Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/9668b5-5e92-4c18-9bb9-4351bbf74c0c/1/mLagg4ksyyHk3oqKKDxrdtX2qvo.roa
File: mLagg4ksyyHk3oqKKDxrdtX2qvo.roa (raw, json)
Hash identifier: dsOJTAWD4av7e4v8+UQEak/FMYtYseeYSwucTtRJRtQ=
Subject key identifier: 98:B6:A0:83:89:2C:CB:21:E4:DE:8A:8A:28:3C:6B:76:D5:F6:AA:FA
Certificate issuer: /CN=4f2d30b015ec4ef1b0d3c64347c8d1b598293f81
Certificate serial: 018C685F9E69AD6489DA9EE263FBDC25C20A
Authority key identifier: 4F:2D:30:B0:15:EC:4E:F1:B0:D3:C6:43:47:C8:D1:B5:98:29:3F:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ty0wsBXsTvGw08ZDR8jRtZgpP4E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/9668b5-5e92-4c18-9bb9-4351bbf74c0c/1/mLagg4ksyyHk3oqKKDxrdtX2qvo.roa
Signing time: Thu 14 Dec 2023 12:49:06 +0000
ROA not before: Thu 14 Dec 2023 12:49:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210546
IP address blocks: 185.149.146.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:68:5f:9e:69:ad:64:89:da:9e:e2:63:fb:dc:25:c2:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f2d30b015ec4ef1b0d3c64347c8d1b598293f81
Validity
Not Before: Dec 14 12:49:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=98b6a083892ccb21e4de8a8a283c6b76d5f6aafa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:1b:53:46:1e:64:5c:dc:6a:66:ee:2e:96:e8:
16:95:6f:80:c1:03:c7:04:9f:9f:74:06:a6:07:de:
c6:a2:e2:fc:d2:6f:c1:b3:ae:48:fc:c8:ce:e9:ed:
f0:8d:68:48:ee:c1:3b:e8:c8:f7:60:bc:71:6f:b3:
9a:60:6b:3d:07:84:98:78:02:33:91:2c:20:0c:8b:
0d:7c:76:ed:ca:b3:06:65:61:dc:f2:f6:25:99:bb:
2f:2c:1c:c6:40:34:6f:bc:c8:75:c6:74:ad:3c:bb:
62:73:71:11:66:62:30:8f:e5:b2:ff:ce:a4:27:b6:
59:6c:cd:ea:2e:55:6e:59:c1:09:2b:be:0e:81:6d:
bf:75:ed:10:7b:36:e2:1f:da:a1:28:9f:f9:3f:ec:
26:c8:74:6a:d6:13:bc:89:60:7a:ec:83:d1:79:d3:
bb:7f:9b:de:9e:82:10:ca:6c:2c:71:03:e0:fc:f7:
d4:02:fd:90:8e:0d:ed:fe:4a:6a:b5:55:37:9a:16:
2c:d6:5b:3c:47:f7:ae:6c:43:9e:91:fe:61:3b:d3:
e2:ec:70:5f:8f:14:2a:6c:53:b2:99:62:23:ea:0c:
f2:60:7d:2a:d8:c9:74:a1:df:fa:c9:c4:b3:e8:1b:
9a:e1:dc:49:69:a4:1e:67:20:0e:ac:a3:ee:6d:91:
ab:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:B6:A0:83:89:2C:CB:21:E4:DE:8A:8A:28:3C:6B:76:D5:F6:AA:FA
X509v3 Authority Key Identifier:
keyid:4F:2D:30:B0:15:EC:4E:F1:B0:D3:C6:43:47:C8:D1:B5:98:29:3F:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ty0wsBXsTvGw08ZDR8jRtZgpP4E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/9668b5-5e92-4c18-9bb9-4351bbf74c0c/1/mLagg4ksyyHk3oqKKDxrdtX2qvo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/9668b5-5e92-4c18-9bb9-4351bbf74c0c/1/Ty0wsBXsTvGw08ZDR8jRtZgpP4E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.149.146.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:73:c1:aa:d7:66:0a:db:9b:e7:71:15:7b:71:e2:9e:48:bf:
cd:c2:3d:e8:c9:a6:54:d3:27:55:a5:4a:d9:a6:8f:97:5a:7a:
bd:9b:1e:1f:4f:4e:72:87:a6:a6:dd:c4:73:6a:49:ec:56:30:
a7:d9:b9:1b:99:5b:44:79:ac:56:ad:39:ca:1c:42:2f:bd:87:
09:c6:a0:d2:15:44:77:31:0a:17:e2:34:3e:b0:ce:3d:1d:f2:
80:6e:22:bb:51:0f:f7:b2:a4:86:fc:80:08:f4:39:2d:d1:51:
2b:d6:5d:20:23:c7:ce:95:d7:ae:2a:42:c9:87:dc:3f:de:38:
c8:30:ea:32:2a:e8:a5:a7:14:ec:60:f0:49:2f:3f:47:00:4a:
8f:e2:a9:f9:61:0d:5e:de:ea:38:3b:57:73:32:b8:9b:45:c5:
fb:d5:79:cb:65:88:e2:aa:e2:35:24:0d:1a:ab:09:f1:af:95:
fb:ca:2b:47:7a:66:6c:ab:c6:6c:b5:e6:f1:d5:11:6c:a5:b5:
0e:f7:fe:b5:66:c1:f3:63:a1:53:4a:e1:07:b3:de:3a:31:0b:
3d:4c:89:e3:f7:dd:51:17:92:2f:aa:11:64:4d:3b:03:0c:0a:
26:5a:76:7e:73:28:ca:0d:5b:de:7b:4f:be:b0:16:af:e8:c4:
9b:1e:fb:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:29 2024 by rpki-client on console-ams.rpki-client.org