Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/Mgd3xQKfbR5n7WqDF8_07KhKyRc.roa
File: Mgd3xQKfbR5n7WqDF8_07KhKyRc.roa (raw, json)
Hash identifier: BTH+PLfRiFFvqUDNAWwuioldQ/1Ihh3DCRdy0D0+ZSU=
Subject key identifier: 32:07:77:C5:02:9F:6D:1E:67:ED:6A:83:17:CF:F4:EC:A8:4A:C9:17
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 018E750D3C5589A38DD98F13E1EFE5300866
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/Mgd3xQKfbR5n7WqDF8_07KhKyRc.roa
Signing time: Mon 25 Mar 2024 09:59:45 +0000
ROA not before: Mon 25 Mar 2024 09:59:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215310
IP address blocks: 45.141.168.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 26 Mar 2024 06:59:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:75:0d:3c:55:89:a3:8d:d9:8f:13:e1:ef:e5:30:08:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Mar 25 09:59:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=320777c5029f6d1e67ed6a8317cff4eca84ac917
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:31:0b:b5:5d:f2:b2:3d:67:8f:d4:7d:95:52:
15:90:d0:f2:c9:56:51:7d:a0:d5:92:f5:94:86:3a:
7d:16:f0:25:8e:43:e1:92:86:10:bb:65:c7:66:74:
a5:81:ae:93:c1:6e:66:68:6c:1d:38:c2:86:27:ef:
23:f5:e7:2c:9f:36:d8:dc:a9:5c:18:02:fc:ef:2c:
2a:83:a7:b2:ab:ce:24:10:9d:09:b0:39:80:94:ab:
5c:fd:0d:ba:78:a2:b6:08:8c:54:f5:a6:44:ba:ad:
0b:90:d0:a0:87:fa:c2:5c:6d:77:8d:86:32:91:2d:
4a:97:03:39:77:1e:ce:fc:22:df:86:8c:57:1d:9e:
71:c2:5f:2c:ff:a0:8d:bf:74:05:4c:ad:4a:c2:c8:
a2:20:13:b6:64:15:4f:8b:c2:d7:2d:14:a6:ff:c2:
c0:00:5f:f4:f9:2c:16:0b:df:17:46:92:29:89:4e:
2e:6c:7e:c0:a0:9d:34:dd:55:af:45:a2:fd:4c:8b:
18:10:d3:42:0c:39:2c:a9:58:ad:2d:ff:73:15:37:
6e:89:ff:16:af:37:06:64:8d:e6:84:31:0a:b8:88:
b6:8d:c1:a6:67:42:a2:bc:eb:8a:40:a9:b9:fa:14:
e5:71:b3:09:66:ae:11:1b:12:3a:51:2f:67:72:c5:
36:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:07:77:C5:02:9F:6D:1E:67:ED:6A:83:17:CF:F4:EC:A8:4A:C9:17
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/Mgd3xQKfbR5n7WqDF8_07KhKyRc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.168.0/23
Signature Algorithm: sha256WithRSAEncryption
42:7e:fa:ce:f9:a9:f5:dc:47:10:d4:a5:eb:f5:8f:cd:da:36:
ae:9a:b5:77:54:61:4a:9e:71:c8:8e:8e:14:e1:7e:3c:1b:ad:
cd:d4:48:ea:16:25:cf:07:30:9a:ea:66:ca:8f:e6:f5:53:0d:
88:ee:bd:16:00:f5:da:a2:a9:9f:d1:d4:5d:b9:bd:38:fe:1a:
ce:54:2a:3a:00:86:04:f6:c5:c7:f4:cb:e1:52:38:22:79:ec:
05:af:43:71:ce:cc:52:f8:81:4b:54:0c:2e:f0:11:1d:16:fb:
8b:e7:39:b6:25:a5:ad:f7:8b:e8:5e:5f:30:88:01:2a:3f:2d:
01:84:29:59:f6:b1:44:c9:a5:93:bf:fd:e1:1f:85:84:53:a2:
f5:61:bb:d8:f8:86:7d:f6:13:48:f8:d4:8c:10:9b:8e:e2:2e:
cd:1e:e7:41:a0:0c:e0:44:95:24:b8:a8:10:ce:59:09:dc:f1:
3d:0d:85:5c:58:b1:fd:ea:13:24:b4:0b:db:a2:81:0d:b4:ef:
de:ea:50:df:2c:bd:9f:61:57:37:cc:9d:41:0a:b3:0a:02:25:
5a:65:2f:93:4e:84:2a:95:70:aa:97:81:57:72:db:f8:4d:17:
87:fe:8a:e2:6b:ee:03:69:62:9b:47:ea:2a:bb:7c:8e:dc:7c:
a5:d9:88:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 26 09:25:17 2024 by rpki-client on console-ams.rpki-client.org