Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/MHoaF-M6gi18Oo0cN8waRZ4RcHQ.roa
File: MHoaF-M6gi18Oo0cN8waRZ4RcHQ.roa (raw, json)
Hash identifier: Nmu9wEMsfnrf2z3GL0uAZV0IvJ9Ug7az17yxatj+TyA=
Subject key identifier: 30:7A:1A:17:E3:3A:82:2D:7C:3A:8D:1C:37:CC:1A:45:9E:11:70:74
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 018CC9BCA73A0D474773FE9CEC95607915F0
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/MHoaF-M6gi18Oo0cN8waRZ4RcHQ.roa
Signing time: Tue 02 Jan 2024 10:33:53 +0000
ROA not before: Tue 02 Jan 2024 10:33:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16074
IP address blocks: 145.77.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 19:49:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:a7:3a:0d:47:47:73:fe:9c:ec:95:60:79:15:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Jan 2 10:33:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=307a1a17e33a822d7c3a8d1c37cc1a459e117074
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:36:81:cf:f2:60:23:79:f8:3c:8f:22:5a:8f:
1c:13:07:5e:11:86:3e:ca:02:b2:fe:50:54:84:ab:
36:a2:b3:80:07:de:a0:8d:4f:05:d1:1d:e1:b7:9a:
b4:de:01:e8:83:54:5b:05:a8:f2:03:e9:4b:b6:28:
1a:27:ab:eb:35:5d:c1:45:64:a4:64:b2:1c:1c:e8:
ec:c5:1b:f8:2d:ca:bb:5c:16:50:b8:ea:28:f6:60:
79:5c:76:f5:5d:26:bc:ad:b4:8f:aa:f1:85:ae:fb:
9f:56:74:35:14:02:11:74:96:40:99:4a:d3:48:e1:
f0:77:56:9f:e3:91:0a:a2:05:fc:46:ac:f9:c4:b4:
63:3f:a6:d3:b0:af:1d:d6:15:3c:0e:7b:20:da:f9:
e0:ac:5c:71:6e:8b:86:68:f0:d3:47:b8:aa:e9:30:
e4:cd:1f:be:7e:4d:f6:78:bb:f5:a1:50:40:3d:06:
6d:9d:d6:41:dd:1e:37:ae:10:01:b5:9a:0c:12:e8:
05:58:26:0b:b1:6d:23:c6:ab:ba:2d:ec:52:94:cd:
89:2c:b0:52:fa:af:4c:0e:9a:f2:2c:a5:4c:24:5a:
f7:91:9d:37:04:c3:f6:aa:3b:97:64:d5:8a:ee:9e:
57:b6:8a:24:77:27:d9:55:dc:0e:04:04:28:7c:52:
1f:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:7A:1A:17:E3:3A:82:2D:7C:3A:8D:1C:37:CC:1A:45:9E:11:70:74
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/MHoaF-M6gi18Oo0cN8waRZ4RcHQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.77.0.0/16
Signature Algorithm: sha256WithRSAEncryption
52:9a:60:f7:48:64:52:42:64:f8:2c:59:82:ed:5d:c0:c1:6e:
94:c1:a3:6c:5c:62:8f:c1:d7:73:0c:10:64:2e:b5:98:fe:ba:
97:b0:7b:b7:cd:f2:51:db:ee:08:2b:77:69:71:76:a1:9b:93:
b4:23:4c:aa:b9:8f:4a:6b:a8:3e:01:b1:17:d6:ef:71:83:6b:
b7:b6:e8:63:4c:b9:64:7f:47:5b:d6:8a:28:30:c6:28:05:db:
b2:5a:cd:70:64:4e:5d:aa:74:21:8e:35:41:1d:b1:46:b1:e4:
9c:71:73:43:53:e9:01:44:3b:c9:f6:16:65:52:fd:58:13:83:
2e:11:95:b4:15:8d:31:18:ae:cf:e2:f7:b2:ec:d5:b8:79:dd:
66:b2:1d:59:1e:9b:8d:e7:13:45:a1:18:18:8e:3c:12:5f:2d:
d5:7b:1a:53:36:26:61:24:74:94:60:6f:c3:12:bf:90:8b:d9:
d0:4d:0e:33:f4:8b:3f:7a:79:b0:43:8d:f1:ff:ca:3f:0c:5c:
3c:d6:d4:ec:71:d9:1c:0c:be:92:cb:45:52:b1:c7:ff:9f:16:
8d:d4:1b:fa:8b:58:34:28:d4:4c:e9:f4:0c:36:fe:43:2e:cb:
0a:2e:ba:86:63:d0:3c:7c:18:45:f3:66:5d:e3:13:9f:6d:83:
71:f4:c7:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:41:10 2025 by rpki-client