Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/Mjxjn7BQod6BENf7uLJ2mkpRJSM.roa
File: Mjxjn7BQod6BENf7uLJ2mkpRJSM.roa (raw, json)
Hash identifier: oTM4+/iQkvxeowMrhn7JDu2xv5wvmdrzykdbgiUNB94=
Subject key identifier: 32:3C:63:9F:B0:50:A1:DE:81:10:D7:FB:B8:B2:76:9A:4A:51:25:23
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 0191E2786E041BE99182B2AACE2B8E2E3DFA
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/Mjxjn7BQod6BENf7uLJ2mkpRJSM.roa
Signing time: Wed 11 Sep 2024 19:03:48 +0000
ROA not before: Wed 11 Sep 2024 19:03:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205220
IP address blocks: 5.178.105.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Nov 2024 18:21:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:e2:78:6e:04:1b:e9:91:82:b2:aa:ce:2b:8e:2e:3d:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Sep 11 19:03:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=323c639fb050a1de8110d7fbb8b2769a4a512523
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:14:62:af:69:9b:c3:a9:67:ac:6d:f0:e4:8f:
92:81:79:49:51:10:e2:76:e6:f0:77:29:c2:3c:98:
79:45:58:b5:56:ba:7a:8f:4f:b1:a9:48:12:0e:dd:
a0:2f:2f:92:51:b1:f6:4c:0f:15:69:42:63:55:19:
0b:74:5e:6a:14:5c:b8:fc:d0:ed:ef:83:fe:9f:4f:
2e:fc:85:da:46:48:e1:ae:51:00:97:95:5b:37:80:
02:80:2d:37:fe:4d:da:4f:f7:ad:bf:5d:0e:ad:e0:
cd:00:cd:41:14:f8:38:85:b5:be:e7:b3:8e:7f:c3:
14:9c:0d:b1:93:c7:3d:a1:dd:15:87:ef:29:c6:71:
8c:2d:62:e8:01:6b:74:95:63:97:cf:17:ed:a2:f6:
2a:d1:8a:b9:fe:e0:d6:62:4f:ef:c4:ff:b3:df:8b:
5f:eb:2b:68:c8:0b:c3:c4:cd:bf:6f:d5:9b:c4:af:
8b:15:58:cb:52:3a:b2:b4:64:e8:99:15:4f:10:06:
c5:09:f5:79:9a:6c:57:5f:6a:2c:64:4a:b7:c1:f0:
c9:72:e9:ac:b1:e8:ce:02:a9:d0:9b:e3:9a:d5:f3:
55:11:98:8f:6a:e7:a1:50:1a:49:a1:ee:7b:c0:5d:
67:d9:4a:3b:4f:87:b6:0c:aa:67:98:51:7e:5c:65:
f2:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:3C:63:9F:B0:50:A1:DE:81:10:D7:FB:B8:B2:76:9A:4A:51:25:23
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/Mjxjn7BQod6BENf7uLJ2mkpRJSM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.105.0/24
Signature Algorithm: sha256WithRSAEncryption
75:23:53:ea:1c:cd:ad:02:95:36:65:70:4b:d3:7c:3c:63:51:
10:11:39:9b:82:99:38:52:46:0a:fd:fe:3d:49:e6:e4:1a:2e:
3f:86:a8:07:93:91:45:c8:67:68:ff:ec:6f:aa:27:61:47:fc:
09:af:06:d0:28:20:a2:42:f7:c2:37:57:73:7d:81:df:45:d1:
cf:ab:82:ac:ad:1d:0d:c9:74:46:e8:0d:84:c5:cd:3f:88:54:
3a:64:dc:26:a9:ee:1e:12:ea:91:7f:c2:75:43:ca:45:96:1a:
42:d9:f6:ba:ef:a9:b4:2f:f6:05:a0:3a:de:03:b3:05:21:a8:
41:8a:05:4d:33:5d:f5:d2:27:03:55:02:fb:1e:40:b5:9e:dc:
e2:95:82:d1:98:a6:f2:0f:2a:f3:ea:c0:ea:6b:94:70:82:6f:
87:a8:87:20:0c:fd:ff:86:f4:4d:84:76:b0:ae:75:40:13:41:
23:a1:d1:54:fe:4b:ff:af:b3:da:13:92:98:a8:a8:74:12:dc:
e3:84:37:d9:23:64:ef:0c:f8:b1:ea:c2:de:76:84:7e:48:6e:
93:04:b3:f3:f6:b7:c2:88:16:8b:9f:d2:45:53:4d:5b:41:ae:
f2:29:3f:df:20:a7:8a:46:71:17:20:84:54:bc:a4:ce:21:9b:
0c:72:3f:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 11 21:27:32 2024 by rpki-client on console-ams.rpki-client.org