Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/mlfHeLVHN14fCg6UNeFnFpkUeVM.roa
File: mlfHeLVHN14fCg6UNeFnFpkUeVM.roa (raw, json)
Hash identifier: 0m8sssAu55Zv3tEj6QbT+UIKOi/RAtHHwpVhWrnHSew=
Subject key identifier: 9A:57:C7:78:B5:47:37:5E:1F:0A:0E:94:35:E1:67:16:99:14:79:53
Certificate issuer: /CN=c613276cbca6793c33457a9bf22fc10b382301f4
Certificate serial: 018B1DE393F3F5B2FAEC52A43BAB5EB481D7
Authority key identifier: C6:13:27:6C:BC:A6:79:3C:33:45:7A:9B:F2:2F:C1:0B:38:23:01:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhMnbLymeTwzRXqb8i_BCzgjAfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/mlfHeLVHN14fCg6UNeFnFpkUeVM.roa
Signing time: Wed 11 Oct 2023 08:38:55 +0000
ROA not before: Wed 11 Oct 2023 08:38:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208844
IP address blocks: 45.82.128.0/24 maxlen: 24
2a13:fe40::/33 maxlen: 33
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:1d:e3:93:f3:f5:b2:fa:ec:52:a4:3b:ab:5e:b4:81:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c613276cbca6793c33457a9bf22fc10b382301f4
Validity
Not Before: Oct 11 08:38:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9a57c778b547375e1f0a0e9435e1671699147953
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:36:1c:d6:37:20:4a:0d:1a:e1:85:f2:85:f8:
d8:af:f0:fb:e1:b6:24:f3:cd:b8:76:13:1b:83:f1:
f3:a1:90:d0:d8:f3:81:fd:ad:b3:20:90:17:7b:5a:
63:ee:5c:68:1d:cd:df:e6:8d:3e:59:74:00:af:0c:
08:73:f0:f0:20:4d:e5:02:5c:9e:5f:19:60:e0:30:
e1:43:96:7d:f6:ba:c5:44:9e:00:d8:93:d6:bd:6a:
87:cf:cd:b4:60:e1:c9:55:2b:b2:fc:79:53:a7:8e:
10:9f:a8:e7:d4:e9:cb:51:cc:78:46:c7:22:eb:e5:
34:39:96:07:b1:63:69:e5:4c:66:77:32:c5:9d:40:
99:ea:b5:32:85:a8:af:e9:80:68:23:75:c5:3b:62:
b9:b3:6d:36:fc:f5:02:4e:5e:5d:51:be:2c:a0:94:
c7:68:0a:d6:4f:83:b1:fd:8b:8f:ca:77:96:5c:81:
bd:ed:c9:7d:79:16:32:75:17:bf:9f:70:16:bf:de:
a6:98:1a:9a:05:2d:5b:bc:80:92:19:3e:25:93:b0:
87:ad:fc:52:78:20:8b:ac:be:4c:be:fb:2f:ca:08:
a9:53:07:b5:01:75:81:cc:68:0c:2a:10:9f:70:02:
41:e8:78:8f:2b:bd:ba:64:e3:70:ab:90:d3:a8:e4:
22:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:57:C7:78:B5:47:37:5E:1F:0A:0E:94:35:E1:67:16:99:14:79:53
X509v3 Authority Key Identifier:
keyid:C6:13:27:6C:BC:A6:79:3C:33:45:7A:9B:F2:2F:C1:0B:38:23:01:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhMnbLymeTwzRXqb8i_BCzgjAfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/mlfHeLVHN14fCg6UNeFnFpkUeVM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.82.128.0/24
IPv6:
2a13:fe40::/33
Signature Algorithm: sha256WithRSAEncryption
60:da:c2:e1:2a:9c:27:2f:9d:31:9e:06:9d:b7:1d:c1:0a:a5:
22:ad:2a:77:cf:6f:60:b1:02:7d:6a:d8:0d:89:2f:28:5d:68:
c3:96:1e:95:0e:a2:65:25:4f:14:9a:24:17:2f:ce:a5:54:03:
89:e7:41:fa:a7:e1:ee:fb:cd:e5:b1:cc:28:a2:d2:7d:96:25:
79:53:03:a0:7e:fb:17:7c:c9:e3:8b:1c:ab:16:15:e7:e7:96:
57:05:aa:c0:90:e7:09:ee:7d:05:40:02:20:c9:81:0e:cb:b6:
fb:0d:f1:7a:f8:ad:35:69:ca:c5:fb:b2:b6:8c:89:1b:d4:25:
e7:60:01:38:53:dc:74:c8:14:94:52:cd:5f:22:4e:86:76:05:
29:4b:66:2e:86:66:79:fa:33:da:21:8e:7f:11:b6:07:d6:0d:
7f:58:bd:fa:fe:06:36:f7:1f:64:45:c8:f5:6d:5c:e1:41:ec:
18:cd:3f:fb:0b:cd:8e:eb:34:d5:1a:8b:72:7f:2b:42:41:94:
6a:f3:b8:1b:85:05:f0:af:1f:cf:84:49:b6:39:a3:5a:f6:be:
86:fe:ce:67:1a:9e:23:58:7a:b1:55:b7:63:17:a7:3f:b9:20:
8b:fc:42:5d:21:81:00:d4:2a:91:f8:0f:02:4a:b0:0e:13:72:
15:52:d4:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:23 2024 by rpki-client on console-fra.rpki-client.org