Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/MmNYWkShEhKUbifW6bdnykhXxq0.roa
File: MmNYWkShEhKUbifW6bdnykhXxq0.roa (raw, json)
Hash identifier: C43/WJnfNGBrA8d7ZHTEOF7Tberzmbsoub8UEWQXjB4=
Subject key identifier: 32:63:58:5A:44:A1:12:12:94:6E:27:D6:E9:B7:67:CA:48:57:C6:AD
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 018EF6076E53D99F1A3A45C7DDF8659D8B1A
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/MmNYWkShEhKUbifW6bdnykhXxq0.roa
Signing time: Fri 19 Apr 2024 11:04:25 +0000
ROA not before: Fri 19 Apr 2024 11:04:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29470
IP address blocks: 45.135.167.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 24 Apr 2024 18:42:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:f6:07:6e:53:d9:9f:1a:3a:45:c7:dd:f8:65:9d:8b:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Apr 19 11:04:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3263585a44a11212946e27d6e9b767ca4857c6ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:96:5e:7a:21:23:71:30:ae:32:a0:be:9e:42:
a7:82:68:16:3e:32:d1:aa:65:6a:1a:92:e7:91:1f:
91:1f:cb:fd:01:b5:3e:57:f3:08:5a:46:59:c9:83:
bb:6b:6e:1b:a8:a1:a5:66:51:3c:81:5b:c9:51:df:
ef:bb:71:fb:da:fb:8f:ff:71:70:5f:05:ce:d7:62:
15:bf:d2:2c:ff:92:55:56:f6:23:f1:d1:21:95:35:
ab:e3:56:f0:e2:18:62:02:4e:16:47:7e:5d:b7:14:
29:0d:b7:ff:d7:9a:46:1a:50:6e:4d:5d:15:26:28:
87:f7:71:72:75:e3:f3:ef:c5:88:4c:b1:ed:25:f6:
7e:6f:d6:a7:ba:70:e6:bd:b9:7f:b2:ff:16:ca:fe:
05:83:53:c9:36:f0:bb:03:ca:fb:f0:26:7f:14:96:
ae:ad:a7:86:d0:1a:1e:45:a3:00:26:a1:82:ac:56:
bf:5d:e9:62:b5:a2:97:a6:26:55:65:6e:5e:cc:78:
bd:43:c1:21:0d:3e:38:ed:50:5b:1e:f1:f1:34:cc:
04:60:23:fb:3b:27:5c:d0:64:c6:4a:00:04:db:33:
84:ab:06:22:a2:f2:d8:6d:be:d2:d9:82:db:13:f0:
24:dc:f7:2c:c5:79:4d:c6:2b:68:17:41:d3:de:d0:
a4:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:63:58:5A:44:A1:12:12:94:6E:27:D6:E9:B7:67:CA:48:57:C6:AD
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/MmNYWkShEhKUbifW6bdnykhXxq0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.167.0/24
Signature Algorithm: sha256WithRSAEncