Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/mgJKZsu2cVYMbiC0A4KrDEe9nG8.roa
File: mgJKZsu2cVYMbiC0A4KrDEe9nG8.roa (raw, json)
Hash identifier: 9PDrSNDIheH2EbPurJcYGI3Hkeu50CWG9XwGXq3vBM0=
Subject key identifier: 9A:02:4A:66:CB:B6:71:56:0C:6E:20:B4:03:82:AB:0C:47:BD:9C:6F
Certificate issuer: /CN=cec5afe769b94346e1cd362eb85f875b23b17277
Certificate serial: 0190C9C7367041AE47D01B32365BF5DEAACD
Authority key identifier: CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/mgJKZsu2cVYMbiC0A4KrDEe9nG8.roa
Signing time: Fri 19 Jul 2024 06:56:34 +0000
ROA not before: Fri 19 Jul 2024 06:56:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 152179
IP address blocks: 80.83.88.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:52:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:c9:c7:36:70:41:ae:47:d0:1b:32:36:5b:f5:de:aa:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cec5afe769b94346e1cd362eb85f875b23b17277
Validity
Not Before: Jul 19 06:56:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9a024a66cbb671560c6e20b40382ab0c47bd9c6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:81:d4:65:95:23:ad:6e:a5:78:2a:8c:a3:64:
d3:48:94:39:18:eb:8e:79:24:0f:72:bd:b4:59:60:
92:fc:c8:14:93:80:cc:34:42:fb:f2:0c:9f:3c:d6:
18:49:93:20:1d:7c:2a:c1:ad:ee:5b:f0:e1:46:1b:
9c:37:1c:2b:5d:e1:01:f8:18:58:73:c3:fe:89:07:
ba:f8:56:03:db:5f:92:ef:df:b3:50:94:47:22:65:
f0:15:ae:37:0e:74:72:8f:40:ee:a3:94:f7:65:fe:
6f:c1:3e:3a:d4:dc:f2:32:19:bf:df:8a:37:1b:a4:
36:1d:cc:0d:ea:c4:2b:cf:b7:2c:1f:f4:b6:54:49:
4e:8a:8a:60:46:f3:e3:94:c5:dc:ca:c7:df:a9:9c:
29:3d:9e:b5:bb:a3:2a:c4:6f:75:7f:7f:45:08:be:
a9:88:48:3d:b8:a5:78:d6:18:50:c5:e7:9f:b0:61:
be:2d:cf:26:43:80:90:b5:49:b8:93:b7:e7:78:e3:
c7:a2:2a:d0:86:5d:04:bb:89:e3:20:5b:77:17:e2:
8b:21:cb:9d:d3:3a:c8:7a:07:4d:79:df:70:da:5f:
3a:e8:4f:e5:90:f1:7d:80:ce:32:17:e7:4e:99:df:
c2:44:80:a4:3e:f6:6d:b7:c8:4e:24:12:14:ef:39:
0e:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:02:4A:66:CB:B6:71:56:0C:6E:20:B4:03:82:AB:0C:47:BD:9C:6F
X509v3 Authority Key Identifier:
keyid:CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/mgJKZsu2cVYMbiC0A4KrDEe9nG8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/zsWv52m5Q0bhzTYuuF-HWyOxcnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.83.88.0/23
Signature Algorithm: sha256WithRSAEncryption
50:22:66:47:ef:37:4c:d8:a7:bf:43:e3:41:b9:e6:67:64:89:
8c:d7:c0:fc:fe:3a:5f:15:93:68:bb:9f:be:29:b8:8f:3d:24:
e6:02:10:6d:c5:a9:cf:64:eb:d3:47:9a:78:9b:42:fe:60:fb:
17:f2:71:7e:d9:a0:c9:c9:b3:66:40:69:44:86:85:19:25:50:
ee:f3:a8:02:f3:de:9b:98:73:75:48:6c:28:e7:08:09:7c:81:
1d:a9:79:5a:7e:d0:9f:09:05:06:aa:63:5e:fd:65:8d:0f:bd:
45:95:c8:89:31:bd:ce:42:d2:c6:57:31:c2:71:3c:1b:c6:41:
0b:5f:42:cb:a2:22:b6:3b:20:18:ce:64:36:e0:2f:ce:79:49:
9a:52:3a:a9:64:de:89:a7:1b:3a:70:cc:06:f1:02:c1:c4:d6:
b7:8c:ed:7b:d5:89:f7:93:66:29:e3:fb:e9:75:1c:29:1f:ac:
07:80:b3:2f:83:25:a3:83:be:5e:d0:80:14:fb:a2:66:e1:f7:
57:4a:2b:25:c4:4e:b0:64:e3:4b:06:ab:d8:98:8e:d6:53:cc:
54:b2:db:5b:bc:d7:45:14:c1:7b:3b:73:dc:00:e3:10:ef:e4:
62:c2:c8:1f:e7:ea:0d:c4:96:ea:66:57:88:e8:b3:1b:36:52:
0d:60:c9:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:40:21 2025 by rpki-client