Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/5f2e31-9ad6-438e-ad7c-e3e0c2dbf067/1/mMkpqp5D0w8Yt_OZLXYS_H4vlVI.roa
File: mMkpqp5D0w8Yt_OZLXYS_H4vlVI.roa (raw, json)
Hash identifier: 6vxiL9dUln5DPFEKE0SVH9shpRZpExTzDLI/UThRVro=
Subject key identifier: 98:C9:29:AA:9E:43:D3:0F:18:B7:F3:99:2D:76:12:FC:7E:2F:95:52
Certificate issuer: /CN=04aaff87f6dc0d3699bc2937a34dc717f94f007e
Certificate serial: 0191DB3B671065BAAE4FEB876116A52AE85A
Authority key identifier: 04:AA:FF:87:F6:DC:0D:36:99:BC:29:37:A3:4D:C7:17:F9:4F:00:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BKr_h_bcDTaZvCk3o03HF_lPAH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/5f2e31-9ad6-438e-ad7c-e3e0c2dbf067/1/mMkpqp5D0w8Yt_OZLXYS_H4vlVI.roa
Signing time: Tue 10 Sep 2024 09:19:48 +0000
ROA not before: Tue 10 Sep 2024 09:19:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24771
IP address blocks: 151.88.0.0/16 maxlen: 16
151.92.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Wed 16 Oct 2024 09:23:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:db:3b:67:10:65:ba:ae:4f:eb:87:61:16:a5:2a:e8:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04aaff87f6dc0d3699bc2937a34dc717f94f007e
Validity
Not Before: Sep 10 09:19:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=98c929aa9e43d30f18b7f3992d7612fc7e2f9552
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:26:73:68:f6:ad:f3:04:12:2b:94:cd:68:1c:
8f:bd:8c:e0:c7:b3:f6:5a:28:84:d3:c2:ea:5c:b3:
3f:86:c5:82:13:0b:98:ae:e1:01:7e:9b:3a:02:1b:
7b:cb:e3:4b:b6:24:1c:61:80:ef:67:ea:ba:0e:58:
da:58:8d:04:5e:9d:7b:16:73:77:70:af:d6:61:e8:
64:23:78:83:34:88:c6:60:f5:91:0f:37:a1:db:aa:
3b:44:d0:f8:88:d9:00:68:55:80:ec:5b:e2:8b:f8:
57:16:d8:23:f1:46:86:9a:f6:ee:4a:9b:4d:7f:0d:
ea:8f:8c:a3:c9:30:77:cb:80:a3:4c:af:d5:47:db:
d6:70:56:12:3a:f0:dd:43:4a:1b:c7:a6:a5:26:94:
fc:f2:37:2c:a2:37:b9:f0:ba:92:20:cb:d5:49:f6:
d8:34:d9:cc:5d:32:df:b6:ab:b8:19:1b:3d:c0:72:
14:a4:eb:da:35:8a:db:1a:48:d0:a6:91:35:2b:d9:
c0:b6:02:42:25:bf:bf:5d:c4:74:28:cd:f0:f6:b3:
7f:a4:6f:f9:bc:d8:6e:27:c8:ee:70:7a:2d:08:a0:
6f:1b:3a:79:f7:8c:24:a1:be:cb:8b:d5:ee:b0:5b:
e3:5e:84:48:b2:d7:19:1d:07:af:06:49:44:8a:67:
2f:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:C9:29:AA:9E:43:D3:0F:18:B7:F3:99:2D:76:12:FC:7E:2F:95:52
X509v3 Authority Key Identifier:
keyid:04:AA:FF:87:F6:DC:0D:36:99:BC:29:37:A3:4D:C7:17:F9:4F:00:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BKr_h_bcDTaZvCk3o03HF_lPAH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/5f2e31-9ad6-438e-ad7c-e3e0c2dbf067/1/mMkpqp5D0w8Yt_OZLXYS_H4vlVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/5f2e31-9ad6-438e-ad7c-e3e0c2dbf067/1/BKr_h_bcDTaZvCk3o03HF_lPAH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.88.0.0/16
151.92.0.0/16
Signature Algorithm: sha256WithRSAEncryption
af:9c:d4:e7:b1:49:79:63:0b:76:82:f3:ac:9d:97:84:14:41:
fc:48:d9:82:5e:1a:64:18:33:10:10:2a:f5:f8:bd:fb:c6:a7:
3c:44:09:0a:09:ac:93:ea:5b:11:bd:0c:d0:4c:74:88:48:22:
cd:40:fd:c7:e8:08:00:96:f4:f7:02:aa:6d:99:ec:63:6f:aa:
20:de:6b:7d:c1:0e:2c:24:2c:68:66:00:f7:6d:78:c9:fc:74:
3c:85:68:a5:e6:49:d4:b1:ab:99:bd:fc:c6:b8:c5:93:f1:3b:
26:c5:64:8b:73:07:81:21:32:84:68:14:66:44:c2:33:cd:3b:
23:ba:48:77:20:b1:5f:c6:89:88:63:ed:aa:1f:50:c5:42:5c:
e1:70:61:1a:1f:98:de:93:94:a5:28:51:27:d7:b7:66:2e:50:
f9:45:1a:6e:87:88:31:45:13:d4:6f:9e:85:d5:7f:d9:c1:a0:
dd:5c:d9:26:7c:78:46:ba:2b:ca:06:93:57:2d:40:05:68:33:
94:05:58:fc:91:d4:64:15:16:0a:73:b3:a7:43:d7:41:13:90:
c4:8e:50:3d:6d:83:3a:94:2d:a6:9c:8d:a3:11:02:1a:1a:18:
cc:24:e3:ab:e2:58:f6:57:9c:19:c1:34:18:f8:1f:3e:d1:82:
a8:9c:ef:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 16 12:02:05 2024 by rpki-client on console-fra.rpki-client.org