Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/40503a-6be9-4e1b-8243-716c0347aa76/1/M0JTzxUzHXhgFK_7bLzj9eI9RQI.roa
File: M0JTzxUzHXhgFK_7bLzj9eI9RQI.roa (raw, json)
Hash identifier: KV9xFYVmmS7fM4+nZBZStznb3/RRA9Jj1TbcCSLuueA=
Subject key identifier: 33:42:53:CF:15:33:1D:78:60:14:AF:FB:6C:BC:E3:F5:E2:3D:45:02
Certificate issuer: /CN=19acf07f1352222658b789e4fe40ea38a8aa71df
Certificate serial: 018CC9BBD82D1E649162E076D45634DFA513
Authority key identifier: 19:AC:F0:7F:13:52:22:26:58:B7:89:E4:FE:40:EA:38:A8:AA:71:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GazwfxNSIiZYt4nk_kDqOKiqcd8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/40503a-6be9-4e1b-8243-716c0347aa76/1/M0JTzxUzHXhgFK_7bLzj9eI9RQI.roa
Signing time: Tue 02 Jan 2024 10:33:00 +0000
ROA not before: Tue 02 Jan 2024 10:33:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205881
IP address blocks: 151.136.0.0/16 maxlen: 16
2a07:4ac0:2400::/40 maxlen: 40
Validation: Failed, certificate revoked on Wed 01 Jan 2025 21:48:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bb:d8:2d:1e:64:91:62:e0:76:d4:56:34:df:a5:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19acf07f1352222658b789e4fe40ea38a8aa71df
Validity
Not Before: Jan 2 10:33:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=334253cf15331d786014affb6cbce3f5e23d4502
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:48:4c:26:9f:eb:48:eb:b1:db:c2:e8:84:a7:
97:2d:a7:b7:c8:48:83:5a:99:07:03:26:ef:05:31:
26:e5:15:49:e3:10:07:0d:12:47:62:9a:bd:07:c0:
09:8d:67:8b:77:d4:29:39:5a:32:60:cf:0b:43:55:
b7:a8:e1:b8:0e:c2:03:d2:58:0e:67:03:21:fa:66:
9a:e6:8c:22:9c:26:03:44:e0:7d:97:f7:21:5b:5a:
d0:a2:99:8a:2b:80:0d:11:95:d2:68:81:a2:74:2f:
d2:1a:84:7e:49:99:d8:78:09:b1:d5:21:fc:f2:4d:
09:73:12:65:d9:6e:f0:b5:12:12:3a:88:19:be:36:
7c:d4:63:5a:96:f2:f4:91:0f:af:b8:8d:41:90:63:
a1:14:03:a0:3d:13:33:92:54:b2:b6:9f:cf:e5:64:
6e:fe:69:68:9a:c8:88:04:93:93:09:90:51:a6:fa:
42:7d:ae:3e:8c:c8:bb:2c:5b:a6:ae:60:79:f7:a8:
46:16:c8:2a:00:b4:c4:de:4b:18:d5:85:f4:25:67:
13:a7:df:64:cb:c0:49:d0:b8:40:45:28:76:98:d0:
92:4b:5b:67:ed:a7:ad:c2:b5:04:d6:1d:dd:a0:5e:
6c:98:33:92:27:2e:d1:e6:44:50:fa:0b:4d:c3:c9:
62:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:42:53:CF:15:33:1D:78:60:14:AF:FB:6C:BC:E3:F5:E2:3D:45:02
X509v3 Authority Key Identifier:
keyid:19:AC:F0:7F:13:52:22:26:58:B7:89:E4:FE:40:EA:38:A8:AA:71:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GazwfxNSIiZYt4nk_kDqOKiqcd8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/40503a-6be9-4e1b-8243-716c0347aa76/1/M0JTzxUzHXhgFK_7bLzj9eI9RQI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/40503a-6be9-4e1b-8243-716c0347aa76/1/GazwfxNSIiZYt4nk_kDqOKiqcd8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.136.0.0/16
IPv6:
2a07:4ac0:2400::/40
Signature Algorithm: sha256WithRSAEncryption
0e:bf:a7:56:f3:e3:cd:36:ab:ba:37:ff:22:ad:8a:30:cb:da:
dc:50:95:5b:07:55:e0:10:5e:47:99:9e:ca:af:70:aa:05:d4:
ad:14:1b:83:d8:79:df:f7:9a:c8:98:bd:b6:5a:ff:1d:cb:93:
d0:61:3c:ed:4e:5c:c6:61:bd:25:2b:6c:a2:18:bc:51:82:3e:
be:5b:9d:a6:fb:b7:0e:5a:d1:ac:7b:e1:4a:10:04:a4:16:ec:
70:e8:53:6e:62:17:3f:be:b9:e6:e1:71:48:f8:ab:34:c0:95:
c3:98:cb:06:4a:a0:05:84:be:0a:19:04:ab:81:78:96:2e:0e:
ea:7c:1a:80:bd:de:a3:d6:de:2c:db:56:f5:dd:3a:60:eb:b5:
83:3f:1e:4c:21:37:dc:5f:52:88:23:2b:ca:b5:d3:dd:b5:c7:
c0:f2:56:0e:1d:c3:5d:f6:d5:f0:8a:f7:d1:a6:76:6e:b3:05:
ab:37:13:0c:d3:c4:a9:09:3e:87:4f:65:a9:de:03:18:a8:32:
ae:40:35:3a:68:68:ae:8b:b5:d2:bc:8b:a7:5d:f5:ab:17:98:
8a:f6:71:34:35:a0:12:c6:34:1e:c9:2b:07:9a:9e:32:2e:5c:
47:b6:30:07:df:0f:db:66:45:a4:33:5a:30:a7:0c:7b:7b:2f:
81:a7:6f:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:56:39 2025 by rpki-client