Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/e09181-2643-414c-8fbe-1e5e430dd711/1/mOMoG11SxVmPJGZbjF2bhmaU2tY.roa
File: mOMoG11SxVmPJGZbjF2bhmaU2tY.roa (raw, json)
Hash identifier: RU4U13Ll2y7vwMOHfR4BbiLeA793mzXCWLcvyc7ixuU=
Subject key identifier: 98:E3:28:1B:5D:52:C5:59:8F:24:66:5B:8C:5D:9B:86:66:94:DA:D6
Certificate issuer: /CN=83479514959397c5e3fa76e1ea495e8e1f6c319b
Certificate serial: 01931F9924595A448346DEA798F099CD6A72
Authority key identifier: 83:47:95:14:95:93:97:C5:E3:FA:76:E1:EA:49:5E:8E:1F:6C:31:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g0eVFJWTl8Xj-nbh6klejh9sMZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/e09181-2643-414c-8fbe-1e5e430dd711/1/mOMoG11SxVmPJGZbjF2bhmaU2tY.roa
Signing time: Tue 12 Nov 2024 08:59:10 +0000
ROA not before: Tue 12 Nov 2024 08:59:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16221
IP address blocks: 217.118.206.0/23 maxlen: 24
2a07:600::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 02 Jan 2025 01:47:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:1f:99:24:59:5a:44:83:46:de:a7:98:f0:99:cd:6a:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83479514959397c5e3fa76e1ea495e8e1f6c319b
Validity
Not Before: Nov 12 08:59:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=98e3281b5d52c5598f24665b8c5d9b866694dad6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:e5:50:87:cf:1c:9f:0c:fc:80:29:f7:1e:ef:
a9:36:27:29:15:cb:85:12:54:b5:de:21:f2:b7:64:
cf:2c:42:58:7b:31:72:e7:ab:c8:92:c2:31:53:00:
a0:86:f2:f3:dc:86:ea:fe:b9:32:90:03:00:62:a1:
35:a2:25:bb:f9:94:2a:97:46:79:61:90:fb:c7:d1:
ba:cd:80:5b:2f:59:90:b5:2f:13:dd:00:b3:8f:e4:
15:a6:e2:7a:4c:82:3e:fd:fb:ce:c1:01:0b:3e:fe:
36:01:30:e7:37:d4:e1:eb:4f:f3:b4:ad:19:0f:9b:
cc:aa:0c:95:c6:68:95:f0:a7:32:f1:a7:20:6b:73:
6e:22:17:f2:c8:1a:67:00:e4:bf:97:06:fa:05:bf:
e4:79:1f:08:02:d9:b9:98:bf:50:7e:bb:63:42:67:
c0:a7:e7:cc:5a:08:ab:50:14:e0:c9:14:26:e9:c5:
ee:1a:ad:b0:b1:0f:d0:94:e8:b7:82:83:56:f0:2e:
c7:9b:c7:5d:22:12:23:0a:e9:34:95:d5:30:cc:f3:
79:92:ef:a7:41:a6:85:17:c6:b7:d3:55:9a:95:86:
22:17:19:cf:ee:3d:af:39:94:bd:f0:ad:00:22:09:
2f:1d:84:e9:bd:b0:f4:60:a9:bf:f7:78:3d:a9:e8:
e9:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:E3:28:1B:5D:52:C5:59:8F:24:66:5B:8C:5D:9B:86:66:94:DA:D6
X509v3 Authority Key Identifier:
keyid:83:47:95:14:95:93:97:C5:E3:FA:76:E1:EA:49:5E:8E:1F:6C:31:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g0eVFJWTl8Xj-nbh6klejh9sMZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/e09181-2643-414c-8fbe-1e5e430dd711/1/mOMoG11SxVmPJGZbjF2bhmaU2tY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/e09181-2643-414c-8fbe-1e5e430dd711/1/g0eVFJWTl8Xj-nbh6klejh9sMZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.118.206.0/23
IPv6:
2a07:600::/32
Signature Algorithm: sha256WithRSAEncryption
64:56:a6:cb:23:46:ec:8b:87:b0:13:e8:50:62:5e:86:54:45:
eb:1e:b0:46:13:ce:e6:36:81:1b:c0:24:09:41:b2:aa:64:f8:
b6:7d:82:ba:1d:b8:ef:d3:63:63:95:42:20:b4:77:74:39:51:
b8:d5:4f:4d:0b:04:cc:80:24:be:8b:34:3a:ab:04:66:1a:94:
62:ab:2f:fd:12:5a:61:6c:9a:8c:05:db:44:d7:22:42:c3:f2:
d3:aa:ef:59:d8:26:9e:a9:ad:ae:49:41:02:7e:5d:4f:07:4c:
14:27:23:9a:b6:59:b6:d8:c9:5e:04:0d:ae:32:68:44:2e:00:
2e:4c:9f:64:a5:fa:24:b2:86:79:fe:a9:f8:ab:ee:29:65:4e:
4b:5f:34:2d:2e:71:54:25:18:32:f3:3f:17:62:e0:84:09:ce:
71:e3:91:bd:27:e0:67:d6:2d:48:d4:73:79:ac:1d:d0:55:d5:
cb:4f:a4:ac:8f:86:43:3f:d6:2f:2c:7d:10:6a:28:be:19:9c:
3c:a2:32:57:d1:f8:58:26:c4:d2:1c:08:c5:8c:16:7c:33:e1:
78:94:2c:e5:44:61:b4:68:aa:06:1d:a2:19:7e:b5:17:d8:c0:
a6:bb:f2:54:97:f8:f4:96:a4:45:bb:e0:f1:c6:ae:32:65:64:
da:4a:11:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:26:38 2025 by rpki-client