Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/9014c3-1a49-4e62-9243-21335d1063af/1/mdrmAA9G9EIgHs5S6l7dfRtbojo.roa
File: mdrmAA9G9EIgHs5S6l7dfRtbojo.roa (raw, json)
Hash identifier: 66FMrzmXXt959fqjn8N5GgpbTUbrOXVP/siTGAXkaxw=
Subject key identifier: 99:DA:E6:00:0F:46:F4:42:20:1E:CE:52:EA:5E:DD:7D:1B:5B:A2:3A
Certificate issuer: /CN=3f0a287bea92588fc5dae4f93fb25628f32d196d
Certificate serial: 0191460743ECAD723A05230F259B369D96AE
Authority key identifier: 3F:0A:28:7B:EA:92:58:8F:C5:DA:E4:F9:3F:B2:56:28:F3:2D:19:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pwooe-qSWI_F2uT5P7JWKPMtGW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/9014c3-1a49-4e62-9243-21335d1063af/1/mdrmAA9G9EIgHs5S6l7dfRtbojo.roa
Signing time: Mon 12 Aug 2024 09:59:26 +0000
ROA not before: Mon 12 Aug 2024 09:59:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 185.12.141.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 01:48:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:46:07:43:ec:ad:72:3a:05:23:0f:25:9b:36:9d:96:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f0a287bea92588fc5dae4f93fb25628f32d196d
Validity
Not Before: Aug 12 09:59:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=99dae6000f46f442201ece52ea5edd7d1b5ba23a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:22:f7:b5:62:f7:4e:7a:28:ec:ba:af:db:21:
5f:3c:bb:29:ea:a9:6d:a6:b8:05:44:b7:39:81:ce:
b7:aa:6e:36:f8:69:2a:b8:32:5c:0d:5d:c8:f0:25:
ab:22:77:11:db:8c:84:1b:a5:60:40:8b:df:9d:ab:
ca:61:05:db:f0:18:b0:82:f6:b6:68:12:69:c7:29:
32:bd:70:f6:81:13:fd:fe:00:f5:27:1c:09:99:e7:
11:ac:b2:71:a2:90:e7:a4:f5:e5:95:c1:73:ab:bb:
00:74:a0:f7:10:d1:02:dc:a8:63:1b:da:47:5e:a1:
6d:b0:04:e1:e0:0a:ba:cb:13:b0:5d:be:5a:35:e9:
66:c8:7a:6b:97:1f:01:fb:bf:09:bc:f3:59:15:c2:
4c:6b:e3:fa:4e:5d:03:6d:d2:80:a8:34:e1:9a:18:
d7:ee:83:c7:3f:1e:d0:7c:1e:ff:cd:1f:b0:8a:f1:
2d:3c:54:9d:e7:13:1a:a8:48:06:6f:45:09:8e:b2:
3b:43:5e:20:20:10:19:e7:69:14:ab:f3:e1:78:75:
b5:91:1d:e1:cf:cc:07:45:0c:cc:4d:17:b7:71:a1:
4f:e9:38:4a:82:62:63:33:b5:45:82:cf:1b:22:db:
21:1e:52:89:96:19:11:a3:8c:03:d4:52:db:cd:02:
32:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:DA:E6:00:0F:46:F4:42:20:1E:CE:52:EA:5E:DD:7D:1B:5B:A2:3A
X509v3 Authority Key Identifier:
keyid:3F:0A:28:7B:EA:92:58:8F:C5:DA:E4:F9:3F:B2:56:28:F3:2D:19:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pwooe-qSWI_F2uT5P7JWKPMtGW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/9014c3-1a49-4e62-9243-21335d1063af/1/mdrmAA9G9EIgHs5S6l7dfRtbojo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/9014c3-1a49-4e62-9243-21335d1063af/1/Pwooe-qSWI_F2uT5P7JWKPMtGW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.12.141.0/24
Signature Algorithm: sha256WithRSAEncryption
12:89:67:2e:ad:35:f0:2a:02:98:c5:19:7a:b4:1e:75:1e:61:
88:96:1f:55:f2:a3:c4:94:5f:e1:99:0e:fc:8d:7d:37:11:af:
17:89:de:2e:69:9a:47:86:91:ad:b4:a9:ae:04:65:9d:d3:80:
52:5e:e0:84:82:42:b9:ef:fe:82:9f:dd:de:5e:3d:b2:14:a0:
22:29:29:a4:73:71:55:07:b8:ae:4b:32:8d:da:2a:60:2b:2a:
93:b9:78:20:c8:35:8c:c0:e3:e1:71:3f:9d:6f:51:f7:53:0c:
93:a1:87:8a:d8:15:f4:6d:26:3f:e8:ab:56:49:f6:c4:ec:4f:
e8:df:66:25:49:5a:50:eb:3a:ee:06:6a:22:64:b6:4a:a2:52:
4e:e2:bd:3a:77:21:17:fd:2e:ac:37:ff:4c:9b:64:92:37:8e:
20:5c:1a:fa:bd:18:86:e0:4a:4f:bf:01:26:00:40:38:07:e3:
98:56:9b:ba:61:2a:1e:2c:cd:99:ec:18:f1:99:ba:bf:35:67:
52:f3:6a:d1:06:18:df:86:54:2a:a7:1c:05:69:05:3a:f8:dc:
47:d6:ba:e1:6b:79:16:90:0a:d2:5e:42:be:24:bf:eb:6a:2a:
fa:f1:e9:b1:02:b7:34:ba:d5:c8:72:7f:35:01:6e:fc:b5:d8:
63:72:31:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:46:54 2025 by rpki-client