Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/MrFHXMwa0Lyx8YvemW1xd4eggZ8.roa
File: MrFHXMwa0Lyx8YvemW1xd4eggZ8.roa (raw, json)
Hash identifier: KH2ck2wp+4aT3VxcVXgdJbOBiSW3PNpYni42eaSOdHU=
Subject key identifier: 32:B1:47:5C:CC:1A:D0:BC:B1:F1:8B:DE:99:6D:71:77:87:A0:81:9F
Certificate issuer: /CN=1e9fdc7fb39ebbbed4ee54f703d3ac6153ddee69
Certificate serial: 018CC8DE48E885F68F50A9899843BE607B92
Authority key identifier: 1E:9F:DC:7F:B3:9E:BB:BE:D4:EE:54:F7:03:D3:AC:61:53:DD:EE:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/MrFHXMwa0Lyx8YvemW1xd4eggZ8.roa
Signing time: Tue 02 Jan 2024 06:31:00 +0000
ROA not before: Tue 02 Jan 2024 06:31:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43180
IP address blocks: 45.93.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Mar 2024 13:52:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:48:e8:85:f6:8f:50:a9:89:98:43:be:60:7b:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e9fdc7fb39ebbbed4ee54f703d3ac6153ddee69
Validity
Not Before: Jan 2 06:31:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=32b1475ccc1ad0bcb1f18bde996d717787a0819f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:38:c4:3a:42:a5:19:f0:e0:97:82:c6:bc:ed:
b9:f9:90:b3:47:c1:56:55:07:d9:1f:88:e1:7a:38:
20:b0:a0:4b:8e:41:0a:05:2e:b4:8c:9a:b7:1a:62:
8d:e8:e0:44:2f:14:5e:a1:96:35:32:27:76:03:4c:
23:36:16:30:7c:33:36:01:9f:10:03:99:d4:fc:2e:
0b:31:54:41:5b:4b:d9:67:cd:2e:95:69:a5:f8:44:
6b:cd:6d:2f:3d:32:2c:87:10:77:9a:74:93:14:69:
54:ab:d6:7e:40:fe:20:0c:51:fb:09:99:84:5d:70:
26:fa:29:bb:64:74:4e:37:6c:d4:8d:bc:6f:2f:9c:
d5:5a:c5:b6:a3:31:3f:8a:d1:4a:3f:22:74:a3:a2:
cc:6c:a7:be:fd:ed:f5:2d:5d:5c:26:ef:30:a2:d7:
aa:c5:d1:68:8f:27:7e:08:b9:4c:4d:1c:22:30:e5:
0a:11:35:09:cb:10:52:cb:ca:11:36:8b:84:13:a2:
18:71:8b:4d:4f:61:fd:be:0b:1d:a6:2a:76:5b:f0:
63:77:d5:e0:fd:82:ba:f2:c9:ac:2e:a8:9c:58:c6:
2c:8d:34:ba:d4:d0:50:4d:c2:a4:0b:82:53:57:f8:
e0:71:2b:8d:08:3e:2f:b1:e1:14:7d:91:6b:5b:d3:
17:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:B1:47:5C:CC:1A:D0:BC:B1:F1:8B:DE:99:6D:71:77:87:A0:81:9F
X509v3 Authority Key Identifier:
keyid:1E:9F:DC:7F:B3:9E:BB:BE:D4:EE:54:F7:03:D3:AC:61:53:DD:EE:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/MrFHXMwa0Lyx8YvemW1xd4eggZ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.93.63.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:12:90:26:51:03:1c:37:31:9c:26:46:89:5d:a1:36:92:5d:
