mon 02 Jan 2023 18:24:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16222
IP address blocks: 185.37.60.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:ba:9c:b0:bd:9f:64:27:b5:1d:80:5f:86:55:0a:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b343514630dc17f3fe9b51dd434184d0b62b03c0
Validity
Not Before: Jan 2 18:24:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3143dd91c7ba9c9dbe30a45d308a0e0abd5856a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:e9:0c:02:45:94:c8:45:4f:65:d3:8b:9c:52:
f9:9b:9f:ed:86:a3:dd:08:ba:7b:3a:b0:e4:19:f5:
e3:f9:ba:a8:f6:20:06:b2:6d:73:11:de:bf:1c:10:
f4:c7:96:c9:b0:cb:5b:17:69:d8:03:56:b7:3a:40:
55:d1:fc:fd:10:1e:ed:0a:74:c4:e0:03:14:c6:cf:
e1:1c:d8:44:a3:5a:d1:90:67:8b:50:3a:8c:d2:6d:
4e:36:46:bc:23:af:85:2b:8d:d1:f0:8e:08:6f:10:
81:19:94:85:b3:c8:d5:d5:bc:7c:f5:53:63:63:60:
09:1a:a0:b6:17:65:84:6f:36:26:e5:a9:35:a7:b6:
9f:e4:e3:8e:40:4a:73:1e:04:ff:0c:1a:f6:f7:17:
e0:83:9f:2c:c8:67:7c:d0:ee:b9:52:9a:c9:b2:7c:
3c:46:ed:5a:de:cc:14:1b:17:63:ca:d2:6f:fa:35:
a2:33:b9:41:59:4c:3b:bd:af:27:59:46:f3:b2:c3:
1e:ed:a7:13:d0:5d:39:f1:40:e1:35:0e:27:fe:4f:
8c:56:98:5d:d8:44:73:ce:c1:5f:f0:5d:49:e5:68:
cc:36:bb:84:99:65:46:e7:77:88:da:89:5f:a0:ad:
8e:72:86:ab:a4:7c:59:9d:18:b6:2d:ac:ff:97:e0:
10:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:43:DD:91:C7:BA:9C:9D:BE:30:A4:5D:30:8A:0E:0A:BD:58:56:A5
X509v3 Authority Key Identifier:
keyid:B3:43:51:46:30:DC:17:F3:FE:9B:51:DD:43:41:84:D0:B6:2B:03:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s0NRRjDcF_P-m1HdQ0GE0LYrA8A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/138046-7be0-4017-a98b-a7247e9d5f3a/1/MUPdkce6nJ2-MKRdMIoOCr1YVqU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/138046-7be0-4017-a98b-a7247e9d5f3a/1/s0NRRjDcF_P-m1HdQ0GE0LYrA8A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.37.60.0/24
Signature Algorithm: sha256WithRSAEncryption
52:f1:80:46:4c:00:6a:93:63:e9:b1:5c:5f:cf:75:40:9f:5b:
14:57:fd:9a:8b:1c:cd:7a:71:8a:38:86:cd:01:38:98:2f:3c:
90:85:69:fd:a5:ec:ec:d6:f6:10:f4:c8:cd:03:67:34:45:be:
48:41:5e:76:fd:2c:75:88:79:28:a9:29:ca:e4:b4:d6:d7:f2:
bb:ed:31:d6:78:11:9b:69:4b:38:d3:ed:8e:02:14:d0:70:63:
76:fd:48:e6:33:45:03:b8:c7:a4:b7:cc:ef:db:1b:3a:ac:7e:
ff:5a:e8:75:4b:a3:f8:4c:bd:3a:78:ed:a9:a9:01:fb:40:be:
93:88:3c:35:f3:f3:b3:e7:b6:91:92:d8:e7:a2:33:10:bf:16:
3e:bb:6c:80:79:78:7e:4b:05:89:3f:db:60:b5:06:c3:1f:7f:
64:44:fe:d4:2b:53:68:d7:18:d5:48:02:2b:13:6b:69:ae:b1:
96:e9:ad:9f:3a:93:51:9b:76:b5:a1:ae:4b:48:9c:77:a2:9e:
8b:f0:7c:c6:ff:30:0b:a3:d7:8b:9f:90:cd:ac:56:dc:e2:3e:
ad:e3:e5:f5:4f:fd:c9:2e:41:51:78:7e:69:0c:32:a7:75:97:
16:b6:7b:e9:98:31:22:94:2c:7b:88:2c:8d:0b:79:8d:ab:33:
b8:8f:17:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 18:01:07 2024 by rpki-client on console.sobornost.net