Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/MARUCeK0H5vT2Z4wmBJTXRNyWdk.roa
File: MARUCeK0H5vT2Z4wmBJTXRNyWdk.roa (raw, json)
Hash identifier: IguO7Nl8rioyRIazWGwEN9Ff3iiMRFkudzzQN5AY+gU=
Subject key identifier: 30:04:54:09:E2:B4:1F:9B:D3:D9:9E:30:98:12:53:5D:13:72:59:D9
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01915600AEE6459D7AE0B456A1A84D74F19E
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/MARUCeK0H5vT2Z4wmBJTXRNyWdk.roa
Signing time: Thu 15 Aug 2024 12:26:10 +0000
ROA not before: Thu 15 Aug 2024 12:26:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50053
IP address blocks: 45.128.232.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 06 Sep 2024 10:20:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:56:00:ae:e6:45:9d:7a:e0:b4:56:a1:a8:4d:74:f1:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Aug 15 12:26:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=30045409e2b41f9bd3d99e309812535d137259d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:b4:d2:a5:9f:32:e4:97:a5:db:1e:99:bb:72:
2e:dd:93:a2:fe:e2:93:18:f2:cc:51:87:24:25:45:
a2:ae:8d:b1:54:ff:78:4f:f6:f9:8d:4e:52:23:b2:
29:0b:b1:80:92:56:b2:c4:88:de:9f:23:8e:f4:bd:
05:6d:e9:95:72:01:4c:5c:7c:43:f7:09:80:f7:56:
6a:28:0c:05:e4:c8:3e:9d:9d:71:f1:8a:ab:80:21:
3f:91:7d:29:bc:1b:aa:eb:29:cd:32:af:c1:4b:ac:
6b:62:6a:ac:b3:5c:ec:5c:be:c9:af:8a:55:d8:67:
78:b1:0b:db:cb:78:00:d7:c3:24:d1:f8:16:f1:b0:
95:45:8d:29:d3:69:57:12:9d:11:9c:5b:f0:52:27:
5d:5d:a9:20:b0:6a:c5:d5:9a:b9:a8:c4:a5:97:ec:
1c:f4:9f:28:55:a0:57:d3:51:dc:95:5e:c5:3f:e9:
30:33:a0:0b:48:b4:04:84:59:79:99:b5:82:45:dc:
b4:8f:29:37:a0:ec:74:87:4d:21:9d:ca:fa:a4:09:
28:32:f9:e4:36:25:bb:a0:76:d8:59:f1:ec:b2:21:
e0:18:c3:08:51:9d:b2:62:33:3e:d2:d1:76:17:e3:
a6:54:b1:6a:0d:0c:a9:73:f3:db:2f:ce:19:f0:2a:
55:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:04:54:09:E2:B4:1F:9B:D3:D9:9E:30:98:12:53:5D:13:72:59:D9
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/MARUCeK0H5vT2Z4wmBJTXRNyWdk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.232.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:75:82:90:52:5c:a1:ea:6d:0a:34:32:3a:58:66:ac:7a:a4:
2d:62:1e:05:5c:06:4b:c7:d0:ca:53:fc:1d:60:8f:ec:14:5e:
87:ea:48:d2:05:98:67:68:e2:79:e8:ff:08:88:31:ed:77:ad:
9a:3d:f6:aa:df:2f:1f:9c:c8:20:d5:0c:d3:bb:fe:96:a6:71:
a4:22:80:1c:23:50:2a:bb:ac:31:1a:8a:dc:73:68:9b:88:34:
42:37:a0:88:aa:5f:4e:9b:c0:d8:49:f0:5f:67:ab:59:1c:7d:
bb:8c:65:2c:20:58:77:b7:8b:ed:1d:89:d6:ba:a5:1f:6c:a7:
30:fa:64:e1:8d:dc:16:58:7d:f5:8a:7f:5a:3f:01:80:95:b1:
80:87:6a:5f:ed:1d:83:36:ef:6d:06:42:2b:63:63:1e:b8:81:
74:cd:ec:ef:dc:3f:67:b3:65:a3:7c:7e:6f:0c:27:79:02:44:
31:f6:0a:60:f0:7f:7a:51:fc:95:5f:0b:fd:c9:be:03:96:d4:
87:ad:e5:98:a0:6b:0e:b7:ba:5e:6a:18:46:46:54:ee:2a:13:
ad:ae:88:a6:72:e5:bb:d8:51:56:ba:f2:60:6d:52:56:bd:0b:
dc:f7:17:d0:32:f8:f2:4a:ba:7a:b9:93:1d:e0:67:1a:97:1f:
46:7c:a3:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 6 12:37:50 2024 by rpki-client on console-ams.rpki-client.org