Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/MFgV0OoPRkh1tApwXrzcBeUAZFU.roa
File: MFgV0OoPRkh1tApwXrzcBeUAZFU.roa (raw, json)
Hash identifier: kab4G2Di12oN11SzRe7UKhxPc1QYOSO44fy+pzx294I=
Subject key identifier: 30:58:15:D0:EA:0F:46:48:75:B4:0A:70:5E:BC:DC:05:E5:00:64:55
Certificate issuer: /CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Certificate serial: 01856B5325C024DC82F7EFCC54F227ED6403
Authority key identifier: 54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/MFgV0OoPRkh1tApwXrzcBeUAZFU.roa
Signing time: Sun 01 Jan 2023 03:14:49 +0000
ROA not before: Sun 01 Jan 2023 03:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209474
IP address blocks: 213.238.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:53:25:c0:24:dc:82:f7:ef:cc:54:f2:27:ed:64:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Validity
Not Before: Jan 1 03:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=305815d0ea0f464875b40a705ebcdc05e5006455
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:e4:61:cf:3d:54:e6:9c:0f:a4:74:b8:5e:27:
27:3f:60:2c:4c:12:d3:c2:ba:44:28:93:24:5d:66:
25:46:57:d9:e5:85:9b:02:73:7e:a2:7b:4a:d0:19:
8d:3b:ea:4d:25:2b:30:43:d8:59:ff:fd:de:58:9f:
bf:dd:6c:64:32:27:3a:0c:f7:08:3f:60:cb:b1:4e:
9a:d5:23:e7:bd:97:b1:15:7c:91:52:e6:4f:6b:35:
fd:56:2c:e6:b7:54:7f:4a:2c:33:c2:c5:ab:ca:6d:
ca:46:38:ce:49:16:c9:96:37:80:3a:91:4e:68:54:
ee:d3:d8:4c:da:81:6d:89:8d:76:e3:90:e9:50:cf:
32:3c:60:39:c5:75:26:f8:bc:66:92:ee:5d:1f:fd:
be:f4:ce:b6:a1:ed:57:c4:16:3c:9b:f2:c0:ba:62:
50:7e:f2:35:ba:af:1b:b7:13:f1:e4:47:4c:8c:56:
c2:7c:18:05:02:a3:30:8f:c6:8e:e0:ed:9f:f9:a2:
6b:92:1d:de:c8:ef:a4:16:e9:d8:5c:8b:22:95:0c:
61:a6:ab:89:82:8e:aa:df:04:d8:ba:9a:ac:bf:af:
87:74:86:2c:53:69:58:79:64:7b:6f:49:bb:ba:48:
e0:1f:ea:69:d4:a7:cc:58:d8:6d:5b:40:fe:a3:ed:
b8:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:58:15:D0:EA:0F:46:48:75:B4:0A:70:5E:BC:DC:05:E5:00:64:55
X509v3 Authority Key Identifier:
keyid:54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/MFgV0OoPRkh1tApwXrzcBeUAZFU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/VMvaeLHRthPfVl_5lwC2rulA3j8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.238.166.0/24
Signature Algorithm: sha256WithRSAEncryption
54:f7:62:91:99:1b:d1:88:ce:a5:02:d0:b3:4a:2b:3f:1b:a4:
5d:18:05:e7:1c:7e:a6:81:84:17:f2:29:f9:f5:6c:ed:cf:08:
94:76:5f:9a:07:12:65:5b:bf:a3:5d:1f:04:8f:bc:2f:4e:65:
2c:e0:a8:7d:0f:17:a5:da:a0:58:3e:9e:b7:66:6d:05:3f:d7:
b2:7e:c9:a9:4a:76:c0:2b:13:97:65:6c:d1:f5:6f:56:2b:5b:
f3:85:05:27:21:d9:e9:87:28:7f:ab:f2:b7:fa:4a:9f:71:97:
f9:28:11:76:f8:75:66:97:d2:21:cf:d1:aa:16:19:38:c6:9b:
79:65:8f:6a:16:90:ee:a2:b5:b9:66:56:57:aa:b6:97:35:70:
e0:7b:c1:02:d2:e6:a7:ff:27:70:28:93:69:39:44:5c:b5:e8:
4b:4b:65:06:15:e9:d2:1e:cf:9c:13:0e:3c:ba:ec:8c:94:cc:
06:00:35:1e:50:2a:2c:b8:f1:6c:ca:9a:7e:29:e7:dc:8e:52:
2a:f4:e3:68:90:d1:9d:d6:6f:3d:00:56:95:96:a1:0b:d1:0f:
2b:70:45:4d:88:cb:01:57:03:f5:38:ef:a0:82:c3:a6:45:6d:
82:92:52:8a:1d:ea:e1:d1:90:8b:15:4e:6d:40:49:79:2d:58:
f0:58:47:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:36 2024 by rpki-client on console-ams.rpki-client.org