Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/MTnIpGEgWb9Fm6MR7qrNS-alJtE.roa
File: MTnIpGEgWb9Fm6MR7qrNS-alJtE.roa (raw, json)
Hash identifier: s46HF5hVS6N1LLlhzLwKOEFlRrVzI0Eacv+R6t9fpYA=
Subject key identifier: 31:39:C8:A4:61:20:59:BF:45:9B:A3:11:EE:AA:CD:4B:E6:A5:26:D1
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 01903E715A9732B74169761DF066ABC21337
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/MTnIpGEgWb9Fm6MR7qrNS-alJtE.roa
Signing time: Sat 22 Jun 2024 05:35:34 +0000
ROA not before: Sat 22 Jun 2024 05:35:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 87.248.158.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:50:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:3e:71:5a:97:32:b7:41:69:76:1d:f0:66:ab:c2:13:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: Jun 22 05:35:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3139c8a4612059bf459ba311eeaacd4be6a526d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:45:f1:5a:ac:9e:c5:cb:25:ac:bd:2d:c9:00:
15:1e:9c:65:09:ab:06:90:38:53:48:7f:9e:c5:46:
ee:c1:b8:82:86:bb:37:16:e5:5c:be:c0:0b:dd:aa:
e5:d8:da:06:6d:37:92:70:5c:cc:18:21:00:59:9c:
14:b1:bc:a1:e8:3c:0f:cd:bb:ab:5a:33:fd:16:12:
83:0d:ca:2a:ec:fe:e5:eb:66:89:90:31:2d:aa:ee:
21:4e:90:19:6e:17:27:37:66:0c:26:be:04:38:2e:
0c:c7:ec:4b:d8:df:b9:1c:8b:a8:58:b0:70:33:41:
2c:29:23:b6:ed:9a:d4:b7:c9:3d:81:d7:2f:52:67:
07:a4:62:aa:ec:a8:c2:17:ea:a6:95:88:1f:6e:70:
13:cc:82:47:3d:e1:79:60:07:18:0d:0d:86:55:cb:
46:2d:2a:2c:eb:87:78:76:95:e4:5c:7e:16:24:6d:
e9:6b:d7:7f:12:44:3e:c4:55:6d:74:44:b3:09:9d:
57:02:37:97:a9:33:cf:cf:a9:28:01:c4:2c:9e:ad:
7d:25:f7:41:49:74:27:8a:68:b2:25:e2:17:ea:6b:
31:9b:23:6c:6f:6b:42:9d:40:76:46:01:3d:54:9c:
ae:96:38:54:c6:c7:46:c5:c3:d7:5d:12:d5:e0:7f:
81:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:39:C8:A4:61:20:59:BF:45:9B:A3:11:EE:AA:CD:4B:E6:A5:26:D1
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/MTnIpGEgWb9Fm6MR7qrNS-alJtE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.158.0/24
Signature Algorithm: sha256WithRSAEncryption
16:7e:e2:9b:96:bd:b2:c5:95:c3:f3:9e:97:ef:52:10:39:ce:
e6:1f:85:e6:13:8e:98:f6:82:ca:39:52:e1:c5:bd:eb:65:02:
e5:47:23:54:ed:84:f5:50:6b:c3:44:80:51:07:03:64:e7:cc:
91:fd:d8:40:75:f5:25:fc:33:9c:54:e2:6e:db:08:55:4c:50:
cd:f1:04:fb:68:19:2a:c1:f9:1b:44:00:92:4c:44:ec:29:d1:
c6:5a:a6:bf:0b:dd:33:5d:03:31:77:08:78:c3:bb:33:e4:fa:
f8:b8:02:9d:ca:19:0a:13:9b:7b:93:b3:51:a2:12:72:ba:a1:
c2:31:3c:3d:28:2e:64:af:55:29:ba:c5:59:c9:bf:90:05:89:
6d:45:6d:75:e5:30:eb:7d:af:89:2b:9a:b8:2d:9e:71:71:96:
11:9e:c9:90:c6:27:ad:a7:29:40:dc:d0:ba:05:d7:4e:ed:6d:
bb:49:51:8e:0f:b9:5d:00:12:55:9f:17:13:62:0c:f9:e1:0a:
3e:8b:ee:72:66:fd:37:ac:20:d1:d2:ab:f7:7a:10:99:34:b1:
eb:67:e0:e7:9b:26:fc:63:1c:20:e2:05:e4:15:78:b6:e0:e1:
a4:de:df:74:fa:e1:cd:1d:b1:2f:b4:f7:1a:bb:6a:db:61:81:
a5:56:8d:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:28:30 2025 by rpki-client