Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/958a2c-cef0-4bcc-99c2-321c9d66c847/1/MPom5BUsj1ENrpDNNxv0jimt3ZE.roa
File: MPom5BUsj1ENrpDNNxv0jimt3ZE.roa (raw, json)
Hash identifier: vKOH11dOk4YUgfTRDP3pEO2i1cBgNJDIV0ajfhycbTc=
Subject key identifier: 30:FA:26:E4:15:2C:8F:51:0D:AE:90:CD:37:1B:F4:8E:29:AD:DD:91
Certificate issuer: /CN=83a062525292a29e97fe6a055b9bd6084a771977
Certificate serial: 01856F4B48DCF39B65268E0E199B921C6E98
Authority key identifier: 83:A0:62:52:52:92:A2:9E:97:FE:6A:05:5B:9B:D6:08:4A:77:19:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g6BiUlKSop6X_moFW5vWCEp3GXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/958a2c-cef0-4bcc-99c2-321c9d66c847/1/MPom5BUsj1ENrpDNNxv0jimt3ZE.roa
Signing time: Sun 01 Jan 2023 21:44:42 +0000
ROA not before: Sun 01 Jan 2023 21:44:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202691
IP address blocks: 185.157.72.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:48:dc:f3:9b:65:26:8e:0e:19:9b:92:1c:6e:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83a062525292a29e97fe6a055b9bd6084a771977
Validity
Not Before: Jan 1 21:44:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=30fa26e4152c8f510dae90cd371bf48e29addd91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:23:51:99:82:64:1a:03:74:80:e3:eb:1a:e2:
de:4a:cb:fd:ee:85:ed:92:a6:d8:f9:9b:50:dc:7a:
a1:61:a8:bd:26:c4:ae:84:69:30:fb:7b:09:d0:86:
d8:37:65:af:aa:db:42:19:fd:22:63:fa:26:3e:17:
4b:0b:e0:e4:bb:fc:b6:8d:89:e1:5d:ba:79:d4:20:
48:e0:6b:dd:46:98:4b:7b:dd:d3:cb:2d:48:e9:64:
e2:4d:1a:2a:ab:7b:e0:8c:be:4e:53:97:08:d5:05:
b0:93:27:e3:50:fc:9a:69:fa:ed:aa:c9:1f:df:f3:
4a:31:2f:13:8e:ac:ee:84:d3:2c:03:38:d4:f5:18:
86:c5:9b:df:ea:a8:04:02:9e:d2:7e:45:66:6a:87:
22:c8:7d:3d:34:b1:ac:6b:f9:7d:e1:8a:a5:d6:39:
14:2f:ee:a7:fe:a6:2e:51:3e:16:85:35:e8:41:a6:
1e:6a:53:fa:53:05:64:16:68:a3:10:73:80:91:f4:
e4:17:1d:d8:98:33:cc:65:f4:12:5a:4c:da:f2:56:
d7:57:7b:ec:a6:a9:88:fc:96:9e:8f:27:e0:e4:03:
b7:51:3e:80:2d:a1:0b:ba:1f:2f:89:e0:c6:7b:82:
e3:c5:d5:a9:86:95:03:6c:29:d2:d2:9f:a0:1c:74:
d7:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:FA:26:E4:15:2C:8F:51:0D:AE:90:CD:37:1B:F4:8E:29:AD:DD:91
X509v3 Authority Key Identifier:
keyid:83:A0:62:52:52:92:A2:9E:97:FE:6A:05:5B:9B:D6:08:4A:77:19:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g6BiUlKSop6X_moFW5vWCEp3GXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/958a2c-cef0-4bcc-99c2-321c9d66c847/1/MPom5BUsj1ENrpDNNxv0jimt3ZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/958a2c-cef0-4bcc-99c2-321c9d66c847/1/g6BiUlKSop6X_moFW5vWCEp3GXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.157.72.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:00:5c:2a:35:5c:12:b1:fc:26:aa:32:bd:4a:93:68:a8:ae:
bc:11:ba:f6:f6:15:c5:b1:51:d1:55:08:db:44:16:10:22:df:
79:34:2c:00:3a:ff:35:e0:f6:62:eb:74:ea:b4:3e:6c:08:24:
9e:9c:8b:d5:38:45:96:93:de:8d:e1:0e:33:83:b3:4b:10:c2:
e8:35:e2:a1:82:6d:2e:a5:32:ac:6f:1f:3c:cd:1b:b4:a2:fd:
45:b7:03:d1:05:02:2c:54:3a:f5:1b:a4:1d:50:c7:ba:ba:9f:
7b:6c:e8:92:81:09:27:c2:f8:09:c7:24:ea:de:25:f3:00:a8:
51:07:16:e2:5d:91:4e:b1:ec:96:b5:9e:63:26:c4:d1:8a:fa:
60:30:18:90:fd:93:92:07:b7:76:fe:1d:99:66:08:ce:30:27:
ce:56:85:64:a0:f7:f3:f7:f9:26:a2:04:7e:f3:d7:72:60:8f:
d2:41:7c:ff:dd:1d:70:c2:19:70:c4:0b:dd:b1:0a:82:34:d0:
dd:af:fd:2d:85:8e:c8:5a:4f:c7:c0:96:83:7d:fb:4c:6a:0d:
a8:0f:4d:9f:59:c3:09:7d:90:dc:5c:df:d3:03:63:2a:a6:30:
64:83:d1:f9:3e:34:a2:72:2f:b8:d9:6c:19:4d:8d:ac:81:67:
66:4a:78:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:38 2024 by rpki-client on console-ams.rpki-client.org