Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/MhbN30pppvs9Ywa_b58U72lWuDM.roa
File: MhbN30pppvs9Ywa_b58U72lWuDM.roa (raw, json)
Hash identifier: Wfv6PvshWhNa3S4d6Iqt2WPYWVg76wq/ij6E6cxM3j4=
Subject key identifier: 32:16:CD:DF:4A:69:A6:FB:3D:63:06:BF:6F:9F:14:EF:69:56:B8:33
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 018FED752330E9B69EBB3419CA6FCC6AF07D
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/MhbN30pppvs9Ywa_b58U72lWuDM.roa
Signing time: Thu 06 Jun 2024 12:10:27 +0000
ROA not before: Thu 06 Jun 2024 12:10:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 109.122.46.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Jun 2024 10:21:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ed:75:23:30:e9:b6:9e:bb:34:19:ca:6f:cc:6a:f0:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Jun 6 12:10:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3216cddf4a69a6fb3d6306bf6f9f14ef6956b833
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:43:c6:fc:eb:6a:52:27:a1:19:5f:4c:a2:6e:
59:82:63:cc:d9:5b:8b:53:bf:20:3e:e8:07:e7:1b:
cb:fc:5d:5a:92:3c:ac:31:be:97:ad:5e:2e:ab:24:
41:f0:f8:4f:d5:d5:bf:1b:83:76:ab:bb:7e:97:0c:
c9:67:ae:c1:1a:e3:99:7a:cf:be:2b:36:84:a5:aa:
31:ae:e8:72:9f:f9:6c:0b:4f:f7:4d:54:ff:1b:e0:
64:51:47:8a:6f:70:5d:42:46:4c:20:8a:97:e6:11:
61:e3:44:a8:98:d6:a2:5d:e0:36:a7:2c:bd:f2:ec:
b7:12:b4:4b:07:e6:a9:e0:2b:da:28:ba:fd:4b:80:
48:72:fb:0c:b3:88:10:de:85:e6:3c:2c:c4:cd:a6:
86:85:1a:90:86:9e:4f:87:90:4b:9c:b2:29:44:66:
83:06:5f:26:8d:53:47:d3:3a:d5:eb:7a:80:fc:23:
5f:0f:da:51:06:d7:2c:55:40:3c:d3:da:b0:a7:59:
61:f1:38:97:8c:ae:1d:b0:f8:bd:cb:84:48:87:60:
d9:db:0d:4d:71:49:d7:09:bd:c9:33:a6:f9:9e:17:
50:98:30:bb:dc:77:b5:4e:68:b6:67:1e:fd:06:52:
cf:4b:ed:b8:f4:5e:83:b0:b7:32:c6:1b:f5:e0:60:
40:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:16:CD:DF:4A:69:A6:FB:3D:63:06:BF:6F:9F:14:EF:69:56:B8:33
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/MhbN30pppvs9Ywa_b58U72lWuDM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.122.46.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:00:03:ef:75:d8:12:db:ad:11:66:c7:1a:c9:93:9f:45:d8:
5f:b8:94:87:14:41:41:52:28:82:66:7d:cd:f4:03:07:52:4c:
d6:21:45:88:69:3e:51:8d:5e:2e:ea:8d:9b:49:7b:fe:07:da:
c1:e7:ad:45:7f:98:a4:73:6e:d4:e4:d2:11:14:8a:6e:97:f4:
f1:6e:d1:0f:ba:4d:81:65:39:f2:bb:a6:1a:24:65:1f:03:c6:
ba:6f:e6:38:9b:d0:d9:d9:51:a7:14:54:66:f9:df:8a:f5:37:
11:0e:d3:9b:72:23:ab:d0:d0:3c:d2:74:c5:c8:23:39:97:a8:
80:c8:b9:e9:69:63:9c:e0:85:c9:4f:32:6d:3a:e1:8f:12:ae:
f8:13:da:51:6f:1b:c6:b0:10:d9:74:29:3b:27:30:98:59:49:
26:60:b1:ab:d5:c2:be:c0:b6:5c:a4:d7:75:24:0a:e0:ad:a4:
e6:9d:29:a9:e7:d8:c4:5a:bd:ec:a8:d6:0b:3d:ea:d0:f7:d6:
01:fd:cd:c6:72:36:0d:64:3d:38:0c:a7:72:1f:e6:4d:7b:8f:
7c:6c:a1:07:23:95:36:04:6c:9c:ad:4c:cb:31:ae:36:8b:48:
5a:d7:2a:d4:93:bd:4e:ad:88:fa:fa:ce:70:28:e2:78:ab:a7:
8e:31:f7:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 10 15:24:32 2024 by rpki-client on console-ams.rpki-client.org