Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/mgS_6MTXmNx3-VBhjn6jBO5QJn4.roa
File: mgS_6MTXmNx3-VBhjn6jBO5QJn4.roa (raw, json)
Hash identifier: lqs+Og1KH/FDt3/N/oEt+/DC1zZH1rlCKqnVGucNRrY=
Subject key identifier: 9A:04:BF:E8:C4:D7:98:DC:77:F9:50:61:8E:7E:A3:04:EE:50:26:7E
Certificate issuer: /CN=b43258a18cf4d1228e5c79070dfa6331168320c5
Certificate serial: 01856F5495704C498FE280E6E8752F2AE462
Authority key identifier: B4:32:58:A1:8C:F4:D1:22:8E:5C:79:07:0D:FA:63:31:16:83:20:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDJYoYz00SKOXHkHDfpjMRaDIMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/mgS_6MTXmNx3-VBhjn6jBO5QJn4.roa
Signing time: Sun 01 Jan 2023 21:54:52 +0000
ROA not before: Sun 01 Jan 2023 21:54:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 144.2.154.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:54:95:70:4c:49:8f:e2:80:e6:e8:75:2f:2a:e4:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43258a18cf4d1228e5c79070dfa6331168320c5
Validity
Not Before: Jan 1 21:54:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9a04bfe8c4d798dc77f950618e7ea304ee50267e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:b8:93:f6:ae:f0:fe:fe:dc:e9:d9:df:f8:a5:
5c:83:5a:da:a8:67:56:3b:74:50:4f:b9:60:fd:31:
e2:36:9d:d8:0a:be:d0:16:ee:5a:97:46:38:5d:97:
fa:18:24:22:78:b9:08:bd:44:a8:d6:84:d5:3b:bd:
6f:25:70:3f:53:1e:34:42:06:1e:6f:17:88:f3:cd:
70:13:28:f8:e5:a1:5c:f5:1b:00:b0:f1:e5:c9:30:
1d:1f:ae:5c:79:0e:9b:1c:b3:14:bc:f3:9a:02:d2:
b6:08:93:3b:58:76:c4:bc:a4:33:c6:e9:19:92:3b:
f9:27:be:04:37:74:8e:10:49:58:2d:b5:9e:4e:a9:
5b:30:3f:fe:b1:3f:16:f7:52:89:2d:b6:7d:fd:8a:
d3:a6:0f:bd:3d:c0:29:3f:cc:67:a0:21:ee:fb:09:
5a:f1:ea:8d:6f:60:fa:cb:e1:3c:e9:60:7d:78:00:
e5:eb:8b:d8:a5:c9:86:00:35:dd:6a:1d:9a:0f:88:
75:26:9a:2e:f2:0a:c3:dc:00:73:c6:c5:34:52:0a:
a3:a5:81:55:da:00:4a:c2:63:db:08:ec:b2:62:65:
e6:04:96:a1:48:7e:db:1e:a8:50:f4:3a:bb:98:23:
a3:36:3c:bd:8b:ab:af:8e:47:c0:98:bb:82:36:ae:
e2:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:04:BF:E8:C4:D7:98:DC:77:F9:50:61:8E:7E:A3:04:EE:50:26:7E
X509v3 Authority Key Identifier:
keyid:B4:32:58:A1:8C:F4:D1:22:8E:5C:79:07:0D:FA:63:31:16:83:20:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDJYoYz00SKOXHkHDfpjMRaDIMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/mgS_6MTXmNx3-VBhjn6jBO5QJn4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.2.154.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:6a:17:84:4c:bb:b6:b0:fb:98:2f:5b:10:0e:d5:20:6e:8f:
50:c1:70:65:e4:7a:19:76:09:43:8a:d1:c8:1f:3f:02:70:96:
6d:b8:5c:c9:ec:87:89:0b:01:81:bb:f2:7a:64:57:d0:c7:60:
9b:bb:60:a6:d5:d2:48:d8:6e:60:8f:82:31:22:40:9a:0b:83:
dd:8a:09:9e:de:92:dd:fa:55:c8:51:4d:c9:ad:9d:33:04:79:
03:db:1b:34:0c:2c:c7:b3:69:3f:7f:04:ac:db:2d:14:a7:a4:
99:1e:d0:a9:c4:92:e3:fd:6a:c9:3e:83:46:f5:fd:0c:47:df:
c8:b9:6e:37:ae:40:23:54:18:31:b4:45:20:e5:33:6f:f8:89:
d0:e9:e4:d5:9e:cb:4f:53:12:5b:aa:05:c2:24:d6:30:24:1e:
f8:63:87:6d:a7:b6:64:ca:2e:d0:8b:11:07:dc:d6:9c:dc:72:
09:81:7a:40:8c:3a:63:51:a8:55:56:3e:b7:00:f0:6b:95:21:
e5:ff:30:8a:cf:ed:0b:d8:9c:d5:50:88:60:87:65:cd:a5:cd:
24:5f:15:db:a8:5f:5f:13:a3:5d:09:39:c3:3a:67:9a:5b:47:
aa:b5:14:aa:45:27:ea:61:02:97:39:33:1a:a6:e4:d8:71:34:
2e:33:a6:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:01 2024 by rpki-client on console-ams.rpki-client.org