Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/mG9y88mGBDjd1TlOAfQa3hkgcD8.roa
File: mG9y88mGBDjd1TlOAfQa3hkgcD8.roa (raw, json)
Hash identifier: PQ1rmQN4GFR0VBm6OzKvSPe50mfJgT8LPcJDGah/vcs=
Subject key identifier: 98:6F:72:F3:C9:86:04:38:DD:D5:39:4E:01:F4:1A:DE:19:20:70:3F
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 0185719561B9753702421886528658FED7E1
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/mG9y88mGBDjd1TlOAfQa3hkgcD8.roa
Signing time: Mon 02 Jan 2023 08:24:53 +0000
ROA not before: Mon 02 Jan 2023 08:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1149
IP address blocks: 145.100.118.0/23 maxlen: 24
2001:610:9000::/40 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:61:b9:75:37:02:42:18:86:52:86:58:fe:d7:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Jan 2 08:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=986f72f3c9860438ddd5394e01f41ade1920703f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:3a:ed:86:14:4f:ce:cc:bc:8f:25:b1:51:e9:
98:97:e5:aa:5e:80:6a:13:a9:97:fc:2e:37:25:24:
42:01:76:cf:8c:0a:ec:b0:a5:bf:0a:2c:65:ea:9b:
c4:80:17:44:3e:83:a9:01:93:5e:9c:3b:43:e0:4b:
92:1b:98:9e:99:a1:1d:4f:1c:8b:ed:e7:7c:92:2c:
49:24:b8:70:95:85:dd:20:98:95:75:cd:99:c8:93:
40:1c:cd:db:c4:b5:9b:0d:79:1a:aa:fa:7e:50:11:
ed:a4:d9:dd:e8:f1:33:66:bd:4c:8d:a6:f2:c6:35:
e6:87:fd:c5:28:f9:ee:a8:3b:c4:56:72:0f:83:d7:
f8:63:d8:f5:23:dd:29:02:f3:45:52:db:c5:b1:cd:
34:7e:d8:86:24:ea:b4:ec:c0:e9:eb:3d:c4:b9:33:
a6:61:e0:59:08:4c:29:4e:50:53:c0:8c:84:f9:10:
51:ae:25:de:59:89:65:85:1c:5f:0f:5e:5d:ae:75:
4d:0e:d5:e8:1e:2c:9e:f8:21:eb:a0:3f:0f:ce:c7:
ac:34:b1:fe:c8:13:c2:08:5c:f9:38:85:a0:a2:54:
7f:43:94:fc:61:c6:66:81:c9:1f:6e:fe:83:f7:94:
9f:86:6e:2f:08:3d:c2:7c:bb:1a:17:ba:9a:d0:6a:
47:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:6F:72:F3:C9:86:04:38:DD:D5:39:4E:01:F4:1A:DE:19:20:70:3F
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/mG9y88mGBDjd1TlOAfQa3hkgcD8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.100.118.0/23
IPv6:
2001:610:9000::/40
Signature Algorithm: sha256WithRSAEncryption
10:b7:7c:80:f8:e5:98:9b:1e:4e:de:cf:39:0b:66:18:f0:a7:
13:d0:86:57:7e:5e:1d:67:b8:15:f9:c8:d8:c5:de:93:cd:5e:
db:40:7d:54:da:37:30:a5:16:57:56:47:0d:11:62:92:2f:f2:
69:36:ff:12:cb:74:0d:fb:85:6f:94:fa:56:18:8a:af:24:1b:
11:3b:2d:3f:3b:55:61:8f:27:39:26:b0:de:d8:01:07:51:c8:
7e:5e:10:01:d3:03:7a:44:80:3c:6a:1c:a9:72:12:70:a9:88:
cf:cd:00:98:64:62:9a:db:ed:08:4e:be:c1:f4:b0:58:9f:5f:
25:cd:a9:5f:80:83:be:e5:f5:f2:35:8f:25:36:c4:fa:bc:fc:
58:97:d1:35:f3:46:36:c9:ff:d5:c8:ec:96:01:35:22:5b:2e:
e7:6e:a9:f5:19:57:94:2f:af:b5:e6:41:72:ee:6a:b1:34:16:
1d:7a:18:58:c7:0e:94:60:e0:8d:7d:db:96:63:8b:c3:95:0a:
cd:98:1c:19:6e:76:f2:18:86:77:31:61:51:cc:56:1c:3b:c3:
de:29:a2:9c:0c:1c:a3:d1:ea:76:4f:17:9c:b8:c0:94:2b:d4:
e1:bb:6e:b6:7f:d0:a5:58:c7:69:30:fb:52:90:fe:57:9e:a4:
a5:d6:10:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:09 2024 by rpki-client on console-fra.rpki-client.org