f1:31:45:fb:87:1b:ed:26:f4:26:fb:b7:16:6f:6f:ea:fa:13:
9d:9a:c6:09:88:f7:4b:e4:58:7e:20:0c:03:b4:89:07:6f:80:
b1:7c:29:21:4f:ca:06:5a:13:b1:b3:50:ef:9c:71:e4:47:9f:
10:3b:1a:04:90:44:02:5c:13:ba:38:64:ed:2b:b3:f0:40:94:
eb:60:43:8a:19:4a:c7:9e:52:c8:49:18:72:59:c1:fd:38:bc:
2f:20:04:0d:2a:b4:85:e3:8a:66:37:db:65:0a:15:21:dc:06:
90:eb:61:1b:d9:81:f7:26:95:6c:9a:6a:1e:eb:38:50:c3:0e:
2e:d1:78:61:36:fb:19:b6:2b:ee:88:05:07:71:15:51:02:33:
b9:b1:38:5c:9e:e6:93:15:32:d5:cd:28:72:8b:e3:6c:3e:ae:
6f:ac:17:34:b4:c6:85:62:e6:a8:0a:4e:79:b8:af:2b:43:0f:
cd:8e:2c:1c:8a:40:47:20:dc:1c:53:a1:5d:ca:52:d1:09:6b:
a4:a0:11:07:92:80:f9:b7:d2:c1:f5:33:6c:6c:64:8c:58:bb:
7b:9c:d3:7d:1b:70:3f:3e:fb:99:bb:a8:54:5c:0a:07:9b:09:
f8:1f:64:b1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzI3kjohfaPUKmJmEO+YHuSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlOWZkYzdmYjM5ZWJiYmVkNGVlNTRmNzAzZDNhYzYxNTNk
ZGVlNjkwHhcNMjQwMTAyMDYzMTAwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMmIxNDc1Y2NjMWFkMGJjYjFmMThiZGU5OTZkNzE3Nzg3YTA4MTlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlzjEOkKlGfDgl4LGvO25+ZCzR8FW
VQfZH4jhejggsKBLjkEKBS60jJq3GmKN6OBELxReoZY1Mid2A0wjNhYwfDM2AZ8Q
A5nU/C4LMVRBW0vZZ80ulWml+ERrzW0vPTIshxB3mnSTFGlUq9Z+QP4gDFH7CZmE
XXAm+im7ZHRON2zUjbxvL5zVWsW2ozE/itFKPyJ0o6LMbKe+/e31LV1cJu8woteq
xdFojyd+CLlMTRwiMOUKETUJyxBSy8oRNouEE6IYcYtNT2H9vgsdpip2W/Bjd9Xg
/YK68smsLqicWMYsjTS61NBQTcKkC4JTV/jgcSuNCD4vseEUfZFrW9MXIwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDKxR1zMGtC8sfGL3pltcXeHoIGfMB8GA1UdIwQY
MBaAFB6f3H+znru+1O5U9wPTrGFT3e5pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHBfY2Y3T2V1NzdVN2xUM0E5T3NZVlBkN21rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS80MGZkZDEtMTA5Mi00ZjY5LWI2NDgt
NjkxZmY1YjQ0YjAxLzEvTXJGSFhNd2EwTHl4OFl2ZW1XMXhkNGVnZ1o4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS80MGZkZDEtMTA5Mi00ZjY5LWI2NDgtNjkxZmY1YjQ0YjAx
LzEvSHBfY2Y3T2V1NzdVN2xUM0E5T3NZVlBkN21rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALV0/MA0G
CSqGSIb3DQEBCwUAA4IBAQB+EpAmUQMcNzGcJkaJXaE2kl3xMUX7hxvtJvQm+7cW
b2/q+hOdmsYJiPdL5Fh+IAwDtIkHb4CxfCkhT8oGWhOxs1DvnHHkR58QOxoEkEQC
XBO6OGTtK7PwQJTrYEOKGUrHnlLISRhyWcH9OLwvIAQNKrSF44pmN9tlChUh3AaQ
62Eb2YH3JpVsmmoe6zhQww4u0XhhNvsZtivuiAUHcRVRAjO5sThcnuaTFTLVzShy
i+NsPq5vrBc0tMaFYuaoCk55uK8rQw/NjiwcikBHINwcU6FdylLRCWukoBEHkoD5
t9LB9TNsbGSMWLt7nNN9G3A/PvuZu6hUXAoHmwn4H2Sx
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:40:51 2025 by rpki-client