Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/msGRgsdIE5PvE0t1sjs8L3TZ7Sk.roa
File: msGRgsdIE5PvE0t1sjs8L3TZ7Sk.roa (raw, json)
Hash identifier: 8TtmoXXIabNlqsFVTmMvYMRTZs4cuOhtX1ZWELTyT4E=
Subject key identifier: 9A:C1:91:82:C7:48:13:93:EF:13:4B:75:B2:3B:3C:2F:74:D9:ED:29
Certificate issuer: /CN=621310302018a387c692146a35efd33a6ed6b1ef
Certificate serial: 0189D89DABEED88F59DB93CA57672D9F27A8
Authority key identifier: 62:13:10:30:20:18:A3:87:C6:92:14:6A:35:EF:D3:3A:6E:D6:B1:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhMQMCAYo4fGkhRqNe_TOm7Wse8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/msGRgsdIE5PvE0t1sjs8L3TZ7Sk.roa
Signing time: Wed 09 Aug 2023 04:45:59 +0000
ROA not before: Wed 09 Aug 2023 04:45:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211407
IP address blocks: 185.151.146.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 09 Sep 2023 20:24:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d8:9d:ab:ee:d8:8f:59:db:93:ca:57:67:2d:9f:27:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=621310302018a387c692146a35efd33a6ed6b1ef
Validity
Not Before: Aug 9 04:45:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9ac19182c7481393ef134b75b23b3c2f74d9ed29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:f5:c4:a4:af:7a:a1:bf:a7:4c:a4:bd:1b:90:
d1:e7:ce:d4:6f:68:2b:96:61:d4:cc:52:70:26:c5:
b0:0e:b1:af:e6:86:ea:aa:b2:84:3b:84:b7:ce:dc:
25:9a:57:59:16:c4:38:23:bf:f6:17:38:e9:c0:8e:
5d:df:16:5f:b2:6b:2a:e7:e4:98:0b:a4:b3:d2:aa:
26:8b:99:9b:c7:c6:cb:4d:21:6c:b9:92:a0:c8:18:
8e:02:93:f1:7e:81:e8:82:ed:de:5d:8d:87:8f:6f:
43:a3:cd:b3:e0:36:f7:5f:e9:4f:99:9d:0b:ea:5f:
30:35:1f:6f:3e:ff:13:9b:22:0f:89:d6:ff:62:69:
ab:46:42:ac:a3:7c:23:44:c0:45:01:85:06:f0:6d:
92:6d:cc:37:0c:54:8c:95:ed:eb:76:6d:8e:a3:5b:
e2:1e:eb:9f:a6:6d:d2:57:0a:e4:bb:7b:fd:7b:d9:
5f:71:7e:1b:c3:0a:70:c9:3e:64:00:48:8b:98:aa:
a3:f9:0b:9f:29:03:80:ea:da:e2:c9:7d:1e:db:13:
8a:0e:74:1d:4b:5c:91:4f:f1:32:07:22:15:52:32:
23:b6:a0:1f:b0:65:71:b8:d1:81:b1:f3:05:98:3d:
f9:ff:39:c2:36:42:e2:a1:ca:8b:bc:ce:ea:75:9a:
be:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:C1:91:82:C7:48:13:93:EF:13:4B:75:B2:3B:3C:2F:74:D9:ED:29
X509v3 Authority Key Identifier:
keyid:62:13:10:30:20:18:A3:87:C6:92:14:6A:35:EF:D3:3A:6E:D6:B1:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhMQMCAYo4fGkhRqNe_TOm7Wse8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/msGRgsdIE5PvE0t1sjs8L3TZ7Sk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/YhMQMCAYo4fGkhRqNe_TOm7Wse8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.151.146.0/24
Signature Algorithm: sha256WithRSAEncryption
52:91:1f:85:be:d9:3a:f8:f3:d4:5d:85:96:19:a8:93:96:aa:
b0:d3:93:c1:02:2a:86:74:36:c9:a2:48:0e:a6:59:7a:e3:fa:
95:bc:28:83:a6:2f:d7:52:e7:fe:63:7b:e1:1f:3a:e2:e3:b8:
14:fa:a0:1e:26:38:f4:38:dd:70:ec:3b:ea:03:7a:e1:08:6e:
7f:42:2a:7e:8d:84:0b:8a:ab:d5:46:33:cf:74:62:c7:20:fc:
07:2e:ba:14:57:dc:8f:a2:cf:50:b9:c8:e4:92:73:d4:dc:b6:
9d:91:c3:c1:a5:87:3c:81:1c:54:9a:f5:9c:f4:a5:dd:02:85:
4d:8d:e1:dd:27:64:d7:2e:0e:d4:ef:e4:9b:16:6c:db:91:54:
b7:e2:e8:9c:08:80:7c:d9:ef:82:a0:2c:c6:5c:3d:e9:bf:fc:
9d:d4:ba:ac:f9:b6:0a:93:e5:d7:de:b3:58:f5:8d:a5:4d:a9:
7e:f1:61:f8:0b:b8:cb:0e:1c:30:54:5b:c5:68:e6:70:03:13:
05:34:c1:00:10:12:c8:de:cc:90:e5:89:19:9d:9f:06:b5:06:
7f:2d:fa:7c:38:e7:41:05:31:f3:cc:31:ac:5c:8b:3a:78:e7:
87:5b:f6:78:54:3c:65:58:9d:5f:d4:c8:5e:3c:bb:b3:d4:d4:
e4:42:5f:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:45 2024 by rpki-client on console-fra.rpki-client.org