Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/mPXc6aLMMnz5eeDoI7CzFRrsB6s.roa
File: mPXc6aLMMnz5eeDoI7CzFRrsB6s.roa (raw, json)
Hash identifier: 2jSPNoiVNNKODfof+YDOuJpjbFdEBPEQljhh0zAS59g=
Subject key identifier: 98:F5:DC:E9:A2:CC:32:7C:F9:79:E0:E8:23:B0:B3:15:1A:EC:07:AB
Certificate issuer: /CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Certificate serial: 0190029E69A66EB7D1B159BE100CD9492817
Authority key identifier: E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/mPXc6aLMMnz5eeDoI7CzFRrsB6s.roa
Signing time: Mon 10 Jun 2024 14:47:34 +0000
ROA not before: Mon 10 Jun 2024 14:47:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 37.148.218.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Dec 2024 04:03:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:02:9e:69:a6:6e:b7:d1:b1:59:be:10:0c:d9:49:28:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Validity
Not Before: Jun 10 14:47:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=98f5dce9a2cc327cf979e0e823b0b3151aec07ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:4c:79:2f:86:dd:94:fc:b2:09:43:06:60:df:
d2:91:51:4e:67:89:5b:d4:1e:8b:4c:b8:cd:ba:24:
67:d3:68:d2:78:1c:87:99:bc:7e:59:40:74:0c:76:
74:e2:92:6e:4d:59:84:62:6d:46:e8:93:e8:11:36:
18:99:7e:72:8c:60:12:19:31:37:bd:44:a2:ed:bd:
5b:dc:3c:89:3d:d4:63:5c:a9:e6:cf:74:ad:bc:ec:
04:45:70:ef:39:37:b2:61:06:b1:7a:89:be:08:08:
d0:44:62:b9:46:66:c4:26:c0:e0:50:6d:76:35:99:
b9:b8:92:4f:6b:e9:fb:0e:17:70:f7:db:70:87:76:
19:0a:8d:f5:eb:5e:30:e9:0a:c4:a7:cb:55:87:05:
ba:46:e6:37:cf:0f:27:9d:66:44:0d:6e:a6:ba:a3:
4b:65:21:23:a9:38:55:35:95:de:7e:fb:c9:ae:b6:
73:ef:f2:08:df:9e:6b:b2:68:2c:1f:2c:25:6a:61:
07:5d:91:d0:2d:c2:04:9f:31:f1:ba:ea:80:51:df:
64:16:da:e2:8d:34:6c:ab:7e:57:d9:d3:e1:eb:dc:
b1:68:4d:96:09:d2:70:9e:b4:51:70:f8:8b:bf:b4:
fc:0a:a0:50:3b:68:7b:23:c0:49:5c:d1:9b:92:eb:
83:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:F5:DC:E9:A2:CC:32:7C:F9:79:E0:E8:23:B0:B3:15:1A:EC:07:AB
X509v3 Authority Key Identifier:
keyid:E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/mPXc6aLMMnz5eeDoI7CzFRrsB6s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/6LPu0cespjbWJFhSuALg5zdU32M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.148.218.0/23
Signature Algorithm: sha256WithRSAEncryption
85:e9:88:e5:e1:a4:a5:a7:a2:39:b2:5d:8c:77:72:98:6b:5b:
b2:51:32:bc:88:32:1c:f2:78:e1:9f:e8:8a:47:35:cf:3f:ea:
b2:66:62:60:3a:69:bc:ec:4d:f1:54:ea:56:ff:ac:30:a8:e7:
97:a2:28:59:a6:44:8e:af:76:14:73:65:78:34:20:4a:04:dd:
61:34:77:7c:a8:89:b0:cf:7b:60:3b:41:e4:bc:81:58:28:82:
37:0d:8d:ab:c0:f5:2f:36:a4:9f:45:f3:d2:54:e5:ca:a0:f5:
34:40:55:ca:e1:dc:78:50:11:21:89:21:21:a9:a8:74:60:c1:
d9:c8:aa:35:8a:8e:03:70:7c:7a:d2:10:e4:d2:10:1b:72:fe:
a5:ee:42:53:6b:c5:02:82:dd:eb:bf:7f:6d:8e:95:a6:77:7e:
e0:f3:8f:d7:5b:a2:3b:15:e4:e5:10:4c:82:73:a8:34:f6:1f:
3a:70:74:6d:3c:1d:43:70:56:ec:a6:1a:54:b1:c3:21:59:99:
a5:7d:8f:f8:f5:c5:db:d1:28:a4:eb:cb:92:13:dc:b9:fd:8f:
0c:bf:0e:53:c8:7a:17:f9:e0:12:04:0a:1f:8b:9a:09:00:8f:
95:1f:42:72:38:f4:60:34:f1:f9:54:e9:99:4a:09:42:4c:41:
d6:04:27:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:43:58 2025 by rpki-client