Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/6a4e57-fbe3-4bc2-b8a5-dc8fcc6bdaaa/1/5MGI3x8mf_JHYn-OFq5Az3O9tSI.roa
File: 5MGI3x8mf_JHYn-OFq5Az3O9tSI.roa (raw, json)
Hash identifier: jN5vUHF/ipKPQKKFwt+YW1Qd4f08BX8WA1+nPnBfccY=
Subject key identifier: E4:C1:88:DF:1F:26:7F:F2:47:62:7F:8E:16:AE:40:CF:73:BD:B5:22
Certificate issuer: /CN=a40c1ad547b93ebf655c580438dfa5ae427c6511
Certificate serial: 01856E78E44CFACD9A77C11BEAEA899A2234
Authority key identifier: A4:0C:1A:D5:47:B9:3E:BF:65:5C:58:04:38:DF:A5:AE:42:7C:65:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pAwa1Ue5Pr9lXFgEON-lrkJ8ZRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/6a4e57-fbe3-4bc2-b8a5-dc8fcc6bdaaa/1/5MGI3x8mf_JHYn-OFq5Az3O9tSI.roa
Signing time: Sun 01 Jan 2023 17:54:54 +0000
ROA not before: Sun 01 Jan 2023 17:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43178
IP address blocks: 91.194.126.0/23 maxlen: 23
91.194.127.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:78:e4:4c:fa:cd:9a:77:c1:1b:ea:ea:89:9a:22:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a40c1ad547b93ebf655c580438dfa5ae427c6511
Validity
Not Before: Jan 1 17:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e4c188df1f267ff247627f8e16ae40cf73bdb522
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:6f:2a:48:0f:b2:39:3a:4d:c8:3f:56:c8:1f:
e5:0d:a5:72:d5:36:37:60:db:f9:05:2c:6d:7d:6a:
39:36:a0:e3:b3:5d:03:2d:d9:3f:41:37:cc:5c:cb:
de:e3:6c:c0:e8:04:1a:e9:53:b2:c1:4b:1e:60:b7:
41:4d:03:3e:23:a7:e4:c2:60:5a:c7:40:fe:13:99:
5b:c5:4b:f3:7b:33:84:77:b9:9d:df:3e:c1:59:69:
1f:ad:08:f8:62:05:9a:48:29:67:db:7f:45:98:02:
7d:15:98:47:81:0c:09:3f:43:e7:a9:27:ca:59:49:
fa:34:f3:a9:83:e4:2a:72:3c:e2:bb:85:c5:fe:f7:
2a:c1:82:39:26:b6:6e:3d:d7:5b:06:7a:dc:0a:0a:
8d:e3:9a:65:7e:43:1d:6f:af:03:b0:2c:6d:fc:91:
43:81:5c:73:2d:31:05:b1:6b:97:06:99:ae:6d:a4:
b8:14:7c:64:75:d3:3e:75:17:6f:38:41:4a:f9:55:
b8:3f:6c:3d:5d:0b:09:f7:cc:d3:6f:e3:6a:50:26:
40:5c:ea:8d:58:4d:7c:b5:1f:7e:f2:f4:74:04:9b:
a3:ea:e2:17:28:e5:c7:ad:f5:9b:45:39:9e:4a:c9:
06:65:97:7a:0e:a3:22:7f:0b:c9:12:c8:d1:58:e0:
4b:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:C1:88:DF:1F:26:7F:F2:47:62:7F:8E:16:AE:40:CF:73:BD:B5:22
X509v3 Authority Key Identifier:
keyid:A4:0C:1A:D5:47:B9:3E:BF:65:5C:58:04:38:DF:A5:AE:42:7C:65:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pAwa1Ue5Pr9lXFgEON-lrkJ8ZRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/6a4e57-fbe3-4bc2-b8a5-dc8fcc6bdaaa/1/5MGI3x8mf_JHYn-OFq5Az3O9tSI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/6a4e57-fbe3-4bc2-b8a5-dc8fcc6bdaaa/1/pAwa1Ue5Pr9lXFgEON-lrkJ8ZRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.126.0/23
Signature Algorithm: sha256WithRSAEncryption
9f:b1:92:2d:52:81:6e:08:bb:01:33:32:18:3f:13:66:b3:2d:
3a:73:32:db:4a:f3:ac:f8:43:0a:79:5a:fa:3c:c0:d2:09:92:
f4:82:0d:2f:f8:58:ca:09:25:94:31:74:0b:2f:d3:f1:d0:bf:
4a:43:5d:34:ba:b7:ac:b8:fc:60:0a:65:d8:3a:e0:91:88:08:
cd:98:12:90:99:48:23:5a:43:ec:ee:da:ad:39:a6:e6:67:c1:
a3:b3:52:f0:12:2f:f9:99:96:45:6b:fe:09:eb:07:fa:c4:21:
22:30:81:31:ad:60:55:ed:3a:04:ce:04:7c:2b:40:25:ef:4b:
ea:b4:85:94:66:57:60:9f:32:fe:31:63:24:94:93:cd:50:1c:
f3:82:03:1a:b7:57:5f:f4:d4:81:08:4f:30:96:83:de:63:4a:
f4:48:9e:53:12:f0:24:07:88:04:96:ec:8b:9e:ea:64:7a:b2:
fc:ca:fd:ed:ca:e4:f4:5b:13:80:5d:4c:6d:40:44:d9:57:28:
be:d8:37:94:8a:11:bf:ca:d8:8b:27:b5:d9:71:08:50:4f:e9:
2d:c3:e5:9e:dc:77:f6:1a:61:c3:d5:35:ae:fb:b2:aa:68:56:
99:34:f2:d0:df:aa:42:9f:ca:be:ce:f4:2a:01:c3:1d:8f:d6:
6c:d9:a2:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:19:20 2024 by rpki-client on console-ams.rpki-client.org