Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/mHOWZw1fugJSxR0upSb4BrnA9fI.roa
File: mHOWZw1fugJSxR0upSb4BrnA9fI.roa (raw, json)
Hash identifier: 0uj4B57qo6vTKL5KQjrLGp9GwWXcAVhGqTHOiymohVY=
Subject key identifier: 98:73:96:67:0D:5F:BA:02:52:C5:1D:2E:A5:26:F8:06:B9:C0:F5:F2
Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Certificate serial: 018AA4F983682FC4658376BF93703592A75D
Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/mHOWZw1fugJSxR0upSb4BrnA9fI.roa
Signing time: Sun 17 Sep 2023 21:08:50 +0000
ROA not before: Sun 17 Sep 2023 21:08:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206119
IP address blocks: 185.169.183.0/24 maxlen: 24
185.169.182.0/24 maxlen: 24
45.133.37.0/24 maxlen: 24
185.174.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 25 Dec 2023 22:38:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:a4:f9:83:68:2f:c4:65:83:76:bf:93:70:35:92:a7:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Validity
Not Before: Sep 17 21:08:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=987396670d5fba0252c51d2ea526f806b9c0f5f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:de:bf:06:44:1a:83:99:5c:25:ab:3c:0f:c2:
bf:12:5a:ee:cb:f2:6e:9c:fe:0a:03:55:fa:1e:c7:
f4:82:d9:27:13:ec:16:da:1c:e3:a9:83:00:e2:80:
0e:2f:4c:f3:01:bc:55:75:b7:3f:2f:ce:0d:15:d7:
1a:2b:7b:36:0e:fb:0d:9e:5d:88:03:d2:f0:5d:ae:
4a:44:67:eb:0d:55:3c:aa:a0:56:cd:94:56:73:ef:
4c:26:d9:a3:f5:85:4e:12:e2:1e:f1:c1:a9:1b:2d:
8b:7d:02:66:fb:e2:3b:0e:02:6c:b6:f4:25:38:17:
bc:73:4b:36:ee:d0:36:82:59:c8:a0:59:e2:f4:25:
5a:8d:e0:28:12:ba:43:2a:7a:e6:00:ad:b0:ba:bb:
43:1a:35:e8:65:b1:77:47:37:f8:30:4e:f6:88:11:
60:ab:67:4f:e0:1c:fe:5d:f4:e0:2b:cd:06:64:40:
2a:4c:9d:e0:00:3e:e4:3a:8b:43:d6:c7:e3:45:a9:
07:1a:00:a4:2c:c8:0c:00:29:3b:80:93:19:42:1d:
bb:ec:dd:a7:79:fb:c3:1b:bf:4c:35:08:29:77:92:
4a:eb:db:c2:eb:43:fc:97:b2:3c:3e:61:ef:12:87:
e9:47:27:29:9d:13:43:95:13:a5:95:36:63:e9:5c:
72:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:73:96:67:0D:5F:BA:02:52:C5:1D:2E:A5:26:F8:06:B9:C0:F5:F2
X509v3 Authority Key Identifier:
keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/mHOWZw1fugJSxR0upSb4BrnA9fI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.37.0/24
185.169.182.0/23
185.174.20.0/24
Signature Algorithm: sha256WithRSAEncryption
75:98:1c:a2:8f:d3:4e:d1:e9:2f:d3:b0:e3:c1:45:21:ad:35:
48:46:91:ee:17:8c:24:18:34:7b:73:e8:7c:4f:54:75:4e:ef:
81:77:a7:93:45:fc:6a:7c:c7:38:00:9b:01:47:b8:0b:05:9c:
13:fa:e9:5c:df:24:67:cb:9f:a7:0a:9d:53:f1:85:28:f6:e4:
1e:51:89:4a:f4:84:b0:4d:ea:31:3d:61:28:b0:f0:46:ba:9a:
ea:e4:0e:f7:28:c9:7d:9c:f5:cb:1d:79:54:9a:17:a7:8f:d1:
ec:1b:80:48:b1:55:e0:af:45:ba:25:12:63:08:8f:6c:fa:07:
02:12:a2:5e:e6:8a:84:9e:ab:e1:17:be:48:88:14:5d:ec:6b:
24:3a:cc:00:12:e5:43:34:bb:db:61:97:24:64:9d:bc:e3:47:
2d:5e:3f:7b:a7:0f:29:f1:c6:bd:96:73:53:b5:6d:e7:8e:56:
d9:7d:ee:9c:99:83:53:8d:40:fb:05:ba:7a:68:57:5c:76:d1:
de:4e:50:40:24:e1:b0:4d:ed:06:62:09:07:ca:e7:3c:ef:7a:
9e:bc:44:b4:5b:01:02:91:b9:bc:57:58:ea:8d:4a:04:96:83:
da:1f:22:a9:ac:f1:5f:24:39:91:2e:15:aa:e0:0d:28:f3:ec:
5d:76:76:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:45 2024 by rpki-client on console-ams.rpki-client.org