Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/MGWGq_wzgzoVcadZpSktyu7uAtE.roa
File: MGWGq_wzgzoVcadZpSktyu7uAtE.roa (raw, json)
Hash identifier: UtYYKymFRuXuq2UwyuVHXKBfCMRjJ8RPnhql+Ne/VnI=
Subject key identifier: 30:65:86:AB:FC:33:83:3A:15:71:A7:59:A5:29:2D:CA:EE:EE:02:D1
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018A37B146D1B2811AD0AA29A7A03F0B8B20
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/MGWGq_wzgzoVcadZpSktyu7uAtE.roa
Signing time: Sun 27 Aug 2023 15:51:19 +0000
ROA not before: Sun 27 Aug 2023 15:51:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 148996
IP address blocks: 109.72.116.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Sep 2023 07:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:37:b1:46:d1:b2:81:1a:d0:aa:29:a7:a0:3f:0b:8b:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Aug 27 15:51:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=306586abfc33833a1571a759a5292dcaeeee02d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:41:f5:60:d5:e9:af:d4:6d:fc:82:9e:5c:5f:
13:d1:c9:23:53:d6:af:85:46:64:b6:c4:b4:65:fd:
46:1e:68:d8:eb:33:ff:c0:98:ba:ad:bb:c8:b8:de:
4b:fb:13:91:eb:e7:8f:93:bf:3c:0d:df:ca:aa:65:
c7:80:18:d5:a4:f1:2c:c8:23:f6:2a:bc:73:42:18:
2e:55:67:f6:3f:8f:7e:93:2c:c8:45:9f:5a:5f:f3:
8c:2a:91:e4:fe:d3:b5:c6:69:a0:34:47:f7:3c:78:
ec:34:63:0f:7a:2c:16:78:b1:9a:6b:ce:44:e3:3a:
57:3c:51:78:77:04:54:18:0a:33:fc:fb:43:93:2e:
70:a8:a9:f4:ad:1f:b9:bd:f1:7b:dd:96:e0:d6:90:
02:f7:d8:c1:ea:c3:c2:44:67:f8:0c:3e:3b:db:04:
88:97:fd:20:a1:02:b9:dc:f7:24:e9:41:a2:9a:79:
ed:33:78:42:06:93:7e:57:a0:7c:1d:80:dd:2c:9b:
2b:5d:8b:64:14:b7:21:bf:14:da:41:a8:75:e0:5d:
2d:ea:ae:94:c6:6f:b6:ff:d1:ea:c5:75:41:15:6c:
bb:89:91:82:75:4c:d6:46:68:f1:48:66:56:e8:f9:
0a:84:e1:d3:bd:df:63:03:14:3e:cc:cb:0d:30:05:
44:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:65:86:AB:FC:33:83:3A:15:71:A7:59:A5:29:2D:CA:EE:EE:02:D1
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/MGWGq_wzgzoVcadZpSktyu7uAtE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.72.116.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:3f:3f:dd:38:ec:0e:da:b6:77:c7:69:ea:0d:e4:94:1f:95:
9a:05:ff:d7:40:2e:df:58:3d:c2:1a:e1:09:40:52:2e:50:44:
d1:48:5a:30:c9:b7:19:d9:b1:09:9d:0d:9c:0e:fe:ea:6d:c8:
a9:79:e7:28:f6:46:ac:b2:ad:64:84:e6:59:ff:b3:cd:a4:e5:
6f:4b:89:40:24:94:42:2a:d7:3a:35:36:91:86:02:79:54:dc:
49:3e:f0:89:39:09:87:8f:e0:07:ec:5d:24:a9:28:6c:9b:44:
27:74:c5:d6:c3:9c:48:47:db:48:fe:29:fd:72:f2:09:d1:01:
26:c3:98:75:e5:68:e9:02:92:68:62:52:44:5c:be:70:69:6a:
0d:46:b2:b1:18:eb:79:55:88:04:f0:63:7e:5c:d9:6a:3d:f3:
24:f3:de:af:8a:95:f8:76:c7:42:fd:51:8b:eb:8f:75:33:b9:
a8:32:74:7f:d3:85:f9:7d:a9:7c:f4:37:02:ab:43:93:3e:f3:
43:ef:b0:a9:15:6f:f8:8e:7e:37:6f:c7:0b:7e:6f:54:0b:c5:
fe:95:b5:ef:cd:e5:f6:bc:49:44:69:8c:9c:2d:44:69:fd:13:
13:33:ce:3a:94:37:26:e3:d6:2e:45:96:7f:a2:6b:cc:45:9b:
b0:44:cb:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org