Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/mBHxfpna5F4WkD4HkbGf9P-rAW0.roa
File: mBHxfpna5F4WkD4HkbGf9P-rAW0.roa (raw, json)
Hash identifier: OmPFAMip3Cx/HrlhxvIGnjj9N8IFCB0nSmhZEPvb2T8=
Subject key identifier: 98:11:F1:7E:99:DA:E4:5E:16:90:3E:07:91:B1:9F:F4:FF:AB:01:6D
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 01932AAB9D85B67B1D7AA0A1BE27A4981FDA
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/mBHxfpna5F4WkD4HkbGf9P-rAW0.roa
Signing time: Thu 14 Nov 2024 12:35:10 +0000
ROA not before: Thu 14 Nov 2024 12:35:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16276
IP address blocks: 45.155.254.0/24 maxlen: 24
185.250.26.0/24 maxlen: 24
185.250.27.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Nov 2024 09:46:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:2a:ab:9d:85:b6:7b:1d:7a:a0:a1:be:27:a4:98:1f:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Nov 14 12:35:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9811f17e99dae45e16903e0791b19ff4ffab016d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:2b:df:80:f9:a5:34:6d:f6:14:05:78:4e:d4:
02:37:d7:02:c7:c4:9b:80:d3:e6:0d:2b:3b:13:cb:
32:c8:c5:5a:c4:b3:35:fd:bf:e6:68:f1:ea:e6:63:
67:c1:01:37:cc:ca:e9:1a:a0:fe:b1:08:72:35:3c:
bf:dd:79:af:a2:df:d5:84:de:15:cf:05:2d:72:23:
df:cb:f1:78:b1:88:7a:32:db:f2:94:01:1c:6b:b2:
52:02:6c:79:95:4e:be:37:c3:9c:a0:43:6e:b0:e2:
c4:a7:36:4a:7c:82:c5:46:c0:bb:4c:63:65:a7:ba:
64:37:f5:f6:a4:0c:43:52:2b:68:0d:32:bf:a4:85:
08:54:01:f1:fe:b3:c9:e4:ba:b4:6a:0d:77:e3:3e:
1c:3f:9e:2f:67:ae:08:fd:f9:a2:db:75:53:61:28:
5c:ea:5c:57:73:ae:60:bc:83:8d:94:a9:e8:b5:ad:
67:4c:09:1f:b4:35:bd:94:25:4e:18:03:9c:d4:24:
21:79:a9:d3:07:1b:7e:bc:af:7d:a8:79:22:fe:8b:
f3:1d:8d:ea:31:8f:ba:a7:a4:0e:17:b5:79:6d:cd:
09:56:61:80:37:cb:da:7f:cf:cc:5d:fd:38:c8:71:
18:f0:74:66:1b:ea:e1:81:b5:d5:ac:fd:66:08:3d:
60:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:11:F1:7E:99:DA:E4:5E:16:90:3E:07:91:B1:9F:F4:FF:AB:01:6D
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/mBHxfpna5F4WkD4HkbGf9P-rAW0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.254.0/24
185.250.26.0/23
Signature Algorithm: sha256WithRSAEncryption
32:1c:bb:a8:85:95:14:a1:e5:c3:7a:75:4a:eb:ab:02:a4:31:
96:eb:75:b8:44:d8:1c:45:ed:7e:44:01:d3:96:00:08:42:b8:
fb:73:1d:d4:f8:26:bd:14:6a:55:c0:e2:2f:9a:ab:ed:bf:f6:
88:6c:63:68:cb:1b:da:bb:a9:0c:26:ec:78:44:56:bd:8e:46:
76:be:19:6a:54:36:d0:5f:53:2d:ea:2e:7d:a1:a4:85:46:51:
a4:d3:0c:06:dc:57:f0:96:a5:28:cb:ae:a2:2d:b3:9c:02:82:
55:91:87:ee:92:bd:af:1a:4c:e3:cd:a7:d7:f9:b9:bf:33:23:
07:2c:48:cf:41:89:b5:b4:f9:61:ce:80:41:77:4b:1a:01:32:
46:d5:01:80:df:25:22:0f:73:3b:87:c4:80:f4:23:ec:24:e3:
b6:1c:59:c0:af:49:9b:25:75:4a:5d:98:c4:0c:9f:24:33:a0:
58:3b:8d:45:55:05:a9:ba:c4:ef:a7:4c:54:42:38:cd:e0:ab:
9c:0b:f4:78:56:e6:90:d6:7d:78:f5:ea:3e:28:f2:4a:c4:79:
e1:48:6a:de:38:7f:fa:c4:47:62:14:be:b5:01:29:34:45:fd:
6b:25:96:ad:a0:e1:da:db:45:87:8e:92:73:60:8c:f1:7f:96:
2f:a0:e9:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 18 12:16:04 2024 by rpki-client on console-fra.rpki-client.org