Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/MIp9f37LV5szYH-y5UlPk1ALQVs.roa
File: MIp9f37LV5szYH-y5UlPk1ALQVs.roa (raw, json)
Hash identifier: rks437AlLyY48qVQxZcF5mQQ3Vzn/n1lgTfDd29prSU=
Subject key identifier: 30:8A:7D:7F:7E:CB:57:9B:33:60:7F:B2:E5:49:4F:93:50:0B:41:5B
Certificate issuer: /CN=df61a292223ad9aebc8ad82c2a56475fbd97a834
Certificate serial: 018CC3B709453D6C7D0861A8B8053AD0C513
Authority key identifier: DF:61:A2:92:22:3A:D9:AE:BC:8A:D8:2C:2A:56:47:5F:BD:97:A8:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/32GikiI62a68itgsKlZHX72XqDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/MIp9f37LV5szYH-y5UlPk1ALQVs.roa
Signing time: Mon 01 Jan 2024 06:30:01 +0000
ROA not before: Mon 01 Jan 2024 06:30:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206485
IP address blocks: 45.129.136.0/22 maxlen: 22
Validation: Failed, certificate revoked on Sun 14 Apr 2024 07:10:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b7:09:45:3d:6c:7d:08:61:a8:b8:05:3a:d0:c5:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df61a292223ad9aebc8ad82c2a56475fbd97a834
Validity
Not Before: Jan 1 06:30:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=308a7d7f7ecb579b33607fb2e5494f93500b415b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:7d:44:b8:d5:fe:96:dd:a6:71:89:99:c9:7d:
23:cd:3f:b7:ed:d7:14:54:31:64:be:9f:f8:ae:28:
cf:9d:8b:f3:2e:12:29:3d:50:73:7b:0b:3e:05:47:
c0:34:66:90:0b:34:53:02:f8:69:68:fa:31:55:14:
5f:2e:69:0b:41:b4:fe:96:40:2f:57:0b:0f:71:f1:
c5:38:6f:fc:56:f3:70:7b:8d:db:d8:6c:97:fe:b7:
2c:5b:65:62:2d:95:88:01:10:18:1d:0a:22:b8:87:
0d:9c:16:12:c2:7a:47:af:91:33:3e:2d:9f:45:bd:
80:9b:9f:56:a3:ad:1a:3c:2c:20:28:e5:a1:0d:74:
0e:b6:d8:4d:6c:45:43:84:ce:b9:8e:a3:9e:e2:98:
da:52:4b:c9:0a:87:f9:dd:84:8b:25:88:07:2e:44:
c2:33:3b:ca:f4:3c:ef:48:51:a9:e9:e5:22:5e:4f:
38:46:c6:d9:3f:88:0a:29:84:ef:1d:76:07:bf:b5:
7a:dd:7c:02:01:11:ef:c6:1b:e3:aa:1f:3d:6d:f6:
bb:06:11:02:38:e4:46:51:c8:98:fd:ba:2d:1e:c9:
4a:94:09:b0:3a:44:2b:e3:cd:f7:dd:f6:dd:c0:53:
aa:7e:5e:eb:2c:b1:ce:3f:48:b5:f8:61:03:eb:c4:
72:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:8A:7D:7F:7E:CB:57:9B:33:60:7F:B2:E5:49:4F:93:50:0B:41:5B
X509v3 Authority Key Identifier:
keyid:DF:61:A2:92:22:3A:D9:AE:BC:8A:D8:2C:2A:56:47:5F:BD:97:A8:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/32GikiI62a68itgsKlZHX72XqDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/MIp9f37LV5szYH-y5UlPk1ALQVs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.136.0/22
Signature Algorithm: sha256WithRSAEncryption
3f:45:c1:34:bf:de:96:c7:90:cb:78:53:40:1f:10:3e:d6:09:
c6:17:0f:ae:65:75:98:b1:98:a5:66:50:d1:a1:1c:1a:44:7a:
bf:a5:73:9c:db:07:2b:52:95:cf:c5:f0:42:0d:40:3f:c2:a1:
14:0f:84:45:4c:7a:89:ab:8a:f8:7b:bb:3c:ab:d1:42:b8:ad:
a9:4a:96:07:be:39:7e:42:d9:46:83:4d:e3:d0:eb:14:26:8f:
3b:86:06:24:d2:29:af:45:9e:5f:f6:be:6f:d5:99:df:b1:91:
d0:56:c5:d3:cd:ec:12:a6:aa:cf:a6:ae:46:16:55:fb:35:2f:
00:9e:95:24:b7:2b:2b:ef:cc:d0:de:28:ba:ff:b2:05:52:7c:
79:49:ba:85:93:af:8c:25:b0:7a:91:d3:df:21:1c:56:69:8e:
36:e8:40:81:4e:54:99:fe:13:97:44:b6:95:cd:38:5c:69:87:
bb:16:e4:ca:8d:04:92:78:75:38:45:70:08:ab:ff:cf:b5:c7:
4b:b7:8e:4d:a6:c7:3e:0d:30:53:10:d2:c5:11:75:96:57:66:
d8:cd:f2:bb:88:ba:f9:f8:77:e0:de:4e:18:b4:89:31:d9:27:
d6:39:96:c9:54:44:40:11:69:5a:1d:a3:7c:77:d4:32:df:8d:
3f:3e:ff:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 14 10:28:10 2024 by rpki-client on console-ams.rpki-client.org