Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/RMxLbgu--478uvZklYQHAL6X-lE.roa
File: RMxLbgu--478uvZklYQHAL6X-lE.roa (raw, json)
Hash identifier: TszQvQdqJXRCP6FPEtASrf65sNo4bxyOURBfPuCpOkE=
Subject key identifier: 44:CC:4B:6E:0B:BE:FB:8E:FC:BA:F6:64:95:84:07:00:BE:97:FA:51
Certificate issuer: /CN=aecd64c97837d7bfac06637dd952bdede0c25d85
Certificate serial: 01856EC1F911541B0E682A41B488CF1143B6
Authority key identifier: AE:CD:64:C9:78:37:D7:BF:AC:06:63:7D:D9:52:BD:ED:E0:C2:5D:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rs1kyXg317-sBmN92VK97eDCXYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/RMxLbgu--478uvZklYQHAL6X-lE.roa
Signing time: Sun 01 Jan 2023 19:14:44 +0000
ROA not before: Sun 01 Jan 2023 19:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3176
IP address blocks: 78.108.173.0/24 maxlen: 24
5.57.1.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:c1:f9:11:54:1b:0e:68:2a:41:b4:88:cf:11:43:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aecd64c97837d7bfac06637dd952bdede0c25d85
Validity
Not Before: Jan 1 19:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=44cc4b6e0bbefb8efcbaf66495840700be97fa51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:80:df:5b:1b:16:d5:6e:ec:41:e2:de:1b:f8:
03:eb:6d:2e:1f:37:e6:0a:b2:06:28:a7:1f:85:a5:
69:01:ec:3f:4e:5f:e9:28:e8:6b:f1:81:94:9f:5c:
32:19:88:6c:e5:7e:33:b2:53:2f:21:83:ea:77:60:
3c:77:6b:23:ba:7d:f9:f6:9b:32:8c:28:eb:1b:5a:
99:a0:88:18:24:70:d5:24:53:7b:23:11:35:5b:8b:
25:06:40:ff:6b:0a:c4:5e:b8:d4:fc:7d:02:59:0a:
24:c0:42:73:cb:04:bb:af:d2:ee:16:80:a1:22:9c:
ad:b7:64:71:f5:0d:77:10:b4:30:94:d2:ff:0a:95:
0f:76:79:43:e2:2b:3f:85:02:3b:32:17:dc:f8:1b:
c0:cc:b0:7d:ff:da:e2:c2:b4:92:54:91:63:33:09:
81:34:74:e1:af:d6:e2:b1:5c:dc:07:e9:c6:52:2b:
d9:8d:e8:92:f1:72:4e:60:2b:68:d0:39:6d:23:f9:
ba:e9:2b:94:d6:cd:df:e7:fb:2e:a1:93:9c:dd:82:
d0:62:16:af:49:68:3e:75:e3:1f:8e:d6:34:ef:33:
2f:5f:51:0e:ba:74:11:da:54:9c:5a:46:e6:a0:c0:
f0:ce:4b:a9:a1:64:dd:74:e4:f8:f3:45:db:09:0a:
a0:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:CC:4B:6E:0B:BE:FB:8E:FC:BA:F6:64:95:84:07:00:BE:97:FA:51
X509v3 Authority Key Identifier:
keyid:AE:CD:64:C9:78:37:D7:BF:AC:06:63:7D:D9:52:BD:ED:E0:C2:5D:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rs1kyXg317-sBmN92VK97eDCXYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/RMxLbgu--478uvZklYQHAL6X-lE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.57.1.0/24
78.108.173.0/24
Signature Algorithm: sha256WithRSAEncryption
01:1e:80:40:88:b4:5f:2f:ef:fe:5c:47:b1:bf:a2:64:e6:cd:
a1:e3:1e:7a:51:1e:10:b3:e2:71:d6:c9:1a:7c:4a:3b:1b:c9:
49:3b:4e:ff:67:1f:2f:fa:8f:a9:f4:28:19:9c:c2:b3:b4:80:
da:1b:13:8e:32:23:f6:17:ca:fb:cb:d3:4a:d9:5b:87:5c:aa:
cd:bf:81:3a:95:2b:f1:5a:b1:ad:be:cd:17:d4:65:fa:ad:fa:
6f:be:d2:82:64:aa:fb:16:1f:fb:5e:04:89:93:e6:19:6a:dc:
88:ca:41:6f:fe:20:46:83:b2:48:c1:94:e1:38:f4:16:9b:1b:
82:3f:30:29:9f:6a:a8:6c:a9:b4:0f:55:77:ea:ae:97:05:c4:
d0:60:bf:00:e7:73:db:f1:6d:cf:63:17:24:32:31:74:87:17:
f9:98:80:17:fc:4d:53:46:83:b1:97:06:4e:ec:c6:b5:b7:4d:
ca:7a:a9:a5:e2:16:82:29:0a:fe:a0:39:13:c4:d5:6d:74:71:
41:db:01:93:f0:da:9c:71:95:15:ec:ba:ab:fe:21:73:7a:09:
84:29:e4:fa:f2:6c:3c:10:8d:9a:7e:28:18:87:c8:5c:e3:55:
7d:44:9d:51:d0:43:76:bb:d5:73:a8:26:14:fc:b1:cf:bb:da:
84:39:b7:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:24 2024 by rpki-client on console-ams.rpki-client.org