Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/945dbd-2fb7-4dd1-96a6-0585de4d4ee7/1/mcLtj1V6aaXqcSsJCo78MZYgMhY.roa
File: mcLtj1V6aaXqcSsJCo78MZYgMhY.roa (raw, json)
Hash identifier: XGknukIUhBbSXaYky0MzKOtgsmdoa7J9UMrEV6GFcio=
Subject key identifier: 99:C2:ED:8F:55:7A:69:A5:EA:71:2B:09:0A:8E:FC:31:96:20:32:16
Certificate issuer: /CN=44007172df9fc2d4a2ddbba934cebc9f0286d3ca
Certificate serial: 01856CA5CF24CAC3AE5FFAE10D22318C766A
Authority key identifier: 44:00:71:72:DF:9F:C2:D4:A2:DD:BB:A9:34:CE:BC:9F:02:86:D3:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RABxct-fwtSi3bupNM68nwKG08o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/945dbd-2fb7-4dd1-96a6-0585de4d4ee7/1/mcLtj1V6aaXqcSsJCo78MZYgMhY.roa
Signing time: Sun 01 Jan 2023 09:24:43 +0000
ROA not before: Sun 01 Jan 2023 09:24:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206898
IP address blocks: 185.83.215.0/24 maxlen: 24
2a05:9f06::/31 maxlen: 31
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:30:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:a5:cf:24:ca:c3:ae:5f:fa:e1:0d:22:31:8c:76:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44007172df9fc2d4a2ddbba934cebc9f0286d3ca
Validity
Not Before: Jan 1 09:24:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=99c2ed8f557a69a5ea712b090a8efc3196203216
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:69:a0:33:60:ee:97:8d:92:85:80:a8:4b:ba:
c6:9d:db:27:fa:5c:74:e5:6a:6a:d6:61:9c:89:f4:
55:a9:c6:18:5e:d9:b5:6d:a5:0d:3a:e2:e9:9b:92:
32:c5:79:ce:a9:75:97:2f:2a:f9:77:65:cd:0a:21:
56:b2:65:09:54:be:98:b5:31:44:fa:11:d2:b9:f5:
dd:b7:99:a1:4c:cb:ca:3b:65:cd:b1:ae:cf:3a:2c:
29:5a:8a:dc:77:6d:fb:1a:b2:94:b4:c1:41:16:8d:
e1:26:82:6f:bc:ae:e0:cb:1c:f2:af:20:4c:93:1f:
e4:96:8f:c8:87:c1:6c:e6:35:c3:2b:e3:a2:ac:a8:
b2:fd:9a:d5:9d:89:b7:1a:43:a9:52:6f:39:9f:85:
9f:4d:4a:9c:a0:16:cb:ca:bc:02:36:df:11:9b:d7:
67:17:5d:11:99:f6:70:31:ac:d2:e4:ba:17:df:e4:
1d:80:3d:2e:89:f7:75:18:64:58:36:5c:55:6a:83:
c7:7a:65:14:26:11:53:9a:80:97:52:5a:ee:cd:03:
ba:2b:71:9c:10:35:18:57:28:8d:38:cd:01:19:cd:
cc:3d:8a:3a:05:60:81:92:6e:93:bb:dc:8a:7b:bf:
ca:64:1e:f7:fb:36:62:9d:dc:2a:ef:e5:6f:da:cf:
f6:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:C2:ED:8F:55:7A:69:A5:EA:71:2B:09:0A:8E:FC:31:96:20:32:16
X509v3 Authority Key Identifier:
keyid:44:00:71:72:DF:9F:C2:D4:A2:DD:BB:A9:34:CE:BC:9F:02:86:D3:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RABxct-fwtSi3bupNM68nwKG08o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/945dbd-2fb7-4dd1-96a6-0585de4d4ee7/1/mcLtj1V6aaXqcSsJCo78MZYgMhY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/945dbd-2fb7-4dd1-96a6-0585de4d4ee7/1/RABxct-fwtSi3bupNM68nwKG08o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.83.215.0/24
IPv6:
2a05:9f06::/31
Signature Algorithm: sha256WithRSAEncryption
d8:00:a2:96:ad:de:52:e5:b3:c8:f2:ac:75:7a:54:89:aa:3e:
83:59:7f:d2:a6:19:72:c9:5d:02:e1:ab:45:02:ba:d7:51:43:
18:ec:9b:e5:2d:cc:9e:3b:93:48:a6:be:40:03:28:35:e9:f6:
a2:0b:8e:10:87:71:2b:9b:50:24:89:ee:f5:60:80:ed:65:68:
f1:93:15:ad:72:2b:2a:99:8b:44:10:c2:04:99:89:4b:1f:6b:
ae:9a:c1:a5:13:b1:41:c2:15:d0:75:f2:11:0e:9a:4b:91:17:
db:ae:82:e9:44:95:d8:0f:43:9c:26:94:75:a4:ca:50:28:11:
17:c1:36:75:a8:ad:11:e3:9a:a4:0c:49:8c:0d:52:ec:3f:9b:
fd:f5:3a:6e:22:88:54:73:42:60:a7:f6:37:4b:4a:f7:74:ad:
ab:34:79:ae:49:ab:ba:71:c9:9a:2a:00:21:20:22:a8:26:7f:
cc:a9:3c:af:cb:1e:2c:22:fa:c7:01:7d:9f:1e:c0:0c:55:84:
9a:12:1f:0b:c8:74:cd:6f:a9:77:07:80:77:f9:38:a4:cc:09:
59:a0:ea:61:d0:20:73:00:e5:f8:6a:6f:45:ce:b6:c0:92:33:
09:0b:13:db:6e:a0:39:6d:13:d3:c8:bd:47:09:81:97:d8:12:
5f:71:e6:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:51 2024 by rpki-client on console-ams.rpki-client.org