Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Mp5mdFxFK9YLLhuRfy2zIQvnrAk.roa
File: Mp5mdFxFK9YLLhuRfy2zIQvnrAk.roa (raw, json)
Hash identifier: AF/30SAzt5yXrEuecB1LPefTMfipx2f8vubm3+wkb6U=
Subject key identifier: 32:9E:66:74:5C:45:2B:D6:0B:2E:1B:91:7F:2D:B3:21:0B:E7:AC:09
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018E0B27CB276B7572C9783182BE8D81B055
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Mp5mdFxFK9YLLhuRfy2zIQvnrAk.roa
Signing time: Mon 04 Mar 2024 20:29:01 +0000
ROA not before: Mon 04 Mar 2024 20:29:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 45.135.180.0/24 maxlen: 24
45.135.182.0/24 maxlen: 24
77.81.182.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
89.35.129.0/24 maxlen: 24
91.132.50.0/24 maxlen: 24
93.114.183.0/24 maxlen: 24
128.0.41.0/24 maxlen: 24
185.212.119.0/24 maxlen: 24
188.213.0.0/24 maxlen: 24
188.215.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Mar 2024 16:27:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:0b:27:cb:27:6b:75:72:c9:78:31:82:be:8d:81:b0:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Mar 4 20:29:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=329e66745c452bd60b2e1b917f2db3210be7ac09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e2:61:17:f1:81:30:e9:6a:c4:9e:e2:68:c5:
8e:37:4a:49:dd:29:93:b1:d4:df:46:d7:19:a0:36:
e7:83:3d:25:5f:d0:7a:fd:48:60:17:9a:f8:75:2a:
6c:b1:d6:a4:e6:05:3d:2b:ab:3f:4f:82:24:92:22:
4d:2f:0d:cb:47:e4:c4:38:b6:0b:30:0e:aa:bd:5b:
5d:16:00:59:4a:7b:cc:cc:ee:c6:7b:f8:d2:99:ba:
86:74:75:dc:a8:d9:14:76:ad:ea:a1:8a:b5:d5:e1:
f5:db:03:50:53:e3:b1:48:1e:cd:3e:87:7d:2b:05:
91:33:0d:12:bb:da:75:fa:f8:86:b5:8f:83:14:0a:
ae:5a:24:15:81:79:79:36:6f:57:c9:f1:e3:dd:02:
c2:f8:f5:0d:79:89:a8:2f:50:4b:75:69:4a:9d:47:
25:14:4a:8f:16:0b:f9:fc:70:93:ac:36:b0:73:b5:
16:60:7c:d6:96:72:6a:36:e2:94:2a:67:2f:c7:31:
15:ea:3c:73:ed:bc:a5:19:3f:4a:70:0e:12:a2:14:
b4:00:2e:53:61:15:6d:24:d1:2f:ff:5f:d8:a8:55:
33:6d:61:3b:11:9d:48:59:c0:7a:e4:2e:6a:af:bc:
00:c5:d8:1f:2d:22:30:08:df:5a:37:43:b4:1f:53:
dc:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:9E:66:74:5C:45:2B:D6:0B:2E:1B:91:7F:2D:B3:21:0B:E7:AC:09
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Mp5mdFxFK9YLLhuRfy2zIQvnrAk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.180.0/24
45.135.182.0/24
77.81.182.0/24
89.34.106.0/24
89.35.129.0/24
91.132.50.0/24
93.114.183.0/24
128.0.41.0/24
185.212.119.0/24
188.213.0.0/24
188.215.31.0/24
Signature Algorithm: sha256WithRSAEncryption
01:c5:ee:51:ca:02:29:44:28:b2:63:ef:a1:02:b5:d1:5c:eb:
26:12:0e:4a:92:32:7d:96:df:73:d5:a2:98:22:3d:2e:83:1d:
bc:bc:d9:37:95:cb:94:78:8c:3e:c6:b9:b5:1b:87:b9:d1:2d:
87:89:d7:65:e9:8b:06:a7:65:6b:fa:85:f2:ad:f0:10:91:5c:
48:c0:31:d4:79:ad:45:f4:3b:fe:f2:56:33:07:bd:f6:ab:ea:
78:7f:3a:7b:ef:18:09:22:ae:1f:ce:b1:59:88:e8:5e:40:a1:
e5:4b:6d:5b:cd:ba:fc:ac:f1:8e:d1:9d:83:d4:9c:7a:e5:a4:
88:7a:b4:d3:76:00:ac:c6:b8:de:75:a0:cb:f5:2e:bd:02:e9:
62:b0:df:9f:c0:93:48:04:7a:31:97:9f:0c:bc:04:38:ff:fa:
d3:7d:28:91:ee:0a:79:65:57:0a:e9:80:4d:30:cf:f8:89:a8:
55:b6:2c:c7:9f:5e:be:91:0d:e5:f3:bc:bb:e8:35:51:f9:b1:
18:56:3b:0d:b4:e1:ec:52:c5:91:5a:ab:78:a3:7c:54:54:e8:
e5:55:38:c0:f5:74:08:86:fc:cd:0a:2c:09:2e:87:55:01:da:
c2:b2:c9:8c:01:e1:a5:d5:9c:00:99:fe:3f:14:43:b6:1c:5c:
07:fd:9f:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:12 2024 by rpki-client on console-ams.rpki-client.org