Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/MCE1MgPdQJmxbE_cGuAqpiwpCKA.roa
File: MCE1MgPdQJmxbE_cGuAqpiwpCKA.roa (raw, json)
Hash identifier: v2o+4CxfXAKCrbRm0mICkivlmJiXMIUdiRYoSO5+mSU=
Subject key identifier: 30:21:35:32:03:DD:40:99:B1:6C:4F:DC:1A:E0:2A:A6:2C:29:08:A0
Certificate issuer: /CN=117f9d55826b42486dfc84d35c1a63a5ce87507c
Certificate serial: 01889C0A78DB5FA0F33F519F7FC09DE80DA7
Authority key identifier: 11:7F:9D:55:82:6B:42:48:6D:FC:84:D3:5C:1A:63:A5:CE:87:50:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EX-dVYJrQkht_ITTXBpjpc6HUHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/MCE1MgPdQJmxbE_cGuAqpiwpCKA.roa
Signing time: Thu 08 Jun 2023 17:25:11 +0000
ROA not before: Thu 08 Jun 2023 17:25:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52000
IP address blocks: 194.59.186.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 08 Jun 2023 17:37:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9c:0a:78:db:5f:a0:f3:3f:51:9f:7f:c0:9d:e8:0d:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=117f9d55826b42486dfc84d35c1a63a5ce87507c
Validity
Not Before: Jun 8 17:25:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3021353203dd4099b16c4fdc1ae02aa62c2908a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:7e:bc:62:93:71:a8:b8:c7:6b:31:39:88:3b:
ed:0b:73:75:72:41:ff:c3:e5:ab:07:05:f1:b1:2f:
0c:5e:1a:8e:02:21:59:29:09:60:62:21:7e:2f:27:
24:b2:14:45:f7:21:57:87:68:2b:55:13:fc:9f:e3:
d7:16:a8:e0:34:1f:39:8e:13:4c:fb:9e:84:2e:6c:
f7:ee:99:1a:00:40:dc:8a:f0:9d:86:d6:72:9a:ca:
ce:01:98:f5:20:7a:87:8f:90:88:b4:f5:7e:12:da:
e8:26:5a:4a:70:3e:dc:31:56:9c:4d:59:2e:c9:77:
40:23:d5:67:c7:0c:37:a8:0b:dc:18:a4:4c:98:84:
ac:ae:c5:19:59:c9:52:fd:e6:8c:66:34:ff:82:db:
08:f1:78:2e:6a:28:c1:89:9e:b8:05:54:63:50:b4:
21:51:93:a8:86:7e:4f:6e:80:79:ac:36:9f:dd:e5:
cb:b2:e7:a4:3b:bc:a1:41:15:be:06:7c:90:d1:db:
aa:48:59:5c:48:9b:06:bd:8c:60:e4:0a:73:96:89:
e9:8a:af:2c:49:ec:1b:6a:c6:1c:f7:d2:44:ea:b7:
22:b2:cf:31:1a:1f:05:c7:66:2d:e9:a2:4b:4e:a5:
ab:37:c5:59:4f:e6:46:69:0b:ea:d5:ad:dc:a7:60:
b2:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:21:35:32:03:DD:40:99:B1:6C:4F:DC:1A:E0:2A:A6:2C:29:08:A0
X509v3 Authority Key Identifier:
keyid:11:7F:9D:55:82:6B:42:48:6D:FC:84:D3:5C:1A:63:A5:CE:87:50:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EX-dVYJrQkht_ITTXBpjpc6HUHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/MCE1MgPdQJmxbE_cGuAqpiwpCKA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/EX-dVYJrQkht_ITTXBpjpc6HUHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.59.186.0/24
Signature Algorithm: sha256WithRSAEncryption
27:6f:4e:c8:37:2e:98:31:f6:0a:6e:37:3d:78:18:b8:39:ce:
52:67:a6:10:1a:47:01:8e:a7:1f:fd:a4:87:74:c9:46:d3:ce:
1b:39:0e:61:a5:a1:a5:e3:5e:e5:3f:4b:aa:ba:9b:06:26:b1:
14:8b:8d:7c:74:76:53:41:f2:0d:a0:3b:b1:65:aa:97:3d:b9:
79:10:35:52:39:fc:74:9b:8d:ad:06:7c:6c:7c:37:5f:30:9e:
68:58:94:10:8d:c3:60:98:1c:dd:e2:a4:13:d3:72:f1:48:4d:
6b:de:71:3b:b7:08:df:ba:b0:3a:bb:23:0b:9a:21:d6:97:59:
f5:ef:b9:4e:31:8e:b0:71:9c:2d:11:10:10:10:42:88:ba:75:
8b:9e:f2:0b:07:99:27:c8:34:73:c5:3d:9c:84:e3:ef:66:b6:
f8:3f:31:63:5f:2a:21:63:de:d6:0f:ff:26:69:ca:c3:aa:73:
b5:26:ba:37:62:c5:dc:2e:f4:e5:99:7f:f2:66:6f:7e:b0:bb:
ec:a5:24:7e:61:97:71:ef:65:56:4b:b3:80:ff:04:0c:f8:3f:
c7:07:a1:4a:96:73:97:42:c7:4a:b8:43:2d:54:cd:30:d4:fa:
56:2e:76:22:c7:b0:22:c1:34:06:6d:3e:82:4a:67:cb:4a:40:
20:6c:dc:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:16 2024 by rpki-client on console-ams.rpki-client.org