Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/MmJm_mJaudQmE5Td1XSHRqZ5iVg.roa
File: MmJm_mJaudQmE5Td1XSHRqZ5iVg.roa (raw, json)
Hash identifier: wKwvNREhP/X6OezB0ibxT7iaix4ZZ+lJM1tYY2aPCbA=
Subject key identifier: 32:62:66:FE:62:5A:B9:D4:26:13:94:DD:D5:74:87:46:A6:79:89:58
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 018CA6439E977C27624A2018D6B81E308804
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/MmJm_mJaudQmE5Td1XSHRqZ5iVg.roa
Signing time: Tue 26 Dec 2023 13:14:58 +0000
ROA not before: Tue 26 Dec 2023 13:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21859
IP address blocks: 45.157.211.0/24 maxlen: 24
79.98.246.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:a6:43:9e:97:7c:27:62:4a:20:18:d6:b8:1e:30:88:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Dec 26 13:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=326266fe625ab9d4261394ddd5748746a6798958
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:9c:1c:82:29:97:0b:bb:41:c4:90:af:2d:e5:
ba:82:8c:71:2b:2c:41:ba:b9:61:8c:ce:75:a4:75:
06:75:64:c5:5e:8d:6d:07:70:ad:5f:52:4e:b0:d9:
13:15:7e:c4:ef:dc:4c:62:c3:d2:6e:6b:4a:cc:e4:
de:6a:77:e1:10:97:39:8e:6a:f1:83:66:45:7c:28:
7d:8e:6e:f4:5e:e4:f3:e1:0d:ba:f4:34:62:a4:39:
65:d9:5f:8e:68:a6:bb:49:0d:04:38:69:96:0e:2f:
60:86:1a:50:71:e6:73:e8:c1:8d:42:5a:cf:43:e4:
8f:26:c9:9a:8e:16:03:b4:c4:28:99:9e:a8:4d:f5:
52:a1:a7:1f:e1:b9:55:9b:c4:b1:ee:1d:77:39:48:
d6:4d:80:1c:71:44:c4:73:b1:b8:fe:2a:18:fb:6d:
f6:d5:c1:4a:de:3d:6b:e2:b6:8d:af:9e:9b:bf:4a:
aa:25:eb:81:f4:e1:fb:af:bb:d2:75:cb:f1:ee:89:
b3:d6:ee:a3:c8:ba:ef:d3:e1:cb:13:9c:e9:4b:06:
12:f6:4c:0d:a1:d5:b6:6a:f8:35:e5:0c:17:c8:d8:
77:9d:38:a5:4b:bf:a5:ae:21:50:38:c9:37:49:6b:
fe:64:b4:39:ed:ec:1a:87:ca:f2:f6:4b:bc:c2:cd:
da:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:62:66:FE:62:5A:B9:D4:26:13:94:DD:D5:74:87:46:A6:79:89:58
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/MmJm_mJaudQmE5Td1XSHRqZ5iVg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.211.0/24
79.98.246.0/23
Signature Algorithm: sha256WithRSAEncryption
7b:96:6c:ae:18:90:6d:ab:38:5a:e8:86:4b:53:58:48:66:2e:
cb:8c:1f:e2:4d:e1:b2:ee:da:5d:bd:af:53:fc:05:3d:4a:7a:
77:2b:97:0a:aa:2b:e6:75:a0:7c:c2:69:ff:2e:74:12:ba:02:
52:1b:2e:31:d7:30:56:86:8a:a4:44:3e:05:52:b7:80:b6:8c:
d2:6f:aa:07:41:b3:f8:b1:68:e0:b9:43:b9:70:25:d2:18:52:
b1:10:9c:bc:af:33:52:57:22:bc:87:8b:6a:e8:e0:39:65:64:
e9:ca:aa:99:68:56:b9:f7:27:db:01:5f:4b:24:c0:34:f8:0b:
c4:0f:9e:c1:f2:e8:ed:8c:31:ad:24:7a:25:db:66:09:0b:a7:
55:61:ae:cb:6c:3f:c9:4a:69:f4:95:90:b2:73:e8:d4:fc:ea:
0e:cc:11:66:48:0f:a1:00:51:1d:62:6d:63:4f:d2:09:1d:59:
6b:a5:03:71:c1:e7:5c:99:77:2d:ac:eb:e4:3c:99:73:8f:47:
46:39:72:de:4a:17:86:be:5c:fe:ce:b5:eb:e2:75:d3:67:d1:
fa:b1:62:44:fc:d2:cb:c2:2f:00:d6:65:bb:04:38:83:b5:7c:
c9:59:cf:7d:4d:eb:f7:83:84:94:4b:e1:27:e4:75:38:60:ca:
eb:3d:56:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:35 2024 by rpki-client on console-ams.rpki-client.org