Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/MHGWc361pPtx2bxKL7UCWHAX_eQ.roa
File: MHGWc361pPtx2bxKL7UCWHAX_eQ.roa (raw, json)
Hash identifier: 5gli9jIe9SUn8hixnRonZHG3Zjb4lbigdIL5u7OY+qo=
Subject key identifier: 30:71:96:73:7E:B5:A4:FB:71:D9:BC:4A:2F:B5:02:58:70:17:FD:E4
Certificate issuer: /CN=49216f5c165b827a7fd73d8107aebd2f63c63e24
Certificate serial: 018CC56E1545636C37FBEC5B1B802640B682
Authority key identifier: 49:21:6F:5C:16:5B:82:7A:7F:D7:3D:81:07:AE:BD:2F:63:C6:3E:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SSFvXBZbgnp_1z2BB669L2PGPiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/MHGWc361pPtx2bxKL7UCWHAX_eQ.roa
Signing time: Mon 01 Jan 2024 14:29:35 +0000
ROA not before: Mon 01 Jan 2024 14:29:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205473
IP address blocks: 81.90.17.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 13 Jan 2024 17:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:15:45:63:6c:37:fb:ec:5b:1b:80:26:40:b6:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49216f5c165b827a7fd73d8107aebd2f63c63e24
Validity
Not Before: Jan 1 14:29:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=307196737eb5a4fb71d9bc4a2fb502587017fde4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:b4:97:66:46:2a:9e:a0:ba:10:59:ba:23:35:
dd:87:22:71:2c:cf:d9:4a:44:3f:0b:4e:80:bd:51:
b4:63:ad:1b:2b:8b:67:a8:54:e1:d9:73:3f:60:fc:
59:07:5d:48:b2:26:55:ba:3a:05:ba:78:8f:75:d3:
3a:c2:75:c3:77:86:62:ab:3e:65:07:db:28:d1:6d:
8e:e8:15:70:3e:f4:22:90:6c:27:4c:cc:56:3a:9b:
2e:37:0d:5b:9f:51:15:ca:79:b0:aa:11:66:d3:79:
12:c8:3a:00:6d:4b:27:56:7a:2f:2e:3e:b2:b2:3b:
6b:8e:a7:cd:7c:76:12:1f:cf:ed:55:36:fa:09:9e:
5c:7a:4f:66:f8:54:10:11:13:61:8e:fa:79:a9:a5:
f0:f0:08:b6:eb:c7:91:b2:58:05:d8:eb:4c:b4:5b:
44:73:26:0f:1d:e1:a9:eb:89:86:9a:5a:4e:ea:01:
15:01:0f:65:dd:8f:ca:4f:48:d8:39:36:56:18:44:
ab:ed:d2:bf:90:bc:ce:d4:99:7b:ab:50:7c:35:a7:
6e:ee:63:1d:65:fd:a5:c7:25:2d:bb:03:57:3c:c9:
ee:d5:cc:ed:3d:b9:a6:04:11:38:da:93:f6:09:2e:
5f:d8:cf:4b:ac:b4:d3:5a:cb:1f:16:89:d8:b3:65:
6a:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:71:96:73:7E:B5:A4:FB:71:D9:BC:4A:2F:B5:02:58:70:17:FD:E4
X509v3 Authority Key Identifier:
keyid:49:21:6F:5C:16:5B:82:7A:7F:D7:3D:81:07:AE:BD:2F:63:C6:3E:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SSFvXBZbgnp_1z2BB669L2PGPiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/MHGWc361pPtx2bxKL7UCWHAX_eQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.90.17.0/24
Signature Algorithm: sha256WithRSAEncryption
44:a3:8a:34:ea:0b:31:09:e6:75:ad:f2:49:55:d9:79:ab:18:
ce:5b:43:c8:8d:12:b7:85:7e:e4:7a:4f:9d:e4:62:e2:99:ac:
7e:50:a4:ec:39:a0:0c:d8:8e:43:0d:d2:b7:0d:e6:c5:70:e2:
aa:a8:34:63:3d:a9:f7:28:ca:98:b9:e0:66:d6:35:56:72:01:
89:3d:cb:92:32:15:47:34:7a:48:e7:ac:5b:51:74:42:ff:67:
19:84:f0:12:c6:71:a7:95:5d:37:9a:26:cc:b0:2c:ec:aa:19:
aa:3f:6d:ad:d4:c8:d1:d8:e2:2d:3c:45:ac:cf:e7:fa:d7:e5:
25:22:71:be:4a:2a:e6:de:0d:e6:f5:69:24:86:0e:46:ca:ac:
c3:fa:60:9e:7b:85:e1:4f:d2:10:ec:58:f5:84:22:57:07:c8:
2d:6e:a9:7e:c9:47:c0:72:80:40:00:4a:15:78:b5:be:82:a4:
2f:46:31:5b:f6:e5:c6:ce:21:b0:63:2a:4c:cc:14:63:5a:b4:
c1:4d:9f:76:96:0f:a3:c4:e3:2f:c6:88:0e:da:d8:d9:50:14:
4c:5e:f2:a1:ff:31:93:35:16:4e:ba:7a:f7:f2:a7:7e:9a:32:
14:48:6e:21:c6:bf:2d:a9:df:a9:75:57:8c:f8:65:1b:26:0a:
72:84:8f:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:15 2024 by rpki-client on console-ams.rpki-client.org