Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/e9ba47-06ae-4988-8165-37018b1fe9fa/1/mghO5ylhvY_gZFSL1PekcRM9WSQ.roa
File: mghO5ylhvY_gZFSL1PekcRM9WSQ.roa (raw, json)
Hash identifier: v2Ob6r0FMWjdDrEGgRYAWm06JcyMt9f/F5ve/gS/VCo=
Subject key identifier: 9A:08:4E:E7:29:61:BD:8F:E0:64:54:8B:D4:F7:A4:71:13:3D:59:24
Certificate issuer: /CN=dee02e267c89f50df1a176f0e75f5c28235b23a5
Certificate serial: 018CC80176A82EFC00E532B539F09C9D3601
Authority key identifier: DE:E0:2E:26:7C:89:F5:0D:F1:A1:76:F0:E7:5F:5C:28:23:5B:23:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3uAuJnyJ9Q3xoXbw519cKCNbI6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/e9ba47-06ae-4988-8165-37018b1fe9fa/1/mghO5ylhvY_gZFSL1PekcRM9WSQ.roa
Signing time: Tue 02 Jan 2024 02:29:48 +0000
ROA not before: Tue 02 Jan 2024 02:29:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199782
IP address blocks: 185.46.16.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 15:50:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:76:a8:2e:fc:00:e5:32:b5:39:f0:9c:9d:36:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dee02e267c89f50df1a176f0e75f5c28235b23a5
Validity
Not Before: Jan 2 02:29:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9a084ee72961bd8fe064548bd4f7a471133d5924
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:b4:53:00:8e:7c:49:d6:a6:75:3b:f6:dc:39:
95:23:ec:0a:8f:ec:02:05:cd:4f:b6:02:80:9e:14:
0f:4a:3e:70:d3:9b:ff:b2:fb:66:a4:0b:93:40:23:
18:a5:e3:de:2c:e5:c3:a1:1f:5c:47:46:a5:f4:9d:
f5:4e:a7:5f:0e:fb:40:4a:d5:65:79:7e:a8:49:f5:
f2:fd:f7:66:6c:b3:9e:54:7f:bd:61:1c:ad:e7:52:
f6:11:ea:40:d8:ba:55:3e:23:26:9c:11:6c:f4:92:
7b:17:f1:5f:61:58:39:b1:a8:9f:ff:d7:24:a6:c3:
10:12:a0:87:c7:e0:cd:39:33:ec:b4:a7:bd:1a:c6:
66:16:e1:a6:45:4c:7b:2d:9a:ca:9a:6a:ab:cc:01:
90:a4:58:ad:80:4a:44:f7:cd:1d:6a:89:02:e4:1f:
d8:e9:46:85:2c:9f:28:03:ba:39:8a:9c:4b:5b:8d:
2c:c3:b8:cd:40:f0:f2:d8:d8:e4:91:b6:33:5d:6c:
53:1b:3b:54:cc:0f:54:31:4e:2f:57:26:9e:4b:3f:
28:4d:6a:8e:bf:5e:8e:bc:43:c7:4e:67:a2:b4:8c:
24:2a:ed:cc:b0:3c:a4:b6:3e:81:1b:6d:a9:03:9c:
2b:6b:88:fa:60:ee:45:ee:63:32:56:a7:b1:f0:91:
a8:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:08:4E:E7:29:61:BD:8F:E0:64:54:8B:D4:F7:A4:71:13:3D:59:24
X509v3 Authority Key Identifier:
keyid:DE:E0:2E:26:7C:89:F5:0D:F1:A1:76:F0:E7:5F:5C:28:23:5B:23:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3uAuJnyJ9Q3xoXbw519cKCNbI6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/e9ba47-06ae-4988-8165-37018b1fe9fa/1/mghO5ylhvY_gZFSL1PekcRM9WSQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/e9ba47-06ae-4988-8165-37018b1fe9fa/1/3uAuJnyJ9Q3xoXbw519cKCNbI6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.46.16.0/22
Signature Algorithm: sha256WithRSAEncryption
4e:f6:9b:1b:df:b5:a1:23:33:a9:5d:c7:f4:62:b5:e6:5b:13:
35:48:5b:e2:fa:91:bf:dd:8b:4e:c0:dd:44:61:67:73:5f:f9:
e1:be:cf:ac:c0:df:ed:d8:7f:1c:42:3f:03:34:80:ac:65:0e:
75:fe:a5:bb:ed:6a:9f:58:27:19:3d:e7:d7:1d:c5:60:10:e7:
01:27:8c:c7:33:a9:42:bb:7b:b9:76:8d:16:1c:7b:33:fe:58:
ec:cf:49:15:95:f1:6d:b1:39:ca:70:8e:af:b6:f4:09:62:83:
d0:f3:ec:e3:d5:8a:dc:7b:52:1d:9a:46:72:37:3d:ee:cc:2d:
2d:5c:f7:e1:7c:22:2d:48:7d:02:4f:3a:28:d3:1a:f4:1b:f9:
62:2a:02:36:dc:1e:e8:d1:52:c3:86:6b:94:a0:0a:1b:cc:20:
81:6d:46:f3:d5:ce:84:2d:a9:f2:55:ca:60:ed:46:7e:27:98:
6c:77:70:61:96:45:dc:c7:78:64:87:79:ff:d3:4b:ed:53:d0:
27:27:b7:07:cd:3e:09:e4:21:27:54:b7:d5:fd:71:a6:61:5c:
b1:f4:0c:31:b4:e8:be:40:76:e8:95:13:f7:0e:d5:13:ee:f3:
2b:e5:ae:74:a6:bd:d1:f0:63:32:55:4c:9e:21:bb:3a:e9:ae:
70:82:6c:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:12:06 2025 by rpki-client