Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/bcccb8-6c74-4d0a-895f-01d19a74be23/1/mpXToCMpuhCKkjhgBKuT00okL2E.roa
File: mpXToCMpuhCKkjhgBKuT00okL2E.roa (raw, json)
Hash identifier: FnZeweRvTjfWhoeHHoFWCOMQnMXJWtHDMOQjsWIdxQo=
Subject key identifier: 9A:95:D3:A0:23:29:BA:10:8A:92:38:60:04:AB:93:D3:4A:24:2F:61
Certificate issuer: /CN=bfa5f0e76547575957bc92c6dddd084d3ea7f863
Certificate serial: 01856B93585DA3CA98DD1112EA5B13E39122
Authority key identifier: BF:A5:F0:E7:65:47:57:59:57:BC:92:C6:DD:DD:08:4D:3E:A7:F8:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v6Xw52VHV1lXvJLG3d0ITT6n-GM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/bcccb8-6c74-4d0a-895f-01d19a74be23/1/mpXToCMpuhCKkjhgBKuT00okL2E.roa
Signing time: Sun 01 Jan 2023 04:24:56 +0000
ROA not before: Sun 01 Jan 2023 04:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 134512
IP address blocks: 185.63.252.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:93:58:5d:a3:ca:98:dd:11:12:ea:5b:13:e3:91:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfa5f0e76547575957bc92c6dddd084d3ea7f863
Validity
Not Before: Jan 1 04:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9a95d3a02329ba108a92386004ab93d34a242f61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:39:f1:cb:84:4d:16:9f:78:03:47:3a:6f:47:
15:22:a7:61:8d:af:3b:16:21:e7:74:62:a8:08:c0:
01:99:36:e5:4d:e5:21:5b:90:59:90:9c:3b:59:f9:
fe:a9:32:d6:ad:90:b8:7b:c5:af:95:5b:f0:2a:cc:
b1:49:0c:e7:66:64:bc:e8:7e:cd:78:22:e0:5d:42:
5b:03:fd:2a:f6:4b:ac:62:e8:59:a3:6c:f5:62:5d:
eb:15:b4:61:fa:79:56:61:5e:bc:ea:75:6c:64:af:
b5:a1:80:f3:9c:7a:f9:80:9c:7b:41:d4:0b:4b:6b:
03:a9:19:af:77:ad:f1:ad:08:31:00:db:94:3f:03:
54:10:85:93:0d:d0:23:06:ed:d2:bc:90:39:52:ec:
47:7f:8f:ef:4a:06:3d:f2:bb:10:d5:28:e7:65:97:
43:84:40:dd:ee:7a:05:ac:8a:94:b7:e1:66:d7:a5:
42:28:87:78:f7:01:c8:c9:b8:78:26:c1:78:69:1e:
4d:b3:d6:f7:14:4a:58:62:b3:c7:2d:47:8d:a2:54:
c7:36:ec:fb:70:37:8b:01:35:fa:b0:a4:da:46:1d:
70:66:4d:c2:fe:7e:e8:5f:c4:0f:d4:7a:00:df:a2:
e2:92:5d:da:b1:fe:68:b8:54:d3:cf:a7:1d:b1:25:
82:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:95:D3:A0:23:29:BA:10:8A:92:38:60:04:AB:93:D3:4A:24:2F:61
X509v3 Authority Key Identifier:
keyid:BF:A5:F0:E7:65:47:57:59:57:BC:92:C6:DD:DD:08:4D:3E:A7:F8:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v6Xw52VHV1lXvJLG3d0ITT6n-GM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/bcccb8-6c74-4d0a-895f-01d19a74be23/1/mpXToCMpuhCKkjhgBKuT00okL2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/bcccb8-6c74-4d0a-895f-01d19a74be23/1/v6Xw52VHV1lXvJLG3d0ITT6n-GM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.252.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:45:e8:da:63:12:68:dc:bd:72:d9:ef:f0:76:d9:d0:96:83:
de:4c:a6:53:73:e0:b2:16:01:71:67:5f:3d:5d:db:8c:a9:f3:
ed:8e:52:fe:c4:8f:59:d0:bf:dc:9a:26:5f:6a:22:51:28:f9:
98:6e:7a:4c:78:52:a9:23:93:2d:3f:31:17:3b:a9:ef:6a:78:
85:a0:32:ac:17:42:ed:b7:dc:ad:5a:03:15:5e:3b:38:26:ea:
95:d0:7d:69:b3:73:4c:2b:1f:f8:1f:89:1c:66:0d:b9:34:2b:
2f:2d:f5:c6:12:ca:22:6b:3a:6b:f4:10:82:96:f3:29:f0:2b:
c8:80:68:71:38:f5:e7:4d:eb:8d:22:12:ae:d9:d9:be:ab:1b:
c6:06:ab:61:ad:25:1b:6f:e6:62:9b:df:74:df:e3:8f:a2:85:
6c:d5:da:e2:19:0b:4c:7a:de:03:5d:bd:df:16:2d:25:b5:3b:
27:8d:41:2e:a3:b3:0b:42:44:f4:fc:b5:7a:8a:b9:a5:76:f4:
1b:47:93:32:c5:ca:0c:f4:64:a5:e7:6d:4d:26:b4:35:36:bc:
12:db:42:fe:c6:16:c6:7d:49:75:dc:7a:17:31:1d:57:70:fa:
f6:de:6e:cc:44:f0:3a:b2:b5:5f:8a:37:cd:13:ca:0e:95:1f:
0f:70:07:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:54 2024 by rpki-client on console-ams.rpki-client.org