Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/mNb_Hfj5G89XYUCgKLHPTmn-dDY.roa
File: mNb_Hfj5G89XYUCgKLHPTmn-dDY.roa (raw, json)
Hash identifier: siOT0NZgfjd7z/X7uXXoOIr1Vgd7OXCQqp2Ce/veFx0=
Subject key identifier: 98:D6:FF:1D:F8:F9:1B:CF:57:61:40:A0:28:B1:CF:4E:69:FE:74:36
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 01858D4FB120EE729889CD130838B931C55E
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/mNb_Hfj5G89XYUCgKLHPTmn-dDY.roa
Signing time: Sat 07 Jan 2023 17:38:08 +0000
ROA not before: Sat 07 Jan 2023 17:38:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 86.107.168.0/24 maxlen: 24
93.114.244.0/24 maxlen: 24
62.192.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 09 Jan 2023 08:03:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:8d:4f:b1:20:ee:72:98:89:cd:13:08:38:b9:31:c5:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 7 17:38:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=98d6ff1df8f91bcf576140a028b1cf4e69fe7436
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:fc:e6:b6:4c:8c:8c:a4:9d:71:e5:cc:55:0b:
b2:31:13:71:3e:93:14:15:d2:d2:9e:37:37:5a:85:
fe:ae:0f:24:ce:6e:d7:98:87:de:8c:5e:ff:0c:70:
fb:ae:67:a1:0c:93:9c:2c:e8:02:d3:d5:88:06:e1:
3a:c9:a9:22:8d:ad:38:d3:9c:54:62:0e:41:1d:d6:
fe:b8:6f:5e:8d:6e:e4:9e:c9:ae:43:7a:06:67:77:
b5:42:f6:4a:a5:cc:7f:ec:b0:e2:2f:dc:8a:7a:bb:
4b:64:91:70:38:8b:cd:d7:ba:30:3d:43:c8:ca:f6:
bd:0e:5b:f3:a7:cf:c5:41:3d:04:c2:64:2c:cf:1b:
f4:78:e0:42:06:e3:a0:6a:09:04:63:9e:43:e1:d1:
5f:ae:48:d4:15:a7:f6:12:6a:f8:ed:49:94:36:b7:
9d:25:e2:5f:c7:ae:95:0a:26:5e:d6:67:2d:40:a7:
b5:c9:51:12:8d:b5:47:c3:69:53:86:12:a0:0c:e9:
98:71:01:72:25:74:b0:1a:51:98:14:de:e1:7b:a5:
5c:c8:e3:0e:7d:78:91:d1:73:cc:b7:ba:24:4c:4a:
62:6a:c7:5b:ce:fe:2d:a1:53:92:41:58:fc:3b:dc:
84:44:25:f6:62:9e:b0:5d:fe:9a:34:9d:fb:a6:2e:
1a:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:D6:FF:1D:F8:F9:1B:CF:57:61:40:A0:28:B1:CF:4E:69:FE:74:36
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/mNb_Hfj5G89XYUCgKLHPTmn-dDY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.192.152.0/24
86.107.168.0/24
93.114.244.0/24
Signature Algorithm: sha256WithRSAEncryption
04:74:39:e9:c4:d9:f1:61:bf:dd:dc:08:e6:e1:6c:2c:58:aa:
d9:6d:6d:d8:16:9d:27:09:ce:5a:87:02:1d:34:e4:03:b3:b2:
59:cd:03:0c:71:c6:3b:03:a2:a1:48:a3:ae:91:f1:17:0b:2f:
8c:70:1a:69:0e:e7:71:d6:32:c6:46:cb:eb:5d:1c:80:1b:8f:
82:62:1c:14:a0:8f:ba:53:29:ae:23:27:56:a7:38:7c:fc:b4:
f3:6a:d8:1a:ad:fc:b4:f8:81:73:42:9e:61:c9:38:38:2f:03:
5c:f4:ce:99:5c:b3:3d:dc:38:d7:25:2e:a4:b3:05:19:18:59:
51:3b:19:a5:be:27:a4:02:f7:bc:e1:31:32:59:89:55:57:04:
ab:08:88:e2:b5:83:bf:f1:b2:f9:19:be:08:cc:49:b7:0a:d1:
b5:c1:db:b9:f8:a6:5e:d2:ee:87:6d:02:f4:ad:25:ee:54:20:
80:16:5f:4c:52:00:d5:98:26:90:f1:50:5f:4d:86:90:fe:c3:
62:4d:ec:76:25:44:13:52:be:cd:4f:f5:fa:5d:ac:fe:dd:5c:
0a:6d:38:fc:36:65:9d:65:a7:80:a6:32:ab:bf:92:b6:ef:59:
72:2d:d9:d8:aa:3d:2d:e6:45:34:52:89:ff:a2:03:1c:92:d2:
c0:39:f5:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:14 2024 by rpki-client on console-ams.rpki-client.org