Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/9514ed-276e-4aba-897e-a4410e10b6f5/1/M7uswMRBr-TDIUDTF977StLSK5Y.roa
File: M7uswMRBr-TDIUDTF977StLSK5Y.roa (raw, json)
Hash identifier: AkzCHzV6ooRwthwN3/+65DzVQP+6B3h9dKfbTZbKcfw=
Subject key identifier: 33:BB:AC:C0:C4:41:AF:E4:C3:21:40:D3:17:DE:FB:4A:D2:D2:2B:96
Certificate issuer: /CN=f75d8b52815f3f2613e948992ec9fe660f6949b4
Certificate serial: 018CC726264E1040C557520B0D7D7E868A16
Authority key identifier: F7:5D:8B:52:81:5F:3F:26:13:E9:48:99:2E:C9:FE:66:0F:69:49:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/912LUoFfPyYT6UiZLsn-Zg9pSbQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/9514ed-276e-4aba-897e-a4410e10b6f5/1/M7uswMRBr-TDIUDTF977StLSK5Y.roa
Signing time: Mon 01 Jan 2024 22:30:15 +0000
ROA not before: Mon 01 Jan 2024 22:30:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202656
IP address blocks: 45.151.29.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 Mar 2024 10:44:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:26:26:4e:10:40:c5:57:52:0b:0d:7d:7e:86:8a:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f75d8b52815f3f2613e948992ec9fe660f6949b4
Validity
Not Before: Jan 1 22:30:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=33bbacc0c441afe4c32140d317defb4ad2d22b96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:49:47:5e:b1:af:68:a4:97:6a:01:bc:d9:cd:
3a:31:52:05:f8:d9:89:10:65:d5:3e:5d:d9:57:48:
ad:a7:29:11:39:ba:1a:ba:02:dc:b6:d1:7d:71:6b:
2f:5f:4a:df:b1:e9:03:bd:32:d5:03:f1:b0:9e:3d:
48:ea:c5:5a:cb:09:c2:7b:d6:65:f9:5b:42:c5:0f:
e4:f5:e1:de:90:f6:4f:fa:2f:b4:b1:e2:77:1e:51:
cf:55:9f:7c:ae:79:a4:15:f7:6b:fb:09:cd:11:ac:
c5:f4:9b:fa:ff:60:d9:f9:95:88:51:61:71:3d:d6:
56:35:a1:cc:8a:39:82:7a:8d:95:92:8c:6e:c6:b1:
ef:0c:b1:87:58:3b:fd:11:aa:61:9d:54:f9:5d:2e:
c8:b9:35:ad:63:2a:7b:8b:a8:7e:db:e0:21:9c:73:
af:53:8f:7e:ae:c4:b9:5c:33:89:17:95:66:77:c8:
65:08:ef:76:2d:02:62:2d:96:38:db:3e:dc:04:2d:
ee:a1:d1:82:71:5b:63:e1:37:29:e9:93:cd:0b:5d:
41:04:e5:8f:4d:c9:19:33:57:65:f0:ff:1c:12:68:
ec:5a:b4:a5:45:ca:67:bb:16:36:d6:80:a2:7b:cb:
66:e4:e4:86:ca:53:c0:03:0f:b8:ac:9a:93:6a:3a:
41:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:BB:AC:C0:C4:41:AF:E4:C3:21:40:D3:17:DE:FB:4A:D2:D2:2B:96
X509v3 Authority Key Identifier:
keyid:F7:5D:8B:52:81:5F:3F:26:13:E9:48:99:2E:C9:FE:66:0F:69:49:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/912LUoFfPyYT6UiZLsn-Zg9pSbQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9514ed-276e-4aba-897e-a4410e10b6f5/1/M7uswMRBr-TDIUDTF977StLSK5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9514ed-276e-4aba-897e-a4410e10b6f5/1/912LUoFfPyYT6UiZLsn-Zg9pSbQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.29.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:a3:ee:9a:a8:dc:25:bc:2d:6f:44:43:1a:df:40:0b:9e:bb:
15:21:4e:4a:4e:ca:7a:73:14:37:3f:c4:83:f1:18:1c:b2:78:
19:fa:38:92:a0:49:27:97:70:cc:56:b3:b3:77:b7:ec:85:f2:
3f:c3:f3:e3:04:b6:83:b8:52:83:fc:5b:23:3b:67:fc:52:bf:
11:ac:53:9f:35:7b:45:da:dd:1c:e7:73:c5:9b:09:a4:19:ca:
a8:af:d8:22:4f:75:12:d6:f4:05:e2:fe:48:aa:b9:43:07:c4:
0a:a4:0d:2b:33:da:da:89:ae:0a:62:35:79:cb:88:d7:6f:40:
ac:f5:01:59:dc:1e:ca:27:21:9b:9e:85:e4:3e:f5:62:1d:41:
99:b3:0c:7e:13:9c:46:38:72:37:f7:61:73:11:45:44:db:ae:
32:8a:8a:c5:2c:74:57:9f:51:af:22:75:ab:f5:75:ad:f3:19:
78:13:aa:63:d6:16:71:23:a4:c5:77:1b:a2:14:3b:9b:44:26:
8b:e8:cf:79:80:af:6b:f4:6c:35:3a:d5:3c:f6:20:36:02:ee:
71:b0:14:1d:d5:a0:32:88:c4:56:e6:64:73:8d:ea:01:75:90:
6a:1d:2b:20:ee:86:db:8b:15:d1:8e:f7:9a:13:d0:2b:74:64:
e3:c5:37:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:42 2024 by rpki-client on console-ams.rpki-client.org