Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/d70833-68eb-4100-9123-94e1ab575094/1/mamkhUvaSGgpP63TeZ2yzdh5NGc.roa
File: mamkhUvaSGgpP63TeZ2yzdh5NGc.roa (raw, json)
Hash identifier: 9mrtNzkRPVHuRk+LOkafW5BSIUiyzZ7CE1jxSPrld5Q=
Subject key identifier: 99:A9:A4:85:4B:DA:48:68:29:3F:AD:D3:79:9D:B2:CD:D8:79:34:67
Certificate issuer: /CN=e26b61851652fc8fedc011a6f22f7ae9b6beb0a3
Certificate serial: 018CC3B73F3367F382ED3762F11C0F285ADD
Authority key identifier: E2:6B:61:85:16:52:FC:8F:ED:C0:11:A6:F2:2F:7A:E9:B6:BE:B0:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4mthhRZS_I_twBGm8i966ba-sKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/d70833-68eb-4100-9123-94e1ab575094/1/mamkhUvaSGgpP63TeZ2yzdh5NGc.roa
Signing time: Mon 01 Jan 2024 06:30:15 +0000
ROA not before: Mon 01 Jan 2024 06:30:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34643
IP address blocks: 5.253.128.0/24 maxlen: 24
5.253.131.0/24 maxlen: 24
5.253.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 Jan 2024 23:15:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b7:3f:33:67:f3:82:ed:37:62:f1:1c:0f:28:5a:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e26b61851652fc8fedc011a6f22f7ae9b6beb0a3
Validity
Not Before: Jan 1 06:30:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=99a9a4854bda4868293fadd3799db2cdd8793467
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ad:a9:5f:08:9f:3f:ef:39:44:0a:b8:52:92:
bc:28:6c:f0:01:c0:e0:d8:22:f0:79:48:ba:f0:cc:
23:b9:52:66:97:34:67:bc:73:e5:f6:fa:7d:c5:8a:
bf:39:bf:23:89:52:aa:54:56:1f:16:87:72:03:26:
a1:53:90:74:0e:cc:42:61:53:c3:61:3d:90:f0:9a:
71:4c:06:04:fb:cf:46:b9:39:48:39:9b:e2:eb:a6:
5d:07:84:e1:6a:ea:35:6b:9b:93:6d:6a:df:3a:98:
68:1c:b9:95:16:e6:32:2f:17:e8:69:35:95:21:53:
04:59:f9:5b:a6:ef:66:04:af:c3:21:e0:2f:a2:82:
01:71:96:1b:3e:db:33:d8:8d:ba:ae:0a:5d:b5:5d:
50:97:e1:6e:67:bb:74:24:5a:64:b2:85:71:85:aa:
8e:a6:dd:cb:7c:d1:46:cb:cf:0a:9a:f1:16:9a:db:
6e:ff:92:36:23:ab:83:4a:1d:01:d4:25:ba:51:99:
23:2c:6f:88:e6:01:fd:67:a6:df:08:b2:06:fb:42:
72:bb:e5:ab:ba:ab:54:41:b3:b8:b8:32:e2:fd:a1:
75:29:c9:36:71:a9:ad:1f:ed:30:4e:b9:db:44:51:
50:af:1a:57:49:45:32:07:74:ed:df:d3:ed:7f:7c:
d7:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:A9:A4:85:4B:DA:48:68:29:3F:AD:D3:79:9D:B2:CD:D8:79:34:67
X509v3 Authority Key Identifier:
keyid:E2:6B:61:85:16:52:FC:8F:ED:C0:11:A6:F2:2F:7A:E9:B6:BE:B0:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4mthhRZS_I_twBGm8i966ba-sKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d70833-68eb-4100-9123-94e1ab575094/1/mamkhUvaSGgpP63TeZ2yzdh5NGc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d70833-68eb-4100-9123-94e1ab575094/1/4mthhRZS_I_twBGm8i966ba-sKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.128.0/23
5.253.131.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:91:be:6e:9e:66:34:04:f5:e5:50:0c:b1:f9:32:77:27:66:
e1:d2:09:b4:1c:01:6e:f8:46:1f:0e:ee:82:ef:65:11:02:0d:
c9:bc:79:2a:99:48:dc:93:30:a8:56:a3:a7:ff:2d:ba:ec:8e:
19:76:e6:8e:f2:e6:91:94:08:c2:02:f8:14:b8:48:fe:53:93:
62:4d:06:52:d2:96:81:92:04:1e:6c:4c:0d:ab:eb:c0:fd:5b:
b7:0a:23:24:64:4f:2b:15:ef:7d:86:58:b9:2d:35:51:00:47:
f9:7f:db:8e:75:39:a3:c0:c3:e5:25:12:59:47:55:37:b8:9a:
60:72:62:7e:fc:56:c3:da:26:06:be:56:df:c6:fe:c4:53:1f:
84:7e:1f:d0:7a:4a:89:4a:c6:1a:ac:37:12:b7:4e:60:51:bd:
2b:f5:97:5d:63:03:e9:cf:fa:15:8a:83:51:71:06:ad:c7:03:
17:0a:b1:ad:21:c5:e6:f5:62:38:7b:10:24:56:e6:43:d6:76:
19:ec:b4:4c:05:50:76:5f:d7:be:33:c0:b1:92:cb:8c:c6:4d:
f8:28:76:4d:10:d2:40:9e:45:ed:24:4f:18:e4:09:89:ee:4a:
84:f5:bb:70:4d:7d:a5:f2:c5:26:85:0c:c6:92:58:27:28:c2:
70:e8:e0:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:31 2024 by rpki-client on console-ams.rpki-client.org