Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/225bcb-6d3d-4c0e-824f-2f1c8e408b64/1/1mwDk97k1R6JLFF5C9poHB0pHcw.roa
File: 1mwDk97k1R6JLFF5C9poHB0pHcw.roa (raw, json)
Hash identifier: 03CsVImk5Q6yh+2aI1z3ubVlZPpnpLj2zpZunHrMrdE=
Subject key identifier: D6:6C:03:93:DE:E4:D5:1E:89:2C:51:79:0B:DA:68:1C:1D:29:1D:CC
Certificate issuer: /CN=32c78eeef7acb451fc37575feb9114dfccc1cdfb
Certificate serial: 018CC26CF5DB82D36830BCAF8DBC93E54379
Authority key identifier: 32:C7:8E:EE:F7:AC:B4:51:FC:37:57:5F:EB:91:14:DF:CC:C1:CD:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MseO7vestFH8N1df65EU38zBzfs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/225bcb-6d3d-4c0e-824f-2f1c8e408b64/1/1mwDk97k1R6JLFF5C9poHB0pHcw.roa
Signing time: Mon 01 Jan 2024 00:29:29 +0000
ROA not before: Mon 01 Jan 2024 00:29:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49600
IP address blocks: 45.141.242.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 21 Jun 2024 13:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6c:f5:db:82:d3:68:30:bc:af:8d:bc:93:e5:43:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32c78eeef7acb451fc37575feb9114dfccc1cdfb
Validity
Not Before: Jan 1 00:29:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d66c0393dee4d51e892c51790bda681c1d291dcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:67:ce:1c:cc:fd:19:52:5b:44:89:79:88:aa:
1f:a1:75:8e:4a:58:c5:92:3f:db:3d:6b:d9:f5:3d:
06:6b:7d:71:81:d2:3d:5b:8e:ba:76:a2:1b:3f:43:
c4:1d:2c:96:b7:48:34:5f:db:a4:04:87:dc:3e:35:
27:9b:d4:10:2b:d4:97:6c:3f:51:aa:63:12:b2:f3:
54:71:9c:7c:b3:91:ba:74:e2:e0:ca:cc:c7:77:dd:
9c:3e:24:ea:da:bb:93:a3:28:38:2c:03:dc:fa:c9:
48:0e:b5:9c:7b:95:eb:9e:69:e8:3e:51:13:4c:ff:
4f:e2:6f:d0:77:1b:84:eb:80:2d:c6:e1:51:ea:ee:
55:63:55:ec:10:fd:e5:05:4c:c2:2f:dd:ca:3a:f2:
43:24:4d:d7:3c:9a:cf:0a:b2:5c:9e:4b:84:70:29:
69:de:ce:82:39:0b:71:d7:51:0c:59:f1:7c:37:cf:
fa:e2:df:d0:ff:ec:b2:ce:17:2d:f3:cd:b2:0a:bb:
0e:81:cd:b4:e0:6a:72:2b:7c:75:c3:b0:64:36:d0:
e6:c9:06:77:5c:fe:76:19:02:c9:8a:2e:3d:99:59:
e9:95:ca:4f:fc:91:e2:57:89:2d:96:a3:58:e5:5d:
02:90:18:3e:7b:2c:27:bb:3f:18:bb:da:84:7e:33:
a2:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:6C:03:93:DE:E4:D5:1E:89:2C:51:79:0B:DA:68:1C:1D:29:1D:CC
X509v3 Authority Key Identifier:
keyid:32:C7:8E:EE:F7:AC:B4:51:FC:37:57:5F:EB:91:14:DF:CC:C1:CD:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MseO7vestFH8N1df65EU38zBzfs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/225bcb-6d3d-4c0e-824f-2f1c8e408b64/1/1mwDk97k1R6JLFF5C9poHB0pHcw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/225bcb-6d3d-4c0e-824f-2f1c8e408b64/1/MseO7vestFH8N1df65EU38zBzfs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.242.0/24
Signature Algorithm: sha256WithRSAEncryption
19:c0:b1:cd:ff:48:64:cd:13:7a:9c:b3:c6:60:7b:3b:9a:b6:
10:d9:f9:9e:c9:4f:98:ec:44:61:94:81:bd:f6:90:17:5b:44:
92:cb:95:a2:8e:84:65:7c:47:84:99:72:df:66:3e:72:58:6b:
ec:4a:49:93:55:b3:b9:e9:34:8e:6f:3c:21:b9:3b:7c:95:af:
56:00:18:8c:a4:66:9a:c2:2b:8f:35:99:c0:4d:30:8b:9a:9b:
6e:f1:6d:3c:cc:86:f2:e2:a9:02:b5:3c:c1:f7:20:15:d7:13:
67:30:2e:af:39:a5:25:a8:20:5e:25:89:d5:54:d6:70:d8:e4:
64:08:55:e6:ba:c5:8b:b4:e0:e6:43:95:06:aa:24:4d:e5:06:
6f:a4:c9:2a:8c:9d:78:54:65:b5:c7:a9:69:f8:c2:34:bb:3d:
b0:71:fe:bf:28:f0:2f:06:af:05:27:12:57:fd:27:94:06:44:
d6:40:e7:e6:85:b2:e6:3f:b7:76:5c:7a:72:64:79:2a:ca:aa:
f3:db:e1:c8:3d:cc:fb:89:65:25:cd:d7:a7:85:9f:b5:31:16:
cf:56:78:97:67:a8:87:e8:df:cd:c8:cf:5a:e4:24:b5:df:c2:
3c:04:32:10:a1:a9:05:f4:45:59:24:32:cd:85:87:14:d6:7f:
0a:18:da:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 21 18:16:54 2024 by rpki-client on console-ams.rpki-client.org