Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/MQ2em8lmamecuCvRoIFFQLaiJUg.roa
File: MQ2em8lmamecuCvRoIFFQLaiJUg.roa (raw, json)
Hash identifier: Im8QobrLyjRzajcxsocHt48F1MLT1/VagH9QUD+zEPE=
Subject key identifier: 31:0D:9E:9B:C9:66:6A:67:9C:B8:2B:D1:A0:81:45:40:B6:A2:25:48
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018BBE513EB58F9509C1DD3FAA9F9BCCB98C
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/MQ2em8lmamecuCvRoIFFQLaiJUg.roa
Signing time: Sat 11 Nov 2023 12:17:57 +0000
ROA not before: Sat 11 Nov 2023 12:17:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34989
IP address blocks: 109.72.112.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:be:51:3e:b5:8f:95:09:c1:dd:3f:aa:9f:9b:cc:b9:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Nov 11 12:17:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=310d9e9bc9666a679cb82bd1a0814540b6a22548
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e0:1a:1a:fc:8a:d6:05:61:8c:3f:76:9e:64:
60:52:7f:3c:10:9a:e7:0b:7c:9f:e7:c6:3a:66:f0:
db:fc:d3:1e:bf:d7:3e:eb:af:8c:f7:ed:03:f7:25:
be:e9:71:57:cd:68:95:a1:43:20:64:4f:cc:f6:63:
a1:83:e8:13:cc:00:9b:9b:d6:fc:2e:1a:56:a5:22:
2c:87:c3:c5:2c:45:c5:40:ac:93:54:12:4d:03:c5:
ab:30:a5:0e:cd:86:eb:a5:ee:b1:9e:e1:21:58:a2:
e7:0a:29:f7:d1:fd:0a:7c:c5:45:82:57:81:e4:2f:
32:4e:04:18:ae:d4:77:72:72:c7:68:e6:4c:a2:7f:
f1:7f:76:ed:e1:59:71:25:e7:a0:01:30:d5:6b:85:
2c:88:c9:10:79:c8:0e:03:4a:91:fd:4d:ee:70:fc:
27:96:ee:c4:e4:c0:c8:01:aa:19:0a:07:9c:3d:7e:
e3:35:01:00:7f:a0:e3:4c:78:09:9d:e9:0a:8e:3f:
55:0d:1f:e6:d9:0a:5f:c6:84:ed:ee:46:d7:83:9b:
91:f4:8f:ea:86:40:f4:6f:9f:32:5c:51:7b:71:14:
e5:01:31:c0:b7:96:50:f6:01:88:47:c2:61:f7:91:
67:8e:7d:13:44:b3:e8:7b:c4:db:e1:f3:57:e8:8f:
72:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:0D:9E:9B:C9:66:6A:67:9C:B8:2B:D1:A0:81:45:40:B6:A2:25:48
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/MQ2em8lmamecuCvRoIFFQLaiJUg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.72.112.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:52:91:6d:8a:64:ad:08:60:bd:1c:05:8a:05:70:19:00:08:
7a:26:a8:9c:9d:f7:c3:4e:f7:00:6c:89:f2:88:cf:8c:dd:74:
c0:53:3b:62:d1:44:b6:38:03:72:09:10:83:57:aa:8d:b7:a8:
a3:0c:d3:46:82:c1:03:46:e4:de:a9:b9:b3:97:15:29:15:f2:
36:3e:f6:d2:e5:88:f1:bb:0f:d3:ea:45:aa:51:e9:d7:07:3a:
a1:c8:7f:70:2f:70:1f:4b:89:cd:98:01:75:76:26:28:3a:27:
7e:de:d3:8d:11:58:07:69:af:07:db:dc:d1:59:37:d8:a3:5c:
31:c6:03:76:91:68:38:8b:98:38:dc:e0:ce:08:b7:cc:a0:95:
98:2a:85:b7:56:ce:5c:3e:41:eb:cd:a9:7b:22:89:d5:68:a9:
b7:b8:12:18:68:dd:b6:04:dc:81:15:44:63:c0:6d:b6:ce:3e:
a6:1b:38:8d:7d:f7:f0:7a:8e:37:bd:30:7e:f0:8a:b4:fa:17:
a6:ff:c0:8c:11:47:c0:fb:55:f1:0d:74:a0:7e:47:25:f6:ff:
6d:62:90:c6:c6:0b:c6:24:be:13:e4:97:7c:89:2f:9a:aa:2d:
79:66:de:eb:64:df:70:fe:57:a3:83:a1:6b:61:3c:85:af:a3:
89:ec:15:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:46 2024 by rpki-client on console-ams.rpki-client.org