Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/5b4185-b080-498e-8cc7-6a6af5b74d38/1/mFoIcXL6JFQGQdysHt6juziriSU.roa
File: mFoIcXL6JFQGQdysHt6juziriSU.roa (raw, json)
Hash identifier: Qs4PB+X9aT7mOCAZISFEtFvM9pz9DkL5QxdI5vMU63c=
Subject key identifier: 98:5A:08:71:72:FA:24:54:06:41:DC:AC:1E:DE:A3:BB:38:AB:89:25
Certificate issuer: /CN=d2323101b29596ff442d3749373b8e9983354670
Certificate serial: 018B3EED62E450D7A309D1C7C27F7A4E1E42
Authority key identifier: D2:32:31:01:B2:95:96:FF:44:2D:37:49:37:3B:8E:99:83:35:46:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0jIxAbKVlv9ELTdJNzuOmYM1RnA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/5b4185-b080-498e-8cc7-6a6af5b74d38/1/mFoIcXL6JFQGQdysHt6juziriSU.roa
Signing time: Tue 17 Oct 2023 18:37:06 +0000
ROA not before: Tue 17 Oct 2023 18:37:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198310
IP address blocks: 45.152.27.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:3e:ed:62:e4:50:d7:a3:09:d1:c7:c2:7f:7a:4e:1e:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2323101b29596ff442d3749373b8e9983354670
Validity
Not Before: Oct 17 18:37:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=985a087172fa24540641dcac1edea3bb38ab8925
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:fb:e9:ef:1e:4c:a8:d0:af:75:7d:da:c5:10:
c9:cf:1e:07:08:36:5c:48:0c:24:29:ee:61:b2:25:
e4:5f:34:5e:6d:35:df:40:f0:fb:d3:0c:46:1d:c4:
5a:f9:24:5f:79:6c:c6:b6:9d:a0:37:53:dc:45:7a:
c4:d5:75:05:0c:2c:8d:e7:11:37:50:e0:26:38:73:
e8:6d:db:b3:f4:bd:e4:17:08:2b:6b:16:f2:eb:ec:
7a:50:0b:11:7e:2e:14:88:87:f1:ad:09:c2:29:f7:
ee:60:6c:71:f0:2f:28:a6:d8:5e:c9:a2:dc:58:7e:
89:d4:f0:6e:61:5d:bb:47:19:d5:6f:00:c1:6f:f6:
26:fb:25:70:21:34:21:dc:9e:48:65:3b:ad:f7:4e:
8f:c2:64:43:bd:74:4a:28:74:b5:0f:8c:ef:80:f2:
2d:ab:be:6a:a6:04:2e:fc:eb:3c:8e:a7:17:26:4a:
dd:50:fb:f9:cb:32:3d:89:9c:1e:48:39:b6:5c:1e:
e1:dd:33:af:88:42:98:59:bd:47:84:c0:81:43:c0:
c9:ba:ef:98:e8:0a:73:f2:c7:14:a5:0a:0c:01:c5:
2b:eb:71:bc:9a:51:da:19:ff:c4:82:e5:7e:2c:a8:
39:4b:7a:33:0d:0b:33:5f:ef:d9:75:31:ae:49:a5:
d4:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:5A:08:71:72:FA:24:54:06:41:DC:AC:1E:DE:A3:BB:38:AB:89:25
X509v3 Authority Key Identifier:
keyid:D2:32:31:01:B2:95:96:FF:44:2D:37:49:37:3B:8E:99:83:35:46:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0jIxAbKVlv9ELTdJNzuOmYM1RnA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/5b4185-b080-498e-8cc7-6a6af5b74d38/1/mFoIcXL6JFQGQdysHt6juziriSU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/5b4185-b080-498e-8cc7-6a6af5b74d38/1/0jIxAbKVlv9ELTdJNzuOmYM1RnA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.27.0/24
Signature Algorithm: sha256WithRSAEncryption
55:71:25:e8:8b:43:20:92:41:ab:9f:ce:03:d3:18:a9:15:b6:
49:76:06:8a:5e:fe:85:56:2b:07:9c:9d:52:53:b6:1a:b4:3c:
c7:85:9f:7e:bb:00:13:7c:8e:09:ba:02:96:ff:28:b9:89:ce:
d3:9d:89:a0:70:72:f2:6f:36:9f:69:6f:81:59:f1:ed:6f:bb:
5d:f0:7d:5f:e7:65:2f:3b:5d:72:1c:05:6d:98:64:24:e1:be:
98:e1:ca:2a:d9:80:aa:03:c5:c9:a9:99:a9:13:5f:6e:79:ac:
e3:cd:47:51:b6:b4:1e:0d:34:5d:61:5c:1c:e7:27:0c:89:9c:
a5:25:5b:a0:ab:96:b0:cd:7e:c0:b6:0d:bf:3f:2e:64:06:4d:
ed:c1:cc:90:6a:fe:15:59:36:09:65:6b:c7:00:5d:51:55:df:
9f:b8:e0:ae:12:76:99:fe:c2:ff:ac:d5:4b:7a:f2:2d:52:a9:
51:69:35:c7:45:7b:88:d5:33:b4:c9:bb:b7:c6:3f:12:a4:a0:
8d:e9:98:38:d3:ab:ef:32:be:01:52:01:fe:89:6b:f2:06:6e:
f9:5c:b8:c8:69:f9:ce:07:60:3e:6e:ae:df:f9:eb:4f:a4:09:
4b:95:f7:6c:a5:ab:ef:b2:f8:22:a5:67:d8:04:c0:84:7d:f8:
21:48:24:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:30 2024 by rpki-client on console-fra.rpki-client.org