Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/aMueFFLvInwHox4zm_4O5GZR6M8.roa
File: aMueFFLvInwHox4zm_4O5GZR6M8.roa (raw, json)
Hash identifier: qa6EP37Rs9lFhEjBHMoi1HkClqdnsnGl5UqBxkMlnJg=
Subject key identifier: 68:CB:9E:14:52:EF:22:7C:07:A3:1E:33:9B:FE:0E:E4:66:51:E8:CF
Certificate issuer: /CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Certificate serial: 018CC348C7563609EBD1DC1F0E4076DDFCA2
Authority key identifier: 9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/aMueFFLvInwHox4zm_4O5GZR6M8.roa
Signing time: Mon 01 Jan 2024 04:29:35 +0000
ROA not before: Mon 01 Jan 2024 04:29:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200645
IP address blocks: 185.177.232.0/22 maxlen: 22
5.202.208.0/20 maxlen: 20
Validation: Failed, certificate revoked on Sat 09 Mar 2024 07:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:c7:56:36:09:eb:d1:dc:1f:0e:40:76:dd:fc:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Validity
Not Before: Jan 1 04:29:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=68cb9e1452ef227c07a31e339bfe0ee46651e8cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:67:1d:f5:e8:12:79:c4:b1:a1:1a:4f:2f:dc:
39:57:c7:c2:4a:06:77:66:26:b7:40:7c:ed:cd:f9:
be:5e:04:0a:8d:8c:4d:27:19:ce:89:1c:1c:ef:ae:
c2:c1:d3:0d:30:7f:3a:80:6d:1a:4f:64:c1:b4:f9:
73:9b:f4:43:5b:5a:6f:4a:11:26:f6:e8:c7:2b:d7:
c8:ed:48:b2:03:c3:7c:1a:15:40:e5:bd:5d:ca:d4:
0b:04:39:13:f1:58:19:11:32:15:c9:59:72:5d:bb:
ba:cb:91:8a:a2:6d:58:2b:b4:61:92:78:a1:23:d9:
35:62:a2:f3:a3:a7:b4:1d:ce:bd:91:4a:a5:e8:8e:
0e:36:85:07:b9:8e:40:b2:b1:7d:c6:77:ab:f6:5d:
4b:57:1e:5c:64:78:5f:fe:91:d2:f1:67:4f:0a:a0:
43:b3:e9:81:1e:08:69:1b:d3:00:94:49:12:1e:e8:
65:fb:c0:4b:e3:1c:4a:22:38:d3:d4:e2:33:c7:a0:
b9:1a:0d:62:6d:10:f8:64:27:ce:72:5c:f6:4f:37:
f7:c9:06:b9:ab:d4:fb:c0:b6:1a:4c:fb:bc:e7:9d:
01:14:a3:0e:9d:9c:5a:58:93:01:37:df:a7:ad:f7:
81:31:b9:69:07:26:bf:df:92:34:ea:2d:de:0e:7c:
0d:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:CB:9E:14:52:EF:22:7C:07:A3:1E:33:9B:FE:0E:E4:66:51:E8:CF
X509v3 Authority Key Identifier:
keyid:9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/aMueFFLvInwHox4zm_4O5GZR6M8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.202.208.0/20
185.177.232.0/22
Signature Algorithm: sha256WithRSAEncryption
19:63:c8:57:3c:d4:9a:f9:4a:92:11:d0:95:23:bc:b5:56:1a:
29:18:58:eb:c5:a6:d0:4d:0c:08:fa:86:4b:30:1a:34:f0:8a:
25:59:04:f8:ba:df:52:8a:e2:a4:05:e6:07:cb:77:3f:22:77:
da:85:ec:25:6a:03:02:23:1f:31:2e:3d:2f:64:7e:35:72:9f:
e6:a9:df:bd:60:18:da:91:58:ec:da:c4:4a:a7:92:59:e7:99:
33:eb:7a:64:e3:db:d7:a0:9d:c5:8c:1f:d5:df:97:de:8e:cc:
33:c8:a2:d2:a3:d4:b7:58:6d:2d:d1:ea:d2:45:0b:ee:e5:b8:
7a:10:8f:f8:c8:ba:ae:85:9e:30:6f:6e:76:5f:e1:d5:ab:0b:
a9:24:33:09:01:0e:01:48:05:a4:46:75:7e:df:9d:fd:5f:ea:
96:27:88:e1:9e:00:07:aa:85:8a:f7:1c:2c:d8:c4:77:11:61:
13:81:f8:7a:68:19:e2:31:9d:3f:99:b3:ad:11:5e:22:1f:68:
2f:b2:26:cb:ac:e6:82:a6:38:69:8f:d1:ef:09:9c:f2:d2:94:
e9:d5:b4:9e:e0:8e:47:be:15:e8:fa:93:89:ad:80:85:e2:b4:
56:19:6a:a7:fa:d9:81:2f:0a:4f:79:4a:1a:4d:ce:e0:6b:f8:
07:94:02:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:33 2024 by rpki-client on console-ams.rpki-client.org