Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/e22f15-85a8-4318-ab75-b6e867941f7e/1/mGjCfD554OT1BPZjXYs8-MRc6lM.roa
File: mGjCfD554OT1BPZjXYs8-MRc6lM.roa (raw, json)
Hash identifier: 1pWoyLrUpZnSzsg9YwqbppIV3yoFurd994oz4MMW7Lw=
Subject key identifier: 98:68:C2:7C:3E:79:E0:E4:F5:04:F6:63:5D:8B:3C:F8:C4:5C:EA:53
Certificate issuer: /CN=8c7b6e183c8d52cc4605ba8b5daddc66326293ec
Certificate serial: 01856D3873BF86DD5EC18835F853D2FA43C3
Authority key identifier: 8C:7B:6E:18:3C:8D:52:CC:46:05:BA:8B:5D:AD:DC:66:32:62:93:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jHtuGDyNUsxGBbqLXa3cZjJik-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/e22f15-85a8-4318-ab75-b6e867941f7e/1/mGjCfD554OT1BPZjXYs8-MRc6lM.roa
Signing time: Sun 01 Jan 2023 12:04:54 +0000
ROA not before: Sun 01 Jan 2023 12:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48152
IP address blocks: 91.198.43.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:38:73:bf:86:dd:5e:c1:88:35:f8:53:d2:fa:43:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c7b6e183c8d52cc4605ba8b5daddc66326293ec
Validity
Not Before: Jan 1 12:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9868c27c3e79e0e4f504f6635d8b3cf8c45cea53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:bf:ba:2b:b2:34:f2:65:21:ed:f4:64:24:23:
36:47:34:dc:fa:78:1a:75:5b:18:4f:46:fc:46:17:
71:1b:6c:08:4c:a6:c0:43:01:0a:93:59:bf:ca:9a:
ae:a3:6a:58:33:d1:1a:8c:42:e7:c7:94:96:3a:1b:
5f:2c:46:b2:59:a1:01:32:19:14:8f:03:02:77:f5:
03:ee:8b:83:da:9c:d8:96:43:a2:52:43:21:c5:d5:
51:f4:d5:aa:f2:e0:e2:81:70:96:2b:4b:96:33:e0:
97:c0:7f:e7:1a:9f:3e:f4:6d:88:f5:68:6e:4b:f5:
9d:7e:a1:52:6e:d2:5f:0f:75:97:d5:48:4b:9d:53:
c8:15:b9:18:f9:60:24:29:fa:23:fa:21:7a:c1:61:
8f:bd:42:c1:30:c6:89:c1:d2:2a:15:94:ec:64:08:
d5:25:9a:9b:fa:c7:99:68:88:9f:f6:61:2a:7b:bf:
f7:23:da:dc:b5:33:3c:48:48:3c:74:c6:d3:be:7d:
59:e5:81:50:a8:c3:d3:d3:df:61:ec:66:cc:69:0b:
6e:61:c5:a3:30:8b:7f:6a:64:bc:2f:4b:44:65:0f:
96:6e:38:f3:ee:63:c3:44:e8:96:72:90:ed:b8:4e:
41:06:31:93:cc:64:69:5d:ab:51:55:23:63:46:5f:
78:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:68:C2:7C:3E:79:E0:E4:F5:04:F6:63:5D:8B:3C:F8:C4:5C:EA:53
X509v3 Authority Key Identifier:
keyid:8C:7B:6E:18:3C:8D:52:CC:46:05:BA:8B:5D:AD:DC:66:32:62:93:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jHtuGDyNUsxGBbqLXa3cZjJik-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/e22f15-85a8-4318-ab75-b6e867941f7e/1/mGjCfD554OT1BPZjXYs8-MRc6lM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/e22f15-85a8-4318-ab75-b6e867941f7e/1/jHtuGDyNUsxGBbqLXa3cZjJik-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.43.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:b6:07:e3:c1:41:67:b6:f1:34:3d:77:fe:c3:ae:a1:01:a1:
d0:cc:8a:45:75:67:15:0f:8c:59:72:5b:79:7b:30:0a:67:d6:
a6:36:35:86:6a:7c:78:80:a2:78:25:b8:27:2b:83:32:1d:97:
0b:4c:a5:2d:9d:ad:7c:53:1b:20:aa:d5:7c:7b:f8:d1:8c:e9:
4f:f3:7a:04:89:48:21:f1:a6:a3:65:fa:32:7a:23:21:16:ed:
6f:3e:bc:30:7b:a7:53:fb:9f:1c:1d:e5:b7:2f:64:95:76:07:
cd:6e:38:93:54:89:3b:1c:ec:df:ae:b2:6c:12:5a:52:bc:45:
f4:f7:67:18:9b:bf:cf:68:3d:e3:af:76:4c:85:b2:56:49:a7:
b5:aa:4a:37:13:b8:83:a2:83:b4:91:f5:28:bc:4d:99:0a:cf:
a6:34:f8:9e:7e:87:0b:05:c2:e9:fd:df:73:c2:ef:71:8c:b6:
08:84:63:44:13:04:c7:72:d4:41:a9:5f:00:a8:2a:6b:34:7b:
b2:e0:45:70:69:d7:f0:3d:26:ff:88:1f:c1:ed:03:c9:16:a2:
01:10:1e:e5:ca:d4:a2:bd:d3:be:13:9a:8c:b9:9a:4d:96:8e:
f0:27:1a:4c:1e:3d:88:36:72:51:da:87:94:91:15:1c:0f:4f:
83:4f:b7:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:23 2024 by rpki-client on console-ams.rpki-client.org