Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/ma_Mb-mvLg57V42DvNirxsfU_Yg.roa
File: ma_Mb-mvLg57V42DvNirxsfU_Yg.roa (raw, json)
Hash identifier: p/wf3W9E79d04oNfGdb+6VG9yqEO8nkc9TuCoQi+Jyg=
Subject key identifier: 99:AF:CC:6F:E9:AF:2E:0E:7B:57:8D:83:BC:D8:AB:C6:C7:D4:FD:88
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018CFED720F65D803858DA7C74D8771A9D6B
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/ma_Mb-mvLg57V42DvNirxsfU_Yg.roa
Signing time: Fri 12 Jan 2024 18:02:40 +0000
ROA not before: Fri 12 Jan 2024 18:02:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 23033
IP address blocks: 62.72.189.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 09 Feb 2024 11:23:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:fe:d7:20:f6:5d:80:38:58:da:7c:74:d8:77:1a:9d:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Jan 12 18:02:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=99afcc6fe9af2e0e7b578d83bcd8abc6c7d4fd88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:10:5e:63:1e:e4:03:b3:34:3c:15:f2:38:6c:
a5:75:ea:d7:23:22:d3:a1:f4:44:e0:52:58:d7:f1:
1f:18:e4:82:4a:3d:4c:73:7c:14:60:43:a3:83:98:
ed:59:b9:96:f4:d4:0b:46:bc:03:7b:07:7e:23:4b:
0d:76:98:b2:78:69:45:33:85:ca:d9:8a:04:dc:61:
9e:84:e1:ab:7a:7f:73:2d:41:2f:00:0f:46:33:76:
2b:18:20:5b:a3:f5:e0:60:56:89:e5:37:86:17:8a:
aa:d3:a5:57:b2:c5:63:ad:ff:38:2e:4f:63:4a:a9:
f0:97:bb:f7:ff:f3:bd:dc:b4:f5:81:c6:ec:38:71:
bf:32:78:3e:8e:9d:36:78:bb:53:fa:70:23:47:82:
fc:f7:79:63:47:62:3b:f2:24:ca:77:34:9a:b0:50:
01:80:aa:05:9d:aa:04:e1:b2:10:48:48:c1:b5:66:
0e:8e:c0:02:9b:e1:fc:64:c8:8c:08:d2:39:cd:72:
ae:a9:31:8e:5a:09:9e:68:1f:39:ad:5e:aa:41:f1:
39:3e:91:e1:52:85:66:22:81:dd:9b:eb:e7:25:a2:
31:c0:c5:14:98:a9:49:a4:96:e1:55:4c:a6:bb:31:
f5:1e:54:e1:1c:8e:f0:5d:bc:b4:d5:ca:2d:8d:c4:
2a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:AF:CC:6F:E9:AF:2E:0E:7B:57:8D:83:BC:D8:AB:C6:C7:D4:FD:88
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/ma_Mb-mvLg57V42DvNirxsfU_Yg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.189.0/24
Signature Algorithm: sha256WithRSAEncryption
68:0b:6f:22:28:ec:5f:80:b2:73:cc:05:82:49:f1:1e:87:92:
6f:c7:e5:be:d9:1f:aa:16:5a:57:b4:68:89:83:76:33:11:78:
61:43:a8:5f:56:a9:96:3e:66:bb:b1:33:d1:7a:90:5f:02:b1:
49:6b:65:40:f7:c9:11:ac:99:8a:fb:42:6c:e0:3f:64:f2:f4:
5a:95:0d:42:b1:6b:e2:64:ae:c4:09:91:63:a2:b8:48:35:0a:
4a:48:fb:68:07:f4:00:43:f6:9c:0e:cf:10:9d:f9:bf:f1:5f:
64:0d:63:9a:5e:b2:ec:2b:d1:b9:81:a9:a3:3e:5c:1a:4b:e7:
d8:cc:5b:97:fc:3a:77:d9:46:60:25:d8:4a:36:ec:27:22:fd:
7c:ef:5e:9a:a7:e2:41:26:70:18:67:15:23:74:b6:3c:04:ab:
e6:b1:ed:83:76:4d:e4:98:42:5c:23:df:1c:57:8a:5e:78:86:
2e:3d:81:9a:7b:ee:10:10:a0:dc:cc:9f:21:cb:78:35:71:d3:
c8:8c:ad:56:5c:c8:f9:03:3e:a7:aa:03:f5:3c:de:4e:c9:fb:
9d:0a:1b:7d:2d:bc:9c:c5:6b:54:8e:14:53:f4:6b:47:6d:bd:
ba:f0:e0:10:1d:93:3e:96:9f:d9:aa:3a:11:72:96:a1:53:c2:
24:95:75:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:55 2024 by rpki-client on console-fra.rpki-client.org