Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/MkFVULjg0wCG2y_kebu9m3xIzz0.roa
File: MkFVULjg0wCG2y_kebu9m3xIzz0.roa (raw, json)
Hash identifier: GgpFnnfH6sCHUJHJm87LQAQDKOP77NXrxmFedlkouv4=
Subject key identifier: 32:41:55:50:B8:E0:D3:00:86:DB:2F:E4:79:BB:BD:9B:7C:48:CF:3D
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 018CC2DB284664542A8EE5ADD574D5D1F74B
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/MkFVULjg0wCG2y_kebu9m3xIzz0.roa
Signing time: Mon 01 Jan 2024 02:29:51 +0000
ROA not before: Mon 01 Jan 2024 02:29:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39690
IP address blocks: 45.143.44.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 17 Apr 2024 09:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:28:46:64:54:2a:8e:e5:ad:d5:74:d5:d1:f7:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Jan 1 02:29:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=32415550b8e0d30086db2fe479bbbd9b7c48cf3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:74:02:2b:a2:58:14:75:2a:b0:1e:ff:d0:1e:
dc:05:dd:fd:6f:73:c2:b5:7a:6f:9b:07:34:53:6b:
33:6e:66:17:25:a1:0d:49:da:90:08:27:3d:9f:90:
3d:49:22:1f:27:89:53:09:00:35:47:39:ad:8e:8e:
35:4b:16:b3:3b:e9:31:a9:7e:d7:1d:9c:92:34:01:
07:2b:2f:be:35:9e:7c:2a:eb:99:13:0a:c2:6c:1e:
f1:7f:9c:64:d3:06:da:e7:67:3d:64:d3:f4:fd:a0:
96:4a:de:b6:86:4e:69:7f:a1:a0:4a:fb:2a:ef:e4:
08:b8:3a:4e:6e:d0:7b:35:7a:b3:fe:6d:54:3e:ff:
93:86:ea:ff:18:15:83:d8:12:23:bc:10:12:32:c6:
b2:35:73:a6:d4:ef:90:43:0c:70:b7:c1:40:34:79:
67:91:d5:29:ef:31:9b:84:ee:8a:3c:f3:f1:c0:48:
5c:b3:8b:2d:15:63:70:49:ef:80:d1:0a:55:cf:67:
ae:db:1d:63:59:34:ff:4c:d9:db:77:16:7f:33:b5:
2a:15:a2:72:a7:13:28:12:cc:58:30:84:1a:a0:85:
4a:6e:30:e8:cf:2b:76:fe:0f:ab:7c:3b:34:3f:31:
8d:65:cf:83:01:83:02:a8:32:06:23:cd:1d:07:5a:
eb:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:41:55:50:B8:E0:D3:00:86:DB:2F:E4:79:BB:BD:9B:7C:48:CF:3D
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/MkFVULjg0wCG2y_kebu9m3xIzz0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.44.0/22
Signature Algorithm: sha256WithRSAEncryption
28:f6:61:91:cd:ea:be:00:eb:75:5b:ef:9e:6e:e4:df:a6:6a:
d7:24:e8:8c:2f:54:62:b4:2f:86:90:e2:06:48:f7:ba:60:69:
72:a9:e6:d1:af:07:d8:9d:aa:3c:fd:da:cb:33:e7:14:80:db:
16:e4:8e:4d:29:40:1e:84:4f:5d:c7:1c:e5:ec:6b:fb:95:a2:
8a:42:eb:2a:e0:97:cb:4a:14:7b:c7:d8:be:a0:c1:38:93:bc:
a6:e5:c0:f7:2a:6d:d1:68:e8:e8:cb:e0:02:af:af:1b:21:a8:
15:0e:5d:b9:68:b9:88:95:e6:b2:14:41:ca:37:cf:a0:39:7e:
db:aa:89:e3:15:0c:b4:d4:83:5e:02:ad:1c:3d:38:b2:6f:ff:
ec:d0:32:a5:91:a9:7d:78:48:67:f2:2d:51:66:c4:6b:90:c1:
be:23:47:3a:51:f2:fe:6c:8c:84:5a:66:2d:2d:58:71:a7:26:
be:7e:89:7a:38:3b:e0:6b:93:73:d0:f5:df:03:08:10:9d:42:
36:0a:37:af:dd:fd:f1:59:a6:7f:4d:9c:17:34:c9:17:1b:6c:
15:ae:8e:76:12:a8:83:cc:da:bc:86:8c:dd:7d:7d:9c:5c:1d:
07:45:09:65:4a:a7:58:1e:97:8d:50:23:b5:1e:bc:d1:2f:f1:
97:58:c7:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 17 12:33:45 2024 by rpki-client on console-ams.rpki-client.org