Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/mg00G54izSdkbbK3mM-kvmjOVMs.roa
File: mg00G54izSdkbbK3mM-kvmjOVMs.roa (raw, json)
Hash identifier: S8d91U+zLwW80B2DpXeqyfidx8r4p7T44QusGAfPvIs=
Subject key identifier: 9A:0D:34:1B:9E:22:CD:27:64:6D:B2:B7:98:CF:A4:BE:68:CE:54:CB
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 018EEA96A968B1EEC078015B46690E999E31
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/mg00G54izSdkbbK3mM-kvmjOVMs.roa
Signing time: Wed 17 Apr 2024 05:45:26 +0000
ROA not before: Wed 17 Apr 2024 05:45:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212036
IP address blocks: 213.176.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 Apr 2024 05:37:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:ea:96:a9:68:b1:ee:c0:78:01:5b:46:69:0e:99:9e:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Apr 17 05:45:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9a0d341b9e22cd27646db2b798cfa4be68ce54cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:54:52:9d:a5:80:10:45:a9:53:21:96:6a:e7:
ae:2a:23:61:be:d4:c4:e7:44:b8:b3:8b:5b:b5:0e:
09:c6:fc:9b:14:0d:31:87:e8:64:b7:bb:2e:d4:a7:
f5:3b:91:4b:18:f1:35:87:69:21:63:9a:04:92:ce:
e7:32:d9:9c:f6:f9:36:7c:c2:ac:1c:7f:52:bb:2d:
f3:9b:04:3b:79:d9:f8:6c:60:6d:55:9f:31:a3:0e:
de:be:7a:d8:05:64:7d:c3:bf:86:65:3b:a9:33:0b:
f0:ec:a0:ae:a9:bd:e5:a8:2f:9a:8a:af:be:0d:83:
40:52:0d:bf:40:6c:84:ab:32:eb:78:2b:9b:c6:81:
b6:a8:5d:88:04:a0:ea:e9:53:a6:3e:80:fd:99:3e:
23:85:44:83:14:81:d7:60:42:75:84:86:3c:03:75:
a6:01:47:81:b4:cb:2a:df:d7:4d:8e:0d:17:31:2c:
18:1f:80:c8:b9:cf:57:64:28:5f:26:cf:9a:28:1b:
92:cd:e1:62:83:cf:63:90:67:d7:91:56:b6:ea:d6:
10:5a:f1:35:fb:89:4f:53:54:15:d8:62:76:c0:0b:
e8:d3:a7:ab:87:96:8a:cb:32:f8:69:0d:31:ee:06:
9b:7b:1e:ec:e9:65:49:85:97:77:70:98:2c:d2:e9:
1e:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:0D:34:1B:9E:22:CD:27:64:6D:B2:B7:98:CF:A4:BE:68:CE:54:CB
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/mg00G54izSdkbbK3mM-kvmjOVMs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.176.120.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:54:f0:3e:2c:0a:82:25:a9:58:a0:c9:a2:ed:dc:55:f0:9b:
d9:13:b3:53:e9:72:04:b5:e0:c8:ff:82:a3:5c:59:91:2e:81:
2e:92:2d:69:ac:90:d3:8f:78:61:72:af:25:4c:7f:72:f4:87:
92:b8:bc:8b:e2:37:4f:38:ea:68:fa:61:96:25:fa:8b:f4:e1:
91:d6:c1:41:fe:ee:83:7d:88:03:a1:5a:1c:d0:16:65:48:2b:
f9:b2:8f:34:b2:68:ec:23:95:5b:62:57:d0:f4:cd:4b:85:89:
af:76:da:ae:c7:4d:ba:49:ae:df:ae:08:d5:89:d3:b4:56:d5:
b6:bd:db:66:ea:41:67:66:c1:be:bd:67:b2:b9:48:ce:96:3d:
b0:fc:8b:3b:95:ee:56:d2:86:ba:5f:e5:1b:ad:d3:f5:b7:3c:
bb:d5:7a:fb:4f:19:a3:74:8a:6a:fd:1c:a5:ec:05:97:41:8c:
28:c5:a6:7a:a8:4d:8b:f0:71:10:71:91:de:ce:38:87:0c:d4:
dc:74:26:ce:eb:57:54:91:2e:e4:fa:ca:a7:fd:16:6f:fe:3b:
fb:14:a3:31:15:70:f9:57:b4:d1:f9:ae:50:67:dc:3a:5b:50:
21:4a:14:6e:7e:d7:52:ca:b7:a8:eb:db:94:06:a7:ef:5e:81:
8c:2a:ea:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:30 2024 by rpki-client on console-ams.rpki-client.org