Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f80926-e9a9-41f9-95a0-9b813a2002aa/1/MXITuInRGhiRy62NnbUO41GYK8Q.roa
File: MXITuInRGhiRy62NnbUO41GYK8Q.roa (raw, json)
Hash identifier: W/Gxf45w9np9kcm/BJsmoGAlpAuFu1kU964VoriAuXA=
Subject key identifier: 31:72:13:B8:89:D1:1A:18:91:CB:AD:8D:9D:B5:0E:E3:51:98:2B:C4
Certificate issuer: /CN=e5f9ad212cd65ab4ee2b8e9b3f8b833c3900ea7d
Certificate serial: 018F57F4DFB6B299DB72C211ED5F53FBBBD4
Authority key identifier: E5:F9:AD:21:2C:D6:5A:B4:EE:2B:8E:9B:3F:8B:83:3C:39:00:EA:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5fmtISzWWrTuK46bP4uDPDkA6n0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f80926-e9a9-41f9-95a0-9b813a2002aa/1/MXITuInRGhiRy62NnbUO41GYK8Q.roa
Signing time: Wed 08 May 2024 11:26:56 +0000
ROA not before: Wed 08 May 2024 11:26:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58209
IP address blocks: 217.18.81.0/24 maxlen: 24
2a0e:5e40::/31 maxlen: 31
2a0e:5e42::/31 maxlen: 31
Validation: Failed, certificate revoked on Fri 10 May 2024 11:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:57:f4:df:b6:b2:99:db:72:c2:11:ed:5f:53:fb:bb:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5f9ad212cd65ab4ee2b8e9b3f8b833c3900ea7d
Validity
Not Before: May 8 11:26:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=317213b889d11a1891cbad8d9db50ee351982bc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:74:c1:7b:aa:f0:ab:5e:a5:69:48:a3:a0:73:
a2:3b:8a:13:f5:6e:d2:3e:e4:87:ad:13:c0:15:fd:
45:33:6f:09:ba:14:98:06:f1:0f:c0:7a:52:7c:c3:
70:44:a7:0e:d8:47:b4:6b:09:d3:69:83:77:3a:09:
f4:a0:eb:33:aa:92:9d:73:f5:af:6b:88:6f:69:f5:
c8:2a:98:48:b4:5a:d0:41:55:39:58:66:4e:9a:18:
e5:4a:03:7b:7d:b0:08:dd:d4:ae:f2:27:f3:73:5f:
be:84:c9:57:1c:02:c3:31:47:89:6f:8d:d0:77:a5:
a3:39:13:ab:fb:a6:c6:36:85:e9:19:3d:6e:5c:65:
48:30:40:8f:98:a6:0f:33:b0:57:9a:4c:c1:9d:0f:
e7:41:0b:c2:01:72:c6:ab:7b:2c:0a:24:95:5f:93:
e5:d9:b5:f2:8a:aa:1c:14:ce:78:63:75:a9:bd:87:
bd:83:53:78:7f:be:99:1b:bd:08:4c:f7:fc:a6:4b:
38:e4:9b:67:c5:5d:55:1d:12:fa:13:01:bc:3e:89:
69:6b:65:d3:64:6d:0e:7a:a6:0b:fd:46:8f:80:56:
9d:e5:42:e1:15:9d:e3:ac:38:a9:74:2b:3b:5b:91:
31:f0:e8:c1:d6:22:2d:0a:3e:e5:14:98:af:40:67:
0d:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:72:13:B8:89:D1:1A:18:91:CB:AD:8D:9D:B5:0E:E3:51:98:2B:C4
X509v3 Authority Key Identifier:
keyid:E5:F9:AD:21:2C:D6:5A:B4:EE:2B:8E:9B:3F:8B:83:3C:39:00:EA:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5fmtISzWWrTuK46bP4uDPDkA6n0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f80926-e9a9-41f9-95a0-9b813a2002aa/1/MXITuInRGhiRy62NnbUO41GYK8Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f80926-e9a9-41f9-95a0-9b813a2002aa/1/5fmtISzWWrTuK46bP4uDPDkA6n0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.18.81.0/24
IPv6:
2a0e:5e40::/30
Signature Algorithm: sha256WithRSAEncryption
87:3b:88:72:c6:19:0a:dd:67:6f:4f:19:c4:d8:b4:a1:76:a3:
54:a0:ce:f9:55:e4:dd:11:d5:39:62:ad:21:60:4a:78:7e:28:
02:40:de:89:32:fb:e7:74:17:bc:af:7b:01:05:2e:c9:50:6f:
5a:be:75:c7:9e:d5:b8:7c:88:aa:8f:f8:cd:e7:4f:eb:55:80:
94:32:7e:cb:30:fc:4b:ac:d8:aa:b5:9f:4c:3a:25:d8:60:82:
09:b5:91:46:2a:49:f6:e4:02:78:10:d6:99:09:19:c9:21:6f:
0e:b7:3d:ba:b6:4d:74:42:ba:a7:31:0a:08:7f:de:1c:d6:a3:
98:f1:de:d8:ac:a5:21:0d:5d:1d:31:4e:08:78:91:9b:a2:e8:
78:68:50:27:29:dd:31:68:5c:a7:85:ad:1f:0d:80:d8:3f:79:
1e:19:a8:2c:5e:98:12:d9:f1:41:d2:8e:6c:b6:69:f7:46:7b:
91:36:55:ed:0b:66:1b:1a:b2:35:e4:02:1e:e0:87:8a:22:5f:
45:6e:e6:23:97:e0:7d:36:37:43:1f:b1:9f:d3:71:cc:1e:95:
19:ad:8e:a9:14:37:5e:da:f4:74:c1:bf:b3:a9:82:b9:4b:b3:
f1:e3:64:96:99:da:1c:37:59:36:73:71:27:eb:3c:b0:f4:f2:
38:9e:3a:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:06 2024 by rpki-client on console-fra.rpki-client.org