Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/25c95e-7f27-4d69-856d-a38b6795fb24/1/mAknbZwUTcLNYNjfzkBgaxJHz1M.roa
File: mAknbZwUTcLNYNjfzkBgaxJHz1M.roa (raw, json)
Hash identifier: gtPkSIaOblJEoChgFbtuqusMwz+si5/q9lU5Btw7a+c=
Subject key identifier: 98:09:27:6D:9C:14:4D:C2:CD:60:D8:DF:CE:40:60:6B:12:47:CF:53
Certificate issuer: /CN=d5e6733fa239c5fb0c438c82f7c230f55d478cb1
Certificate serial: 018B4C4ADAB3F458654E73121FA1475DC7BF
Authority key identifier: D5:E6:73:3F:A2:39:C5:FB:0C:43:8C:82:F7:C2:30:F5:5D:47:8C:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1eZzP6I5xfsMQ4yC98Iw9V1HjLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/25c95e-7f27-4d69-856d-a38b6795fb24/1/mAknbZwUTcLNYNjfzkBgaxJHz1M.roa
Signing time: Fri 20 Oct 2023 08:54:15 +0000
ROA not before: Fri 20 Oct 2023 08:54:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399045
IP address blocks: 45.81.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 06 Nov 2023 07:10:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:4c:4a:da:b3:f4:58:65:4e:73:12:1f:a1:47:5d:c7:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5e6733fa239c5fb0c438c82f7c230f55d478cb1
Validity
Not Before: Oct 20 08:54:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9809276d9c144dc2cd60d8dfce40606b1247cf53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:7c:f6:50:f8:0d:1d:ed:1f:e0:b0:75:56:48:
34:e5:67:dc:7a:a6:9a:d8:7d:e7:37:87:45:d6:90:
96:9d:99:3a:91:3e:9e:25:89:f3:51:c7:23:1c:e8:
93:ba:ed:7c:2a:c1:a0:a5:ed:0b:ba:92:91:c4:e9:
9e:46:68:a4:67:5a:7f:6f:fc:c3:26:ea:f1:2d:cf:
39:d5:62:4e:7e:d8:3d:6c:90:af:b3:a3:a9:ba:47:
b5:5f:c4:27:cb:6e:cf:06:9b:14:01:44:db:62:6b:
9c:a4:65:e8:a7:2c:79:a0:19:cc:bd:c6:3e:10:bc:
fa:47:96:89:cb:8e:5b:8f:b2:11:fa:b9:57:3d:e6:
be:eb:9f:6c:71:be:cf:2e:7b:85:41:57:30:dc:7d:
2e:bd:83:eb:a9:5e:1c:7c:ff:03:a0:0d:a6:13:52:
00:55:e7:1a:ed:0a:60:cd:58:c1:27:65:93:a8:2c:
24:b5:d2:c0:02:8c:d3:9e:1e:9a:3d:37:7b:17:73:
eb:b2:6f:12:b7:07:00:20:15:a8:f0:7e:9e:b7:27:
2d:d4:5a:0c:6b:3b:ec:28:7a:12:3a:d3:b9:03:59:
c3:81:50:1b:a7:f0:d0:86:21:58:da:61:e6:1a:1d:
d7:86:bf:ac:92:0c:d0:77:31:82:bd:cd:65:67:b5:
e5:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:09:27:6D:9C:14:4D:C2:CD:60:D8:DF:CE:40:60:6B:12:47:CF:53
X509v3 Authority Key Identifier:
keyid:D5:E6:73:3F:A2:39:C5:FB:0C:43:8C:82:F7:C2:30:F5:5D:47:8C:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1eZzP6I5xfsMQ4yC98Iw9V1HjLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/25c95e-7f27-4d69-856d-a38b6795fb24/1/mAknbZwUTcLNYNjfzkBgaxJHz1M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/25c95e-7f27-4d69-856d-a38b6795fb24/1/1eZzP6I5xfsMQ4yC98Iw9V1HjLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.253.0/24
Signature Algorithm: sha256WithRSAEncryption
86:58:af:fb:8f:28:b5:77:93:6e:a6:d1:ba:7d:bb:01:ae:b3:
93:ea:82:5b:b8:b3:9d:d9:f2:bd:92:8b:cc:d9:71:7c:24:66:
cd:61:74:4f:5e:45:b0:e6:79:d3:44:89:8f:6b:b2:b6:62:e2:
88:c4:54:b8:7f:e2:83:c4:5e:c1:62:29:13:8e:48:2c:bf:1f:
59:8c:3e:99:12:24:49:82:c9:b0:7f:81:b3:0b:4f:9e:72:2d:
a9:1b:d3:74:af:de:28:22:73:cf:f8:33:06:ee:d0:ef:bf:e4:
1c:9a:f3:c6:77:fa:3b:8a:b0:82:fa:05:f3:bd:f6:72:7c:28:
2c:09:6a:7e:ae:fd:a2:e9:6a:25:74:36:4d:fc:f5:a0:f5:ad:
10:5f:d5:27:c5:7c:fb:21:a5:fc:15:ea:b7:ec:9f:66:a3:55:
85:be:f9:a9:49:10:3e:5e:50:2b:dc:d9:47:14:b3:b1:d4:d1:
be:36:e2:c5:bc:a1:26:4b:62:b8:63:d4:56:98:1a:51:09:06:
35:5f:6a:0b:39:7c:d6:f7:48:f1:ff:5d:9f:05:2d:5f:a7:e0:
8c:94:4a:58:46:b5:66:55:3f:38:93:a1:10:c0:b1:3e:a3:82:
66:f2:1b:fd:c9:64:e6:cd:5d:09:40:f8:81:4b:45:14:9d:f3:
09:36:0c:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:15 2024 by rpki-client on console-fra.rpki-client.org