Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/MBpXU9EPfvy9rg2EJI78V_ky-Ng.roa
File: MBpXU9EPfvy9rg2EJI78V_ky-Ng.roa (raw, json)
Hash identifier: 1Xocut1PSV0swtThxvSCjLzWJCu/3eKvPzNQ8M77ChM=
Subject key identifier: 30:1A:57:53:D1:0F:7E:FC:BD:AE:0D:84:24:8E:FC:57:F9:32:F8:D8
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018D2B8F5B7FF1C3B96E8C24D2E026CC43A7
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/MBpXU9EPfvy9rg2EJI78V_ky-Ng.roa
Signing time: Sun 21 Jan 2024 10:27:11 +0000
ROA not before: Sun 21 Jan 2024 10:27:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 26042
IP address blocks: 194.76.168.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 18 Feb 2024 11:18:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:2b:8f:5b:7f:f1:c3:b9:6e:8c:24:d2:e0:26:cc:43:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 21 10:27:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=301a5753d10f7efcbdae0d84248efc57f932f8d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:3a:2b:da:33:ce:0f:37:a4:3c:79:24:b3:99:
91:63:f4:59:51:37:47:9f:ab:c3:a1:2f:c7:35:e5:
4b:ae:0e:be:df:56:0b:32:d1:e3:05:48:88:33:df:
25:e5:9f:ea:0c:55:1b:0b:85:5c:b3:03:f9:5c:12:
17:a1:a5:05:05:37:0c:87:d6:de:03:a5:85:85:06:
48:3a:3f:5f:e4:3a:d3:4c:0e:9b:5a:b6:ad:31:d8:
cf:98:22:52:4a:9f:36:37:fc:76:12:7d:bf:c1:d9:
ef:a6:8e:c7:09:62:ef:d4:a4:c8:ec:66:e6:a3:6d:
ec:ce:5c:04:3f:16:20:7a:53:d5:c3:68:a6:aa:cb:
e1:e3:69:b6:57:3e:12:da:5e:09:e9:18:82:d5:9f:
ee:c4:28:f5:ef:b1:2f:7e:d8:3a:62:f0:6b:7a:9c:
49:b5:92:a1:7e:d6:4e:a3:cf:c2:6f:f7:f9:39:2f:
10:b4:05:42:af:b1:60:c3:93:53:c6:cf:e6:5e:33:
3b:23:ba:62:d0:70:4a:86:a4:f9:c1:d9:a6:09:42:
65:f6:42:2b:8e:31:fb:0c:29:96:87:e2:be:5d:ac:
62:7c:58:a7:94:3d:e6:7e:1d:ac:65:04:a5:9b:6d:
5d:42:a7:fc:e0:62:43:36:7e:80:8d:37:3b:0a:df:
67:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:1A:57:53:D1:0F:7E:FC:BD:AE:0D:84:24:8E:FC:57:F9:32:F8:D8
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/MBpXU9EPfvy9rg2EJI78V_ky-Ng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.76.168.0/24
Signature Algorithm: sha256WithRSAEncryption
72:08:ae:b3:35:06:17:cd:e9:15:52:b0:21:93:76:d8:56:ca:
ca:cf:b6:51:15:f1:f8:4a:07:55:16:2a:69:b9:4c:8f:3a:8d:
bc:2a:91:de:60:07:b1:db:df:f6:93:57:cf:5d:20:29:33:a5:
fa:3d:0e:a9:8f:e0:ee:d7:4d:d0:08:07:31:38:e2:bd:f6:5d:
21:f2:5a:2b:d7:bc:51:61:8a:4c:f2:99:84:c6:b2:43:c1:22:
0d:72:88:f1:6c:aa:d5:58:d1:b0:61:10:de:63:a9:fd:78:47:
5c:1b:72:14:f1:ad:b9:2c:a7:b9:ac:b5:dc:c5:f0:a0:76:a6:
09:b5:ad:03:61:02:a6:ba:c7:7b:51:86:d2:e9:79:ab:d8:c0:
ea:5a:f1:f1:e3:f8:e4:cc:8c:33:72:ee:d6:22:d9:33:06:5d:
b4:e5:8a:ad:2d:24:68:c2:a9:a0:b7:e2:aa:b1:17:66:f0:55:
06:8b:64:c9:53:b9:fc:fc:73:0b:8c:b0:51:a4:63:7f:60:4a:
9b:87:f0:7c:e7:88:0e:69:89:6b:64:5d:52:8a:81:6d:57:4c:
9c:6a:a7:14:18:34:12:87:0b:4b:20:68:63:a4:3b:f4:47:26:
bf:1b:a4:d9:b4:49:eb:8c:b6:a8:6e:ca:f5:71:85:73:4f:f5:
fd:9a:3a:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:22 2024 by rpki-client on console-ams.rpki-client.org