Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/mxsMWGLnCcZUb5qczX1JrJYvnts.roa
File: mxsMWGLnCcZUb5qczX1JrJYvnts.roa (raw, json)
Hash identifier: L1NyFZJ83nwhEIpze/bQCo95hkwVW9+25VprhDORUhY=
Subject key identifier: 9B:1B:0C:58:62:E7:09:C6:54:6F:9A:9C:CD:7D:49:AC:96:2F:9E:DB
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0192442BBD3555FAAEC85E9BC0E12B3BE6DD
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/mxsMWGLnCcZUb5qczX1JrJYvnts.roa
Signing time: Mon 30 Sep 2024 18:22:50 +0000
ROA not before: Mon 30 Sep 2024 18:22:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214111
IP address blocks: 45.9.156.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Nov 2024 14:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:44:2b:bd:35:55:fa:ae:c8:5e:9b:c0:e1:2b:3b:e6:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Sep 30 18:22:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9b1b0c5862e709c6546f9a9ccd7d49ac962f9edb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:5a:dd:0a:2c:96:0b:67:07:95:75:90:c5:71:
8b:32:c3:86:3f:8b:72:f7:7d:99:58:19:e8:7c:71:
b1:81:30:fb:e6:27:08:10:40:2a:af:49:30:cd:ef:
f7:c9:97:9d:9b:46:85:03:41:34:98:5d:15:65:74:
a6:b8:c5:03:b7:35:05:e7:ab:42:8e:6d:1a:36:ba:
bf:e1:95:1e:61:de:d0:06:f0:4d:8e:f6:9c:39:f4:
4d:ca:b7:d2:4d:2b:15:84:b0:07:93:9b:8a:4b:bd:
ea:36:51:1c:53:e4:3a:c0:c2:a4:6f:ba:f6:74:f6:
ec:11:e7:08:b3:61:58:54:25:74:f8:4b:56:9a:7a:
bf:27:26:34:ac:09:03:30:94:0d:3a:4a:f5:af:74:
3b:a9:90:8f:93:35:97:84:c2:7e:3d:3c:e2:a2:a4:
dd:1b:31:f5:67:c6:80:e8:f0:8c:3a:42:b7:8e:86:
83:bf:7c:1a:a5:80:86:c8:72:45:cb:e5:ea:97:c5:
f9:d7:57:dd:9f:30:46:d8:cf:86:4a:e9:c3:ba:75:
a2:77:23:64:0c:cb:94:d8:9e:ca:73:40:72:93:c5:
e7:68:89:a9:ba:f7:e3:5d:e4:c3:ba:28:4f:b3:dd:
d0:3f:28:88:d5:92:80:ae:24:b2:df:45:d0:71:7a:
93:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:1B:0C:58:62:E7:09:C6:54:6F:9A:9C:CD:7D:49:AC:96:2F:9E:DB
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/mxsMWGLnCcZUb5qczX1JrJYvnts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.156.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:2b:1e:00:29:da:2d:cd:fc:c1:a5:71:18:6e:aa:3e:b5:69:
e7:af:41:90:79:c6:27:63:d8:75:b5:ec:8c:c6:c6:9a:3a:4d:
94:ed:ed:9c:78:7d:21:76:fe:04:24:65:9b:1d:69:d8:5d:29:
6b:22:70:36:42:14:44:21:39:f8:33:16:92:21:98:2c:4a:f8:
1b:dd:fa:c9:09:3b:aa:9a:f8:c9:87:b7:a0:b6:76:82:8b:61:
5a:f6:72:3b:2a:33:1e:00:0b:51:4b:a0:e1:bb:9a:06:a8:df:
81:02:d0:7d:0c:4d:58:b1:19:19:b5:9d:6b:f7:67:b8:04:7b:
04:78:cc:32:dc:c6:b0:f5:af:f5:94:41:31:7c:ba:40:ea:47:
72:82:15:7a:f3:8f:00:74:b7:3b:07:fd:d9:10:2b:1e:42:cf:
b6:50:3e:5d:a1:aa:12:48:1f:69:7c:1c:9a:de:83:91:9c:0c:
28:93:0f:8f:54:6b:e3:b1:34:4f:5d:e8:df:9b:b9:9d:8b:c8:
c5:24:e2:cb:91:9a:d5:13:51:a2:f9:a1:07:1e:f7:52:e2:94:
54:88:ee:b9:17:71:fb:87:85:9f:35:4e:dc:15:2c:ac:b8:73:
dc:fb:61:eb:d9:ae:1b:b9:ad:09:48:17:2b:58:3b:38:7d:44:
22:f8:9b:4b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZJEK701VfquyF6bwOErO+bdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjQwOTMwMTgyMjUwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YjFiMGM1ODYyZTcwOWM2NTQ2ZjlhOWNjZDdkNDlhYzk2MmY5ZWRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAylrdCiyWC2cHlXWQxXGLMsOGP4ty
932ZWBnofHGxgTD75icIEEAqr0kwze/3yZedm0aFA0E0mF0VZXSmuMUDtzUF56tC
jm0aNrq/4ZUeYd7QBvBNjvacOfRNyrfSTSsVhLAHk5uKS73qNlEcU+Q6wMKkb7r2
dPbsEecIs2FYVCV0+EtWmnq/JyY0rAkDMJQNOkr1r3Q7qZCPkzWXhMJ+PTzioqTd
GzH1Z8aA6PCMOkK3joaDv3wapYCGyHJFy+Xql8X511fdnzBG2M+GSunDunWidyNk
DMuU2J7Kc0Byk8XnaImpuvfjXeTDuihPs93QPyiI1ZKAriSy30XQcXqTAwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJsbDFhi5wnGVG+anM19SayWL57bMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvbXhzTVdHTG5DY1pVYjVxY3pYMUpySll2bnRzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALQmcMA0G
CSqGSIb3DQEBCwUAA4IBAQCeKx4AKdotzfzBpXEYbqo+tWnnr0GQecYnY9h1teyM
xsaaOk2U7e2ceH0hdv4EJGWbHWnYXSlrInA2QhREITn4MxaSIZgsSvgb3frJCTuq
mvjJh7egtnaCi2Fa9nI7KjMeAAtRS6Dhu5oGqN+BAtB9DE1YsRkZtZ1r92e4BHsE
eMwy3Maw9a/1lEExfLpA6kdyghV6848AdLc7B/3ZECseQs+2UD5doaoSSB9pfBya
3oORnAwokw+PVGvjsTRPXejfm7mdi8jFJOLLkZrVE1Gi+aEHHvdS4pRUiO65F3H7
h4WfNU7cFSysuHPc+2Hr2a4bua0JSBcrWDs4fUQi+JtL
-----END CERTIFICATE-----
Generated at Mon Nov 11 19:06:54 2024 by rpki-client on console-ams.rpki-client.org