Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/ac9af6-7fc3-4d13-a594-060a4738091d/1/mel42_s42eKnnnk99wrCN3OXrk0.roa
File: mel42_s42eKnnnk99wrCN3OXrk0.roa (raw, json)
Hash identifier: gSoVdR/sW4KhiZuseBd+N6/EnwDRjZnsx1H9RR1LBSY=
Subject key identifier: 99:E9:78:DB:FB:38:D9:E2:A7:9E:79:3D:F7:0A:C2:37:73:97:AE:4D
Certificate issuer: /CN=53b46ab79b9fc58f5dc4cf29d72dc5267ec3edde
Certificate serial: 018FE886A03D7F0465648B7DF3D091A45F10
Authority key identifier: 53:B4:6A:B7:9B:9F:C5:8F:5D:C4:CF:29:D7:2D:C5:26:7E:C3:ED:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U7Rqt5ufxY9dxM8p1y3FJn7D7d4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/ac9af6-7fc3-4d13-a594-060a4738091d/1/mel42_s42eKnnnk99wrCN3OXrk0.roa
Signing time: Wed 05 Jun 2024 13:11:27 +0000
ROA not before: Wed 05 Jun 2024 13:11:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200712
IP address blocks: 80.254.231.0/24 maxlen: 24
2a13:5240::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 16 Sep 2024 16:21:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e8:86:a0:3d:7f:04:65:64:8b:7d:f3:d0:91:a4:5f:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53b46ab79b9fc58f5dc4cf29d72dc5267ec3edde
Validity
Not Before: Jun 5 13:11:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=99e978dbfb38d9e2a79e793df70ac2377397ae4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:f7:39:e4:70:6d:2e:c1:a5:2e:55:75:b6:c3:
9a:13:1c:ad:02:4e:48:40:80:c5:f4:9f:60:48:11:
8f:0e:d2:6c:9c:a6:6a:d9:e6:58:9b:2e:49:4f:be:
58:28:97:af:33:c6:ae:10:bd:7e:61:6f:73:70:d8:
1d:21:c6:45:e7:5f:5c:f2:eb:ca:c1:9a:92:9c:54:
b2:29:4f:cb:25:ff:53:d8:d4:56:ae:6f:bf:d9:f3:
a6:47:d0:d2:04:ae:a3:4c:28:0e:b8:2d:ae:14:27:
31:b2:60:e8:97:4f:53:f1:bb:23:8d:79:de:5c:71:
9c:c7:a2:a0:dd:03:50:c3:e1:90:f7:03:da:43:33:
7c:0c:3b:e1:c3:eb:90:a3:bd:18:65:f5:52:4b:05:
9e:0a:c5:a5:ad:e6:65:ce:b0:a7:3e:86:17:ec:8e:
8e:94:0f:7e:67:ff:f8:57:13:ec:75:56:f5:7c:6c:
0c:1e:eb:27:4b:c0:2e:79:20:09:05:c8:db:b4:e4:
19:d4:81:33:a2:65:30:bf:83:27:a0:2e:8e:31:34:
70:b0:02:34:8f:c8:89:96:29:e8:87:c4:67:62:41:
5c:9a:23:f6:44:7b:fc:a4:97:17:0c:d6:36:1d:a4:
ec:fa:35:4d:71:e3:81:da:46:3d:52:cb:cb:d8:c5:
77:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:E9:78:DB:FB:38:D9:E2:A7:9E:79:3D:F7:0A:C2:37:73:97:AE:4D
X509v3 Authority Key Identifier:
keyid:53:B4:6A:B7:9B:9F:C5:8F:5D:C4:CF:29:D7:2D:C5:26:7E:C3:ED:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7Rqt5ufxY9dxM8p1y3FJn7D7d4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/ac9af6-7fc3-4d13-a594-060a4738091d/1/mel42_s42eKnnnk99wrCN3OXrk0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/ac9af6-7fc3-4d13-a594-060a4738091d/1/U7Rqt5ufxY9dxM8p1y3FJn7D7d4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.254.231.0/24
IPv6:
2a13:5240::/32
Signature Algorithm: sha256WithRSAEncryption
81:f4:7c:23:2e:12:b9:f6:26:eb:1d:ce:8d:4f:dc:6f:a5:4e:
5a:45:23:6f:35:41:1f:ea:17:0a:ff:cd:24:12:fa:b4:8b:2f:
4b:fa:6d:9e:ef:3e:d9:a9:24:0e:19:e4:dc:27:ac:ac:a8:8a:
6b:63:1d:df:4d:14:39:66:48:96:d2:32:f3:4c:72:f3:ba:b1:
d9:fe:72:f5:d7:66:b5:c2:38:2a:70:cb:50:1b:8f:f6:8b:7b:
bd:26:db:45:67:76:a9:31:c8:d6:30:11:bc:c8:39:11:0c:fe:
43:d3:0a:75:8a:6a:20:a4:01:18:41:06:fb:37:1b:7b:f5:08:
d9:cd:14:06:a2:f0:06:94:9c:17:96:51:b2:d9:42:6c:8b:bd:
35:38:7d:8d:32:73:76:1f:f4:26:b9:2d:c9:92:94:99:c4:e0:
d0:b4:cb:7d:be:7b:35:33:6a:87:e6:ee:c6:9f:a5:a7:58:85:
8a:e0:f6:5a:b7:53:fd:0e:e0:ce:f3:07:1f:c3:4a:87:8a:01:
a1:9a:b1:77:06:a8:bc:96:cd:98:05:f3:51:16:77:a9:5d:a3:
17:0f:68:b2:ba:20:f3:c2:34:58:5e:2b:05:e1:81:3f:2a:74:
e4:39:b5:58:38:c6:33:8b:8c:44:cd:38:88:c2:74:b8:98:e5:
a5:a1:a6:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 16 22:26:24 2024 by rpki-client on console-ams.rpki-client.org