Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/mOW6MGpMOL6bNhVSEn_UMY6H9Qg.roa
File: mOW6MGpMOL6bNhVSEn_UMY6H9Qg.roa (raw, json)
Hash identifier: rPVM38mN9y0vbpDC8JXr7BtUV+MgdPfphkiEvm1pK5o=
Subject key identifier: 98:E5:BA:30:6A:4C:38:BE:9B:36:15:52:12:7F:D4:31:8E:87:F5:08
Certificate issuer: /CN=b1af12f5ca75c922a4aa5dacb49c04a93237f4ed
Certificate serial: 01856C780BAC8C27D1827EB8C968A9BE0C5F
Authority key identifier: B1:AF:12:F5:CA:75:C9:22:A4:AA:5D:AC:B4:9C:04:A9:32:37:F4:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/mOW6MGpMOL6bNhVSEn_UMY6H9Qg.roa
Signing time: Sun 01 Jan 2023 08:34:44 +0000
ROA not before: Sun 01 Jan 2023 08:34:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25227
IP address blocks: 92.63.201.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:31:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:78:0b:ac:8c:27:d1:82:7e:b8:c9:68:a9:be:0c:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1af12f5ca75c922a4aa5dacb49c04a93237f4ed
Validity
Not Before: Jan 1 08:34:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=98e5ba306a4c38be9b361552127fd4318e87f508
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:99:68:b2:a6:4d:33:7c:17:75:44:c1:93:d2:
a6:1e:65:2c:e1:de:2d:12:ef:14:f9:60:32:e9:69:
0f:17:a6:99:fe:fc:14:50:69:55:0b:07:ef:0f:93:
f8:e9:46:df:8a:3c:36:b3:8c:55:74:93:9d:6a:81:
c0:3f:1c:8f:72:a3:04:81:88:b5:52:e0:4a:b3:ab:
b1:a2:40:29:6d:1a:e8:ac:dd:3e:fa:e8:82:53:0f:
83:b5:cb:80:19:5e:86:b7:54:3c:fa:53:13:c6:3d:
26:b4:e1:21:82:2e:41:ca:c2:65:47:db:e3:a6:0d:
9e:76:95:4a:d9:e0:c7:b9:08:d4:7f:dd:e6:78:aa:
8e:f1:05:97:60:1f:06:1f:12:46:3b:de:d3:17:f6:
7b:65:39:8f:ca:c0:d1:f5:fc:c7:a4:18:91:6e:72:
84:68:49:b5:68:74:37:4e:8f:8a:a3:ca:eb:fa:dd:
31:54:f8:09:68:f9:74:8c:a9:69:13:a0:9f:8b:41:
f4:47:2e:47:b4:28:f1:64:e9:06:81:0f:85:96:55:
c0:fb:70:c6:55:e2:cd:92:fe:41:6b:9b:2c:99:0c:
58:51:94:9f:fe:84:0e:27:72:b8:3c:4e:98:17:37:
26:49:23:70:bd:13:6a:91:52:ba:ef:0f:a4:86:68:
0d:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:E5:BA:30:6A:4C:38:BE:9B:36:15:52:12:7F:D4:31:8E:87:F5:08
X509v3 Authority Key Identifier:
keyid:B1:AF:12:F5:CA:75:C9:22:A4:AA:5D:AC:B4:9C:04:A9:32:37:F4:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/mOW6MGpMOL6bNhVSEn_UMY6H9Qg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/sa8S9cp1ySKkql2stJwEqTI39O0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.63.201.0/24
Signature Algorithm: sha256WithRSAEncryption
40:e6:74:80:83:8e:98:b9:41:93:62:32:93:73:27:b2:83:b0:
fd:e9:f6:c0:7a:f5:4a:ab:d7:0d:50:4a:eb:42:db:0c:82:72:
d7:de:6b:65:0b:0f:6f:f8:96:3d:8f:11:97:92:6b:c3:74:61:
68:1d:31:e3:f2:30:29:9f:35:40:47:3b:6c:66:9d:24:c2:1d:
12:89:bc:29:b9:a7:fe:46:af:fd:18:21:0d:d9:32:13:5f:5b:
9e:62:60:e0:12:f0:b4:a3:b7:76:19:82:a3:30:89:96:c4:26:
03:e6:46:05:ee:7e:dd:55:7e:f8:b8:e2:ce:9e:d0:73:55:2b:
00:16:a0:7a:83:84:6a:10:da:9c:6e:75:67:0a:ab:c6:ce:74:
5f:0a:66:2c:39:db:5b:33:73:4c:c7:b1:3f:56:2c:03:ce:f2:
92:ee:01:a8:29:e9:0b:63:40:3c:54:83:0f:c0:94:c8:5b:c6:
4c:ba:c4:e9:bb:51:d7:b0:37:2d:d6:22:58:92:6a:9a:06:06:
7b:09:f3:3a:2a:ce:bc:57:12:0e:29:0f:a5:9a:0b:4c:c2:56:
a2:38:70:05:8d:ef:10:5b:1c:9c:75:ba:59:28:48:d7:fb:88:
69:17:da:c5:19:66:11:8c:ac:ac:cf:d3:e6:2d:18:3b:83:1d:
f1:98:71:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:29 2024 by rpki-client on console-ams.rpki-client.org