Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/a8ecfb-7355-4cfe-84bf-b776a220456b/1/mGdU2-i72D6NYx_E3pkHAuglV0E.roa
File: mGdU2-i72D6NYx_E3pkHAuglV0E.roa (raw, json)
Hash identifier: sPGV9f7W4oTBTxd9Lanox2b7+zS2HMcufQ0zd1e7l54=
Subject key identifier: 98:67:54:DB:E8:BB:D8:3E:8D:63:1F:C4:DE:99:07:02:E8:25:57:41
Certificate issuer: /CN=2ff6182beb7b82c8573df8b6d51044d6c6724e82
Certificate serial: 0192013E8A56BB04D838F5B37E1AC68828B7
Authority key identifier: 2F:F6:18:2B:EB:7B:82:C8:57:3D:F8:B6:D5:10:44:D6:C6:72:4E:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L_YYK-t7gshXPfi21RBE1sZyToI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/a8ecfb-7355-4cfe-84bf-b776a220456b/1/mGdU2-i72D6NYx_E3pkHAuglV0E.roa
Signing time: Tue 17 Sep 2024 18:28:48 +0000
ROA not before: Tue 17 Sep 2024 18:28:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 174
IP address blocks: 91.198.95.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 27 Sep 2024 18:36:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:01:3e:8a:56:bb:04:d8:38:f5:b3:7e:1a:c6:88:28:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ff6182beb7b82c8573df8b6d51044d6c6724e82
Validity
Not Before: Sep 17 18:28:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=986754dbe8bbd83e8d631fc4de990702e8255741
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:18:0d:cc:01:55:1c:c5:06:7e:1c:c5:26:b8:
79:74:53:a1:e3:1f:88:2e:18:a1:fe:88:ef:ad:59:
a1:97:af:69:5b:e0:ba:f0:14:d2:b2:c5:3f:37:ea:
b5:07:77:6f:1a:b8:6a:5f:d8:71:f8:8c:00:e6:1a:
2d:5a:6f:37:62:31:0c:27:ef:b2:d2:c7:07:b5:d8:
e7:1d:f3:57:65:6f:0f:c3:c1:ff:61:4f:3d:93:46:
5b:f9:5d:e0:75:99:d0:88:85:b3:be:b7:63:16:a1:
77:28:dc:7b:05:0d:dc:27:b2:cd:98:b0:e5:d7:d9:
f7:4d:d6:71:5a:0d:f2:08:a1:73:a1:87:f3:15:02:
98:7d:61:f4:cf:38:e7:81:18:a5:73:ef:bd:80:da:
a5:0b:6d:1a:2d:31:3e:24:90:47:35:5c:24:55:43:
d3:5d:59:12:35:92:1a:3a:d6:c6:1d:00:11:88:4b:
5c:10:09:4e:85:7d:6c:dc:7d:62:e3:8b:14:0f:30:
ff:05:d0:fe:9c:1f:02:92:51:a7:a8:20:01:f0:b5:
db:59:28:2b:7c:e3:88:12:c7:e0:9e:5e:ab:cd:43:
e1:a5:76:dd:0f:9a:3c:d2:d9:ec:15:3a:67:f7:d8:
13:4d:e8:3f:96:f8:79:82:87:a4:25:ee:f5:40:87:
5e:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:67:54:DB:E8:BB:D8:3E:8D:63:1F:C4:DE:99:07:02:E8:25:57:41
X509v3 Authority Key Identifier:
keyid:2F:F6:18:2B:EB:7B:82:C8:57:3D:F8:B6:D5:10:44:D6:C6:72:4E:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L_YYK-t7gshXPfi21RBE1sZyToI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/a8ecfb-7355-4cfe-84bf-b776a220456b/1/mGdU2-i72D6NYx_E3pkHAuglV0E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/a8ecfb-7355-4cfe-84bf-b776a220456b/1/L_YYK-t7gshXPfi21RBE1sZyToI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.95.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:8f:92:c2:cb:54:40:20:fd:3d:7d:c7:dd:63:c3:19:9d:7d:
75:8d:7b:06:25:a6:52:03:0f:42:74:22:57:ee:e6:d1:6a:34:
c8:4d:68:df:5f:bd:57:16:72:a9:d5:c5:ce:e7:27:57:58:54:
7a:d3:68:de:0e:a0:39:2f:9a:f2:4b:08:c6:b9:30:01:e2:46:
a7:7c:1f:65:6b:fd:42:5e:b3:7d:34:95:26:32:28:3c:f5:b7:
2d:ba:99:6a:c3:20:e7:a7:94:0d:21:a2:76:12:ab:1d:b4:32:
81:89:74:7c:33:51:20:46:29:f2:a0:95:45:59:45:85:ac:a3:
25:3c:67:4a:78:c5:2a:c0:22:5a:2b:79:a5:a1:e5:83:e3:6b:
1f:d6:25:ca:c9:c8:93:af:13:b0:b2:75:f1:ed:3e:41:8f:f7:
88:73:9c:fc:e2:c6:82:18:d5:42:de:3e:c3:2b:81:da:41:dd:
ab:f3:f1:77:1b:a2:72:6b:91:17:91:60:6c:56:1c:ec:80:a2:
74:bb:27:48:bb:d2:cf:5d:07:05:53:69:4d:83:14:9f:ca:01:
85:7d:dc:68:b3:6d:de:7e:ff:7b:d7:8f:b4:fd:ab:87:02:57:
ce:fc:c3:93:77:c2:d2:94:d5:8b:54:4d:19:5e:a3:95:e4:4f:
39:7b:db:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:43:48 2025 by rpki-client