Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/8c0473-e7d0-4e43-a7f9-797f4cc4b500/1/mdvOY6VBl5-q7X0ryFA__Mf3xzw.roa
File: mdvOY6VBl5-q7X0ryFA__Mf3xzw.roa (raw, json)
Hash identifier: DOL8cVJyAlDe1DjECVFyTE7HQKzzJ0H9uNQUABf6+Uw=
Subject key identifier: 99:DB:CE:63:A5:41:97:9F:AA:ED:7D:2B:C8:50:3F:FC:C7:F7:C7:3C
Certificate issuer: /CN=6c1bec3f9358668a87d1a16c4722f41e3c2381e2
Certificate serial: 01865432120CA5A8560DC47FB79FD8B7DB2A
Authority key identifier: 6C:1B:EC:3F:93:58:66:8A:87:D1:A1:6C:47:22:F4:1E:3C:23:81:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bBvsP5NYZoqH0aFsRyL0HjwjgeI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/8c0473-e7d0-4e43-a7f9-797f4cc4b500/1/mdvOY6VBl5-q7X0ryFA__Mf3xzw.roa
Signing time: Wed 15 Feb 2023 08:30:12 +0000
ROA not before: Wed 15 Feb 2023 08:30:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34306
IP address blocks: 185.161.9.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:54:32:12:0c:a5:a8:56:0d:c4:7f:b7:9f:d8:b7:db:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c1bec3f9358668a87d1a16c4722f41e3c2381e2
Validity
Not Before: Feb 15 08:30:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=99dbce63a541979faaed7d2bc8503ffcc7f7c73c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:2c:23:84:c3:d2:82:2d:59:9c:c4:19:0a:7a:
2d:f2:51:d7:0c:ed:83:a8:bf:bd:ac:23:31:04:61:
91:d2:dc:16:01:16:bf:19:5f:d0:2b:c2:65:39:2b:
bf:1a:ce:24:bf:e4:17:b5:d9:ff:67:37:71:cc:63:
1c:1a:75:ad:56:d0:d8:10:03:ca:9a:4f:83:c7:77:
86:8e:6b:37:a6:eb:69:89:2c:2a:48:4e:e6:56:9e:
13:e1:8b:e3:35:5d:da:7b:ae:39:42:58:16:cb:bc:
9e:f9:ba:e4:18:02:94:1b:c6:64:13:5b:3d:1a:50:
d8:ad:f5:18:de:86:99:de:8e:87:ad:44:ee:e4:f9:
b6:0d:d8:3c:7d:bc:ef:d5:9c:ae:3d:3f:42:2e:86:
ee:e1:b0:03:72:47:1c:01:f3:c6:f0:9c:8a:6d:0b:
0a:b5:c8:33:a3:42:2d:29:0c:f6:d2:d7:2a:46:72:
14:46:1a:13:5b:45:f7:ed:ef:46:cc:bc:6e:f1:c2:
06:8c:61:53:ac:13:d9:52:2f:34:e9:14:da:d0:88:
29:5f:02:16:75:5f:c7:84:ac:d1:37:06:d3:b4:ac:
3d:cd:3d:cc:a8:f5:1b:83:dc:1f:fa:d7:2e:6b:e0:
2c:89:d6:37:31:12:57:86:55:8c:46:f4:d8:7b:0f:
05:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:DB:CE:63:A5:41:97:9F:AA:ED:7D:2B:C8:50:3F:FC:C7:F7:C7:3C
X509v3 Authority Key Identifier:
keyid:6C:1B:EC:3F:93:58:66:8A:87:D1:A1:6C:47:22:F4:1E:3C:23:81:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bBvsP5NYZoqH0aFsRyL0HjwjgeI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/8c0473-e7d0-4e43-a7f9-797f4cc4b500/1/mdvOY6VBl5-q7X0ryFA__Mf3xzw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/8c0473-e7d0-4e43-a7f9-797f4cc4b500/1/bBvsP5NYZoqH0aFsRyL0HjwjgeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.161.9.0/24
Signature Algorithm: sha256WithRSAEncryption
14:19:3e:93:7c:06:54:a8:c1:25:f9:7e:0b:66:a7:ef:b5:34:
d3:e3:12:1a:9d:cb:51:d4:ae:2c:ac:82:a8:85:dc:b6:ed:17:
28:60:11:5c:79:2a:76:f6:87:13:87:39:26:f9:1a:f8:cb:2a:
c3:4c:35:9a:96:64:a1:d4:f5:7d:34:07:d8:ed:ac:e5:64:51:
3e:50:53:a4:09:a2:9f:7d:58:c7:98:f1:f2:9c:4e:a1:2b:ad:
ce:eb:ba:18:65:1d:b5:4b:c4:96:ea:49:70:de:e7:1b:65:9a:
55:9a:7f:5b:be:43:4b:2f:07:47:59:bb:ba:52:fb:a2:a9:4e:
d5:8b:42:aa:15:24:95:02:6a:16:2b:e1:0f:ad:c8:17:eb:d2:
4c:ba:0c:53:c0:51:09:17:22:2a:c2:68:dd:3c:01:47:b0:53:
36:af:9c:ec:fb:f1:98:99:85:1b:d1:fb:85:82:53:c9:b4:2b:
55:bc:8c:41:29:3f:c4:e3:d9:ab:83:6b:b7:3c:46:0d:b5:71:
f7:38:1f:a4:1f:69:45:c5:28:2f:f9:7a:05:d2:6a:53:46:70:
81:53:03:d1:bb:8b:64:a6:ec:91:59:cf:fd:1d:22:eb:88:2d:
7e:2f:4a:6c:cb:38:7d:2a:19:7b:04:5f:c2:10:41:8e:e4:bc:
92:95:d9:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:06 2024 by rpki-client on console-ams.rpki-client.org