Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/mDwInuTBZW6jP6c6JhKWgAEaZlM.roa
File: mDwInuTBZW6jP6c6JhKWgAEaZlM.roa (raw, json)
Hash identifier: 6/ZCu8P+w7Gh2VtYKNmC1F+6ysdQbtl3KTDFG/OI2YE=
Subject key identifier: 98:3C:08:9E:E4:C1:65:6E:A3:3F:A7:3A:26:12:96:80:01:1A:66:53
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 018AA73124BFC7CB2A083EA88530CE6FCF28
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/mDwInuTBZW6jP6c6JhKWgAEaZlM.roa
Signing time: Mon 18 Sep 2023 07:28:50 +0000
ROA not before: Mon 18 Sep 2023 07:28:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203446
IP address blocks: 45.90.96.0/24 maxlen: 24
45.134.39.0/24 maxlen: 24
2.56.246.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 22 Sep 2023 11:11:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:a7:31:24:bf:c7:cb:2a:08:3e:a8:85:30:ce:6f:cf:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Sep 18 07:28:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=983c089ee4c1656ea33fa73a26129680011a6653
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ac:b3:79:00:57:30:31:91:66:1b:62:39:13:
80:0c:fe:be:2e:47:ff:ed:fb:46:c9:c6:e7:13:1d:
01:2e:6c:01:d5:de:7a:c0:74:24:1c:a2:b5:d0:fd:
12:d1:46:ab:6a:65:43:22:21:5c:56:57:bc:7c:29:
c9:54:1f:a9:de:a6:9f:18:07:f0:fe:ee:d8:9f:e6:
3a:68:be:29:83:32:7d:60:f2:d8:af:22:ef:9e:7a:
5f:77:db:04:a2:54:e5:07:44:98:d2:5b:4c:ee:ff:
dd:56:80:c5:db:0e:06:be:40:4c:59:f1:ea:9b:52:
d2:1b:61:b0:88:fb:de:ab:99:af:1f:57:06:f7:4f:
a9:2a:1e:62:28:a6:95:0a:08:d6:65:3d:96:6e:55:
36:e1:f5:4a:d7:9c:c3:21:74:1e:40:a4:d6:4c:47:
b3:60:25:97:cb:de:87:0e:3b:2c:10:50:41:90:d5:
d4:26:ea:52:6e:f6:ce:74:fd:3e:0b:b5:7f:c3:4f:
91:60:9a:4e:9f:09:10:b5:31:4e:0e:99:90:53:20:
91:16:87:0e:39:5a:4b:8c:34:2a:06:f5:bf:d1:67:
ca:05:ba:c3:f2:d3:30:18:85:c9:9b:43:c9:47:85:
dc:6b:88:a4:c2:c6:54:98:93:00:bf:03:41:01:6d:
b0:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:3C:08:9E:E4:C1:65:6E:A3:3F:A7:3A:26:12:96:80:01:1A:66:53
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/mDwInuTBZW6jP6c6JhKWgAEaZlM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.246.0/24
45.90.96.0/24
45.134.39.0/24
Signature Algorithm: sha256WithRSAEncryption
84:5b:65:34:09:56:f6:93:12:e0:3f:15:1a:e7:5e:02:a8:e7:
53:b8:32:b8:68:ad:01:ef:6e:43:a8:d9:ef:ff:7e:18:83:19:
7f:fe:5b:b8:bb:0b:ba:90:46:7a:20:08:22:52:b2:bb:83:12:
28:92:7d:e1:c4:58:d5:56:9e:1a:cd:dc:84:12:e9:05:6e:8a:
1e:7d:91:35:3f:43:d2:38:6d:4c:00:e4:e8:2d:af:ae:50:a9:
c4:70:88:47:91:85:90:e9:bd:e3:49:d6:c3:c4:88:d4:c0:0c:
b3:ff:4b:15:0f:f9:b8:be:72:9d:a6:ea:45:5b:b2:d5:28:5e:
f5:d0:97:25:91:d4:b7:8b:e2:1f:78:8a:bf:8f:ca:65:80:9e:
74:b4:e6:d1:85:19:8b:04:bb:2c:82:d3:cd:b0:21:86:e2:2e:
47:35:16:0d:f2:06:73:af:49:e7:1c:88:ed:b7:6b:e1:ad:d8:
5f:cc:08:b9:e6:58:37:7a:69:98:4c:ca:66:89:84:d0:5b:cf:
b9:6c:aa:0a:fd:55:7d:30:e2:2e:9c:09:f6:17:d5:bc:7d:ae:
ef:21:d5:b4:ca:b1:c9:c1:16:89:11:12:04:49:56:8c:62:63:
57:aa:90:74:5f:72:20:83:42:2c:56:c5:d0:cf:a6:5b:3f:ec:
5d:bf:e2:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:13 2024 by rpki-client on console-ams.rpki-client.org