Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/4f76b4-7d56-47a0-ac5b-653f239fe9a0/1/MXEMu33awgquvGQvzaChQvILMWE.roa
File: MXEMu33awgquvGQvzaChQvILMWE.roa (raw, json)
Hash identifier: KDSsriRk7bdUjDv768EIH43n9x9rngO8WDvl01PDFP0=
Subject key identifier: 31:71:0C:BB:7D:DA:C2:0A:AE:BC:64:2F:CD:A0:A1:42:F2:0B:31:61
Certificate issuer: /CN=5a5e66b2759e50bb69bb0a4409eeb3ba48c46c56
Certificate serial: 0189BB7733E67F71C7900928AB2A70B3AC86
Authority key identifier: 5A:5E:66:B2:75:9E:50:BB:69:BB:0A:44:09:EE:B3:BA:48:C4:6C:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wl5msnWeULtpuwpECe6zukjEbFY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/4f76b4-7d56-47a0-ac5b-653f239fe9a0/1/MXEMu33awgquvGQvzaChQvILMWE.roa
Signing time: Thu 03 Aug 2023 12:54:58 +0000
ROA not before: Thu 03 Aug 2023 12:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58030
IP address blocks: 91.238.0.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 03 Aug 2023 13:18:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:bb:77:33:e6:7f:71:c7:90:09:28:ab:2a:70:b3:ac:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a5e66b2759e50bb69bb0a4409eeb3ba48c46c56
Validity
Not Before: Aug 3 12:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=31710cbb7ddac20aaebc642fcda0a142f20b3161
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:56:5f:a3:5e:92:80:02:29:e7:26:13:75:57:
b3:7f:83:d6:8e:8d:d5:f8:e5:d6:68:8a:d1:36:ca:
25:63:be:11:8c:4e:62:67:c6:77:5e:68:f6:46:25:
e8:2a:18:cd:cc:46:3e:e1:de:df:0a:68:c5:75:fe:
1c:7b:b6:1a:8f:ef:ce:94:d5:a1:fd:a0:fa:97:36:
9b:1c:cb:cd:0c:5f:9d:7f:b6:5e:c9:f2:6a:d7:d8:
2c:f7:ff:84:24:92:70:05:f8:b9:67:0b:63:69:64:
eb:b0:3e:87:66:1d:39:1e:fe:9d:10:5e:d6:ae:e5:
ef:00:c5:d5:8c:b7:cb:1d:0e:27:9b:d2:24:41:36:
2a:de:01:08:43:91:57:97:c7:73:24:dd:15:72:9f:
ab:f6:53:fc:f4:a8:4c:96:75:eb:a9:d5:8d:0d:a4:
d4:49:6d:6e:93:35:f4:15:b1:49:06:dc:02:ac:18:
98:dc:5b:6b:7e:50:48:89:9f:f1:e7:49:e5:ea:aa:
e4:78:d2:e9:85:89:35:a9:b2:92:13:c3:0d:d0:7a:
ff:44:8c:3f:2d:19:f3:81:ff:b7:b9:3c:f0:a1:d8:
02:dc:2f:e9:3c:5e:6d:bf:de:24:64:d9:aa:6a:af:
e9:7c:0f:38:02:7e:a7:a2:7e:ae:99:47:93:54:f8:
3f:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:71:0C:BB:7D:DA:C2:0A:AE:BC:64:2F:CD:A0:A1:42:F2:0B:31:61
X509v3 Authority Key Identifier:
keyid:5A:5E:66:B2:75:9E:50:BB:69:BB:0A:44:09:EE:B3:BA:48:C4:6C:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wl5msnWeULtpuwpECe6zukjEbFY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/4f76b4-7d56-47a0-ac5b-653f239fe9a0/1/MXEMu33awgquvGQvzaChQvILMWE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/4f76b4-7d56-47a0-ac5b-653f239fe9a0/1/Wl5msnWeULtpuwpECe6zukjEbFY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.238.0.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:4f:28:17:fc:dc:ed:c5:73:47:11:1f:d0:56:b7:c0:41:a7:
00:3a:55:84:81:bf:55:25:52:7a:2c:83:b6:c9:55:5f:a9:2c:
4a:31:e2:7e:44:b6:78:ee:ef:bb:0f:eb:30:3d:f3:5c:00:a8:
3f:40:21:ea:1f:65:16:f9:21:91:bc:b7:16:76:a3:aa:fe:ee:
d0:be:a8:b7:12:30:0a:09:a2:a8:da:22:16:ef:1c:30:fc:14:
6b:b0:45:47:ab:d4:84:1a:f9:2e:85:95:cd:f1:62:5e:54:12:
a3:9b:93:39:02:dd:20:64:e7:59:85:19:7d:9f:25:44:7b:67:
d2:cb:8b:3c:8c:54:a9:25:3b:84:32:4b:81:ac:13:fa:94:8c:
33:6e:dc:56:67:4b:d1:df:f4:cf:a1:4e:ef:1e:68:06:bc:c0:
5b:19:3c:b9:8f:b4:2c:fd:39:08:12:ae:ec:db:82:d8:bc:2b:
42:3f:ab:7b:48:95:83:b4:96:9e:51:90:2f:d3:4f:71:d2:38:
8c:1b:0a:eb:29:3f:27:e9:3e:94:d6:3f:60:b7:40:e6:51:cb:
2d:29:aa:4d:dc:89:10:96:17:0f:a3:5f:a4:32:a0:cb:62:05:
d3:5e:c1:17:2d:af:cd:b8:5f:f8:de:8b:14:f2:89:98:53:50:
cc:14:f6:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:46 2024 by rpki-client on console-ams.rpki-client.org