Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/mLgeb0stmWdlQwOF1syijyQ6Hl8.roa
File: mLgeb0stmWdlQwOF1syijyQ6Hl8.roa (raw, json)
Hash identifier: Ow3+YtETtUJeCfINqAjwL6VPzBvjmgGY7Svy6/b9bT0=
Subject key identifier: 98:B8:1E:6F:4B:2D:99:67:65:43:03:85:D6:CC:A2:8F:24:3A:1E:5F
Certificate issuer: /CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Certificate serial: 018D18F5B2A3C87AF626A19A95F6B03C4982
Authority key identifier: F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/mLgeb0stmWdlQwOF1syijyQ6Hl8.roa
Signing time: Wed 17 Jan 2024 19:46:11 +0000
ROA not before: Wed 17 Jan 2024 19:46:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59651
IP address blocks: 45.143.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Jan 2024 13:20:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:18:f5:b2:a3:c8:7a:f6:26:a1:9a:95:f6:b0:3c:49:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Validity
Not Before: Jan 17 19:46:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=98b81e6f4b2d996765430385d6cca28f243a1e5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:d6:a3:9d:af:20:70:1b:72:d4:de:3c:13:15:
64:29:9b:e6:52:d3:56:d6:cf:55:87:9c:6b:0b:3a:
0e:a9:c6:72:fe:8e:92:ca:00:4d:de:b0:c7:c9:51:
2b:8b:71:8d:4c:24:4f:c4:16:9e:26:1a:27:d3:84:
55:10:05:4c:c6:00:1f:77:69:d7:53:d6:0e:60:fa:
f5:c9:ed:90:61:6c:b8:81:cd:69:2a:b8:e4:cd:f6:
f5:e6:d0:a9:88:bc:19:83:1e:08:2b:ed:ee:b3:1f:
b4:fe:45:71:82:78:ab:95:00:ea:9b:a4:78:a3:2a:
18:5f:49:20:8c:da:45:fa:57:01:b9:43:4e:03:46:
0c:dd:ac:54:4a:1e:8f:cb:6d:cf:a4:c2:bd:67:e4:
ef:dc:ed:5e:39:da:3c:9a:86:17:80:af:7f:5f:9c:
18:a3:3e:e3:ef:ec:ce:14:89:49:a5:ed:05:21:db:
79:27:92:4d:e5:63:22:cb:17:5b:38:b3:cf:3c:cc:
88:af:e4:d5:de:56:bd:33:9f:8d:69:e5:5b:69:bd:
f6:c6:93:de:12:ee:18:9e:3e:2a:a6:a4:8a:d8:8e:
88:98:ca:11:e6:4a:3f:53:73:99:8f:60:d2:d1:fc:
c4:59:69:d7:c5:3f:04:c5:8f:a4:36:a1:ea:68:c5:
6e:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:B8:1E:6F:4B:2D:99:67:65:43:03:85:D6:CC:A2:8F:24:3A:1E:5F
X509v3 Authority Key Identifier:
keyid:F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/mLgeb0stmWdlQwOF1syijyQ6Hl8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.5.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:6e:62:14:d8:05:af:8e:f7:68:d2:1e:40:53:23:df:f1:a3:
6e:d5:2d:cd:0a:b1:54:c1:d0:22:c4:b4:c5:9d:41:77:85:41:
c1:ca:50:7b:86:b4:6a:b6:dd:ba:9a:20:a0:0c:25:2a:a6:3c:
df:b6:20:04:15:ad:da:09:34:c4:f8:0c:7d:ab:ea:1f:07:51:
b2:74:d5:9f:70:74:c1:d0:41:6e:24:e0:a8:48:af:5a:e4:17:
b3:57:19:64:ad:5c:9c:43:dd:35:84:f8:26:2e:fd:df:7d:ed:
38:11:4b:5a:7e:33:c7:a2:07:ef:bd:d0:61:d5:5a:39:7f:8a:
8a:95:17:b9:4d:68:26:ff:61:f3:86:e4:78:c6:42:bf:b2:ac:
19:bb:b4:23:8d:dd:9a:ce:4f:f5:c9:d5:0e:f8:aa:80:70:b2:
99:67:d4:1d:b4:1a:2b:64:f7:db:de:f4:61:72:e2:e9:34:3a:
fb:dc:e0:21:6d:b3:d4:7d:3c:a4:d2:74:06:85:06:73:68:46:
c5:d0:58:29:a6:6b:ab:67:ba:37:68:86:bd:f5:75:29:ff:e7:
c0:f8:df:96:41:66:a0:94:5c:90:23:e7:54:bb:61:28:45:08:
26:e1:95:14:28:d4:e5:d9:ce:bf:be:cd:7e:41:27:59:a2:16:
f2:1b:28:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:55 2024 by rpki-client on console-fra.rpki-client.org