Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/mgdL_JOXdThPHldxaBUF-1Ndw_0.roa
File: mgdL_JOXdThPHldxaBUF-1Ndw_0.roa (raw, json)
Hash identifier: 9E3K+n0+fNLIzA0WCYXEX+4t/kIoatottHd4YndkMR4=
Subject key identifier: 9A:07:4B:FC:93:97:75:38:4F:1E:57:71:68:15:05:FB:53:5D:C3:FD
Certificate issuer: /CN=307a039502d46a6b9909110ce2ab1396877bd08e
Certificate serial: 018570F079BD04858B634575A434EB50C4F1
Authority key identifier: 30:7A:03:95:02:D4:6A:6B:99:09:11:0C:E2:AB:13:96:87:7B:D0:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MHoDlQLUamuZCREM4qsTlod70I4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/mgdL_JOXdThPHldxaBUF-1Ndw_0.roa
Signing time: Mon 02 Jan 2023 05:24:46 +0000
ROA not before: Mon 02 Jan 2023 05:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1764
IP address blocks: 194.45.144.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:f0:79:bd:04:85:8b:63:45:75:a4:34:eb:50:c4:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307a039502d46a6b9909110ce2ab1396877bd08e
Validity
Not Before: Jan 2 05:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9a074bfc939775384f1e5771681505fb535dc3fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:6f:06:39:33:68:4c:4e:c0:63:59:2c:e7:79:
2e:32:d9:97:a0:cb:98:73:ef:f6:3f:87:0d:3e:09:
50:1b:69:2d:22:e8:4b:ab:f6:c8:71:18:a8:ac:ae:
1b:2b:36:53:db:d1:09:fb:47:5e:45:b9:6e:36:e3:
b4:a1:59:e4:0b:dc:ca:a2:e7:bd:b9:6b:dc:66:8e:
6e:9d:77:6f:9b:5a:30:83:12:36:4b:d1:44:c8:f9:
7b:47:69:9a:5a:b4:eb:c8:ab:1f:ce:a6:e8:44:67:
22:aa:d7:4d:e2:a9:6a:af:93:78:73:df:8a:53:5d:
63:53:ed:bc:09:cc:95:0a:bf:23:a3:c6:0a:cb:89:
65:d1:b6:51:fd:50:eb:98:e2:fc:55:7a:8c:85:ff:
31:d4:79:a2:a6:ba:27:50:62:87:d9:e3:f0:66:eb:
13:4e:f4:08:a9:ac:e2:03:78:3d:4f:a8:85:f9:16:
6e:11:58:ac:b3:65:ec:cd:62:c0:16:cb:7d:de:46:
2d:d7:1e:7f:c7:f6:f3:52:72:55:72:66:c4:64:72:
02:61:d3:0d:68:f1:cc:d8:30:f8:32:93:73:9d:de:
32:d4:97:23:f1:ed:36:14:d4:6a:7f:83:86:10:a6:
8b:4e:91:05:d9:fb:ba:f7:cf:4c:b4:c5:ec:b4:44:
10:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:07:4B:FC:93:97:75:38:4F:1E:57:71:68:15:05:FB:53:5D:C3:FD
X509v3 Authority Key Identifier:
keyid:30:7A:03:95:02:D4:6A:6B:99:09:11:0C:E2:AB:13:96:87:7B:D0:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MHoDlQLUamuZCREM4qsTlod70I4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/mgdL_JOXdThPHldxaBUF-1Ndw_0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.45.144.0/21
Signature Algorithm: sha256WithRSAEncryption
64:27:ca:c2:15:4c:d5:79:35:f4:f2:d0:69:d1:d1:fc:81:6d:
83:42:f1:5c:d5:bf:aa:8e:d6:ef:73:91:0a:f1:0f:35:89:3e:
84:f0:16:88:39:c5:d9:a5:41:0d:e5:bc:64:3f:39:29:52:e4:
09:57:87:3c:7b:e3:ae:6c:38:25:eb:61:e2:47:09:c5:be:84:
2c:42:67:79:56:0c:14:e1:a5:e8:0c:c6:28:34:c1:29:43:c0:
f4:60:57:38:29:8d:92:a0:41:d7:2d:cf:96:c6:f5:62:b7:d3:
6e:ef:f6:ad:d2:45:7b:cf:47:b7:eb:96:82:0e:ca:bc:08:5f:
17:33:41:9b:f8:5b:c5:6f:98:dd:4c:fe:1b:e3:11:f8:79:7e:
0a:ab:26:73:e0:59:7e:a9:2c:eb:af:40:c2:7b:ee:1e:d2:04:
b4:c2:32:cb:75:30:65:aa:35:21:31:72:e1:1b:89:7a:17:fc:
44:61:16:06:0e:72:ee:da:7e:a7:02:cf:8b:53:b6:59:fb:6f:
46:36:3c:22:7b:62:04:0a:b8:5b:2c:a7:55:d3:6a:96:c3:c5:
fb:9c:5e:df:6f:eb:7b:ea:15:9a:55:e9:54:b9:96:ed:09:8c:
7b:6d:66:19:7f:0f:d5:26:bc:e8:9f:11:53:6f:46:f2:6f:2b:
b6:e8:b4:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:48 2024 by rpki-client on console-fra.rpki-client.org