Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/fb4696-678f-4d45-a091-fd7f17bb1a5c/1/MxNvh-eeHttySYpABHhZd7cvHUY.roa
File: MxNvh-eeHttySYpABHhZd7cvHUY.roa (raw, json)
Hash identifier: iRak2LEQLHpwq7SfLs8DY9chH6ZzXBkdl4piDlTuTds=
Subject key identifier: 33:13:6F:87:E7:9E:1E:DB:72:49:8A:40:04:78:59:77:B7:2F:1D:46
Certificate issuer: /CN=2e1164a9b5013d62f051344f6df91f13bc7ecb0f
Certificate serial: 019153014BE82798108CBDAB23A34DE78ADB
Authority key identifier: 2E:11:64:A9:B5:01:3D:62:F0:51:34:4F:6D:F9:1F:13:BC:7E:CB:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LhFkqbUBPWLwUTRPbfkfE7x-yw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/fb4696-678f-4d45-a091-fd7f17bb1a5c/1/MxNvh-eeHttySYpABHhZd7cvHUY.roa
Signing time: Wed 14 Aug 2024 22:27:59 +0000
ROA not before: Wed 14 Aug 2024 22:27:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62300
IP address blocks: 5.181.12.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 26 Aug 2024 15:50:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:53:01:4b:e8:27:98:10:8c:bd:ab:23:a3:4d:e7:8a:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e1164a9b5013d62f051344f6df91f13bc7ecb0f
Validity
Not Before: Aug 14 22:27:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=33136f87e79e1edb72498a4004785977b72f1d46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:03:9c:70:77:4f:51:3e:5f:00:7f:25:3f:6a:
e5:27:1b:cc:bd:30:2f:2a:0b:3e:8d:11:23:a0:36:
ea:c3:e5:d1:6f:00:8e:b9:60:df:67:ad:46:be:a0:
0a:1a:a1:52:6e:1d:dd:fa:51:53:a0:90:25:c4:b3:
11:9e:a3:fa:37:d5:72:6b:f4:6e:e7:00:6f:22:e0:
30:b5:94:c6:2e:ea:a4:bc:6e:b7:a4:34:df:0f:8f:
7b:bf:97:08:14:c1:83:a8:d1:7a:bb:24:ea:01:a7:
7c:de:7d:8f:b7:7b:98:0f:ce:41:90:4c:1e:e1:ad:
8c:30:52:6a:6e:ec:32:57:2d:1d:30:0e:87:9f:71:
48:65:60:f3:c3:2b:a5:ce:b3:c9:3a:c1:92:da:dc:
d8:a6:a0:fb:26:8e:82:a3:ff:de:76:ed:dd:25:67:
05:69:f9:3c:fa:5a:6f:79:7d:21:7a:fb:ee:ab:86:
f1:a2:65:3d:b7:3e:0e:77:5f:df:70:49:2b:d5:58:
05:9b:fa:bf:56:cc:70:1a:7c:76:b5:c0:fa:a9:b1:
75:14:11:ba:0b:35:e6:b5:b9:c3:b5:21:c0:c8:26:
d1:07:42:cf:29:21:43:bb:84:01:c1:a4:58:21:20:
d6:3c:97:67:ff:c5:3f:2e:de:d6:d6:8e:b0:5e:a6:
93:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:13:6F:87:E7:9E:1E:DB:72:49:8A:40:04:78:59:77:B7:2F:1D:46
X509v3 Authority Key Identifier:
keyid:2E:11:64:A9:B5:01:3D:62:F0:51:34:4F:6D:F9:1F:13:BC:7E:CB:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LhFkqbUBPWLwUTRPbfkfE7x-yw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/fb4696-678f-4d45-a091-fd7f17bb1a5c/1/MxNvh-eeHttySYpABHhZd7cvHUY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/fb4696-678f-4d45-a091-fd7f17bb1a5c/1/LhFkqbUBPWLwUTRPbfkfE7x-yw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.12.0/24
Signature Algorithm: sha256WithRSAEncryption
28:c3:93:10:f9:c1:e8:93:a8:3b:87:8b:14:7d:89:2e:82:84:
2e:51:91:d9:b8:17:00:89:d5:32:24:1a:08:21:80:fd:da:49:
a2:48:d5:0c:30:cb:44:c4:fd:76:0d:f0:e5:a8:36:fe:a4:8b:
00:a8:d3:cc:50:f2:f9:0c:83:97:78:60:9f:ae:0a:8d:f7:30:
23:46:d7:8f:38:94:78:ae:bd:f0:2b:d2:e5:c2:b7:74:7e:fc:
83:58:88:7a:f2:ab:d1:e3:41:e0:e4:2a:97:c8:6d:96:92:7e:
19:6f:56:6b:0f:e1:10:d2:5c:8b:2a:8f:46:fc:c6:76:60:90:
ff:89:c8:80:7f:8f:24:49:83:48:8a:2d:75:1a:95:8a:37:be:
b8:61:12:7e:54:a6:cd:9c:fb:31:fe:2c:1c:f5:68:32:e4:1b:
97:ee:7f:14:de:b2:be:6b:c7:c4:e5:cd:0a:9b:08:ee:fd:0b:
f4:59:5d:28:27:0e:f5:14:57:01:3e:e7:e6:3c:9d:07:84:9e:
5d:2c:b9:c4:83:86:23:d5:ef:71:cb:6c:71:7b:4d:ec:a4:66:
d2:99:38:6d:71:31:8c:9f:4a:5b:7e:99:91:94:84:e1:f8:e2:
28:6b:b9:64:9b:0d:99:ab:3e:c0:00:f1:03:3e:4f:85:44:14:
e6:d0:67:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 20:17:03 2024 by rpki-client on console-ams.rpki-client.org