Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/MX40d-9beiFwU809eeuocGGFgKQ.roa
File: MX40d-9beiFwU809eeuocGGFgKQ.roa (raw, json)
Hash identifier: 1D+Fie1Tg2PQX2l+bHDRJHE4OOjJ7v5hjrSPpTV0qQo=
Subject key identifier: 31:7E:34:77:EF:5B:7A:21:70:53:CD:3D:79:EB:A8:70:61:85:80:A4
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 01882F9F12BE541B2C6DD0A1D5538749B9A2
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/MX40d-9beiFwU809eeuocGGFgKQ.roa
Signing time: Thu 18 May 2023 16:08:54 +0000
ROA not before: Thu 18 May 2023 16:08:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 81.28.253.0/24 maxlen: 24
95.214.177.0/24 maxlen: 24
45.132.80.0/22 maxlen: 24
91.244.198.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 05 Jun 2023 06:39:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:2f:9f:12:be:54:1b:2c:6d:d0:a1:d5:53:87:49:b9:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: May 18 16:08:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=317e3477ef5b7a217053cd3d79eba870618580a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:13:c0:36:e7:87:59:4b:cc:93:14:f9:1d:1e:
df:bf:1a:35:90:00:57:9a:93:ba:ef:83:64:e2:c2:
9f:f6:c7:f3:0c:57:e1:b5:fb:f4:61:fa:3e:ff:dd:
a1:62:b4:c4:3b:1e:d1:52:fc:57:a3:2f:6c:5c:07:
81:9c:7e:66:8a:60:4f:2a:d3:86:fb:a4:e1:41:b2:
c5:fe:85:3e:fb:aa:00:ee:40:07:40:0c:d8:26:f0:
15:cd:03:15:d7:05:69:f4:7a:92:27:e4:26:bf:65:
2c:80:9b:bf:33:a4:29:b4:6e:d4:40:31:b4:45:91:
88:b1:68:90:3e:26:70:4f:01:9e:01:0c:42:e8:42:
71:93:6c:8b:8e:dc:60:e1:3f:52:da:50:0e:0d:50:
9e:e0:dc:8e:79:07:15:67:a1:39:2a:13:af:69:27:
98:4a:02:94:3b:00:4e:d8:a9:fd:b1:9f:04:1a:cf:
49:ae:8a:bd:e1:d6:12:21:ae:ad:d8:71:6a:06:a6:
5a:28:0f:a9:3d:73:1b:96:f6:8a:de:34:d5:1c:c0:
4a:48:9e:79:47:69:af:90:b6:16:c6:d0:1b:72:9c:
33:ca:04:4f:d8:4a:a9:7a:0c:5f:9a:84:59:7c:ce:
bd:a0:af:27:00:10:7e:99:13:ae:6b:27:e5:fa:0e:
ac:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:7E:34:77:EF:5B:7A:21:70:53:CD:3D:79:EB:A8:70:61:85:80:A4
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/MX40d-9beiFwU809eeuocGGFgKQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.80.0/22
81.28.253.0/24
91.244.198.0/24
95.214.177.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:11:dd:32:e9:bd:34:75:83:d0:c2:11:af:91:3d:df:26:ae:
59:ea:51:d0:62:29:ab:c4:83:de:7e:fc:f6:76:9b:96:8c:a6:
78:fd:19:d6:d3:e8:c0:6a:93:b7:17:95:c2:ae:fb:4d:8c:8d:
b5:de:65:e7:9d:22:f1:f1:6e:d2:e1:35:c6:bf:8b:0f:7f:66:
3b:ac:ea:3c:9c:c6:d2:c4:58:35:82:5d:9d:67:8a:18:5d:f0:
1e:1e:d5:20:94:e6:e0:ff:44:45:5e:17:5f:9c:a4:94:76:94:
b8:37:89:e5:9e:37:97:9d:c7:18:8f:15:29:82:e4:17:08:12:
b4:b4:d0:4e:4b:9e:7c:0e:27:c9:fe:01:b0:41:a3:cb:19:96:
20:ca:34:dd:55:e9:92:7d:62:b7:21:1d:62:b0:48:6b:a8:f6:
f6:98:ed:34:b1:1d:6c:f8:19:16:d3:5e:e3:c7:65:86:0d:fb:
33:5b:94:58:01:86:17:6c:3c:ae:5a:3a:a6:b4:0c:fe:dd:52:
20:f4:1e:5e:42:ba:4b:90:58:6b:9f:10:96:7f:2f:b2:bb:70:
8a:35:2a:f9:d3:34:14:0b:de:33:8b:56:77:ef:b2:34:98:1b:
3d:d8:5c:15:0c:9f:03:08:83:03:48:d4:8b:01:44:1b:ad:c0:
47:93:eb:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:00 2024 by rpki-client on console-fra.rpki-client.org