Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/a05e77-f301-4125-9118-e4d1f0a27b21/1/0mhkGqxWaFXxOoFqp6XFAgAiQPk.roa
File: 0mhkGqxWaFXxOoFqp6XFAgAiQPk.roa (raw, json)
Hash identifier: tQmqlKfpIiEmLIWvq8mldUDa7dJJN8SkwGdE4CClVBE=
Subject key identifier: D2:68:64:1A:AC:56:68:55:F1:3A:81:6A:A7:A5:C5:02:00:22:40:F9
Certificate issuer: /CN=cced992030531e7e8b518aefd9e267cc528eda9a
Certificate serial: 01856FCB84C833A6F664A68243532307050F
Authority key identifier: CC:ED:99:20:30:53:1E:7E:8B:51:8A:EF:D9:E2:67:CC:52:8E:DA:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zO2ZIDBTHn6LUYrv2eJnzFKO2po.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/a05e77-f301-4125-9118-e4d1f0a27b21/1/0mhkGqxWaFXxOoFqp6XFAgAiQPk.roa
Signing time: Mon 02 Jan 2023 00:04:46 +0000
ROA not before: Mon 02 Jan 2023 00:04:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209260
IP address blocks: 195.170.163.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 16 Jul 2023 05:13:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:cb:84:c8:33:a6:f6:64:a6:82:43:53:23:07:05:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cced992030531e7e8b518aefd9e267cc528eda9a
Validity
Not Before: Jan 2 00:04:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d268641aac566855f13a816aa7a5c502002240f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:44:e6:52:e2:23:8e:c7:e0:f8:93:d8:08:53:
b2:fe:57:4e:43:f7:60:de:18:e8:8c:f3:77:2e:70:
b2:1f:84:b5:e3:84:60:6a:48:5f:eb:b4:6a:2a:7d:
1e:50:78:12:cd:9c:d5:52:fb:95:e7:4b:65:03:df:
54:be:60:b3:ba:6b:65:fe:f4:37:1e:29:e2:0a:6b:
6f:f6:f0:91:de:1c:58:db:ce:60:ef:0b:82:82:06:
46:16:ec:c3:a3:4f:e7:b7:c4:f3:4a:d5:f1:14:00:
c2:c0:07:f8:3d:2e:fb:6c:fd:2e:eb:74:7a:c8:4b:
42:52:74:63:ea:12:06:a8:17:9e:b2:90:3a:d9:11:
21:1f:c2:b7:6c:74:b3:b1:d3:d1:e0:8b:d6:71:9e:
fb:09:eb:2f:91:4c:19:29:14:e7:6f:62:21:92:73:
80:1b:75:18:9d:95:4c:19:93:ee:c8:91:e5:a1:8c:
9f:50:9a:75:54:5f:06:4b:31:dd:bc:14:9d:3f:52:
31:8e:66:a4:69:14:08:97:02:48:aa:a9:b5:f8:55:
61:84:da:ea:40:d9:fe:24:5c:81:b4:c9:c1:4e:93:
8c:8d:e9:84:bb:7d:55:9a:d7:2c:42:74:49:65:dc:
67:78:eb:9f:38:bd:7c:95:e8:f5:f0:75:8b:eb:6c:
ae:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:68:64:1A:AC:56:68:55:F1:3A:81:6A:A7:A5:C5:02:00:22:40:F9
X509v3 Authority Key Identifier:
keyid:CC:ED:99:20:30:53:1E:7E:8B:51:8A:EF:D9:E2:67:CC:52:8E:DA:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zO2ZIDBTHn6LUYrv2eJnzFKO2po.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/a05e77-f301-4125-9118-e4d1f0a27b21/1/0mhkGqxWaFXxOoFqp6XFAgAiQPk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/a05e77-f301-4125-9118-e4d1f0a27b21/1/zO2ZIDBTHn6LUYrv2eJnzFKO2po.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.170.163.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:ec:73:69:29:f6:77:37:f1:92:31:8f:63:7b:3e:b2:f6:bc:
5f:d6:c4:ef:7e:5e:e5:2a:01:40:8b:f1:f3:7e:60:f4:c3:42:
1b:79:6c:0d:69:28:68:54:00:6d:48:05:03:58:57:9f:fb:3d:
c8:23:ea:4f:f9:a1:e3:77:c6:20:a7:6b:13:6d:6d:52:6a:94:
bf:d4:98:be:93:37:81:fc:b5:cb:ec:d5:69:6e:8b:3c:6a:6a:
ce:50:93:d6:23:56:33:f7:92:93:3e:a4:d3:20:d3:b8:4b:53:
b5:0c:77:af:88:26:67:1e:7f:3d:c4:bd:95:90:39:77:8c:bb:
2c:f7:c9:0c:6a:c7:f8:c4:8a:bc:05:ba:79:c4:d2:75:c9:65:
71:ad:46:48:9c:e3:5f:36:9e:47:55:e1:3c:46:51:52:32:34:
cc:55:36:06:d3:64:a4:18:c8:80:5c:48:ad:36:a1:93:b9:03:
33:55:3b:a4:36:4f:2f:7e:fd:ab:33:97:0c:12:fa:ad:2d:37:
52:90:b9:b3:ab:28:61:b9:85:b7:0b:07:b6:32:5f:70:89:90:
cc:6f:a3:04:c7:9b:f1:ce:bb:f6:d9:e3:ec:5d:73:62:5c:de:
d4:96:55:ba:34:90:e1:37:9c:99:bc:14:17:67:45:b0:92:8e:
ad:32:98:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:47 2024 by rpki-client on console-ams.rpki-client.org