Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/bd6a19-2595-4df9-84b5-ebadbc34a124/1/MCxsjjoY7Zj1CzNtMfxhbwNkXpg.roa
File: MCxsjjoY7Zj1CzNtMfxhbwNkXpg.roa (raw, json)
Hash identifier: GM5Mv/dK3x/f391la1iApn787n6QVWWBZawM2eWAud0=
Subject key identifier: 30:2C:6C:8E:3A:18:ED:98:F5:0B:33:6D:31:FC:61:6F:03:64:5E:98
Certificate issuer: /CN=40665ce80820a47ce3b83f480289554a58a45df4
Certificate serial: 018CC5DC42517D30883F766B400363F1C45F
Authority key identifier: 40:66:5C:E8:08:20:A4:7C:E3:B8:3F:48:02:89:55:4A:58:A4:5D:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QGZc6AggpHzjuD9IAolVSlikXfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/bd6a19-2595-4df9-84b5-ebadbc34a124/1/MCxsjjoY7Zj1CzNtMfxhbwNkXpg.roa
Signing time: Mon 01 Jan 2024 16:29:55 +0000
ROA not before: Mon 01 Jan 2024 16:29:55 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 195.216.248.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 24 Jan 2024 18:25:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:42:51:7d:30:88:3f:76:6b:40:03:63:f1:c4:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40665ce80820a47ce3b83f480289554a58a45df4
Validity
Not Before: Jan 1 16:29:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=302c6c8e3a18ed98f50b336d31fc616f03645e98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:46:df:cd:40:15:76:9c:24:2d:76:87:6c:db:
88:77:21:0b:08:17:9c:57:97:a3:95:32:d4:62:d0:
78:64:14:38:80:5b:4b:28:6b:ae:d4:e5:5c:6a:e2:
13:9b:c6:bd:22:14:a8:92:e9:f2:58:e8:0a:5c:1c:
a6:08:5b:a9:24:cb:d3:68:47:e4:23:0d:15:a8:18:
02:41:d2:fc:0b:f5:aa:35:71:2b:3c:8a:75:04:50:
08:d9:9e:36:0b:8a:bb:0c:59:d6:af:cb:bb:f6:b3:
e4:95:5a:0d:ae:cb:98:f1:50:6c:4d:11:7f:6a:da:
59:16:e3:5e:5b:8c:85:ac:87:73:8a:1e:d5:18:bb:
7e:7d:29:4f:e4:ed:a1:52:28:36:a7:70:03:34:80:
da:e1:9f:1e:8b:34:04:25:b8:a8:b8:c6:9e:45:63:
40:bd:5b:34:50:5b:42:f5:c6:3f:b4:a7:a2:05:ac:
53:8c:c5:25:e8:80:b1:ad:61:2a:1d:da:a1:8e:b3:
12:64:ec:fa:eb:12:fe:49:dd:61:a6:92:fc:f1:0a:
4a:c0:18:cb:c7:00:06:37:85:3f:ae:51:75:ce:34:
0d:1b:1f:42:57:fb:00:c6:68:74:52:cf:5a:88:bd:
ec:7d:35:34:1a:40:4b:3b:7c:c8:c2:bb:b3:41:ca:
0f:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:2C:6C:8E:3A:18:ED:98:F5:0B:33:6D:31:FC:61:6F:03:64:5E:98
X509v3 Authority Key Identifier:
keyid:40:66:5C:E8:08:20:A4:7C:E3:B8:3F:48:02:89:55:4A:58:A4:5D:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QGZc6AggpHzjuD9IAolVSlikXfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/bd6a19-2595-4df9-84b5-ebadbc34a124/1/MCxsjjoY7Zj1CzNtMfxhbwNkXpg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/bd6a19-2595-4df9-84b5-ebadbc34a124/1/QGZc6AggpHzjuD9IAolVSlikXfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.216.248.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:b3:b0:df:c4:7e:62:04:20:ec:f9:2b:60:18:71:98:68:06:
55:e9:ca:d0:1e:8f:d4:47:b9:64:e7:96:38:f9:5f:7f:c3:9c:
d6:a7:d3:99:df:2b:83:9c:fd:42:fc:2a:fc:b6:04:77:21:ce:
73:20:65:b3:8a:e0:a4:5f:1b:22:07:08:d7:4a:be:78:f8:f6:
92:42:79:9b:66:20:ff:6d:42:0a:c5:49:c6:e4:b5:02:f7:86:
b9:6e:73:aa:43:55:84:ee:82:99:41:27:67:47:8f:18:15:39:
13:ec:94:be:a6:ad:64:d8:49:c4:b2:32:00:69:af:e6:1f:3b:
b3:04:5b:5f:a7:6c:12:05:9b:17:b9:94:82:c9:73:17:25:d7:
04:43:45:4e:89:0a:2e:32:64:7a:5b:6b:1d:da:be:98:aa:20:
7b:9a:b5:a7:e8:43:62:b4:e3:81:46:f3:10:31:e2:0e:a9:54:
c2:ff:82:56:02:16:55:b7:75:dc:34:c6:68:08:76:1c:40:fb:
be:28:bf:f6:db:04:ba:c5:78:dc:0a:63:42:9c:41:34:c5:0c:
d2:e2:76:67:ac:8d:a8:76:93:1f:20:c6:1d:e7:04:2a:5b:d9:
36:03:db:30:05:a5:70:94:ce:67:0e:7e:92:d0:74:12:33:89:
ae:6e:f1:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 27 00:58:55 2024 by rpki-client on console.sobornost.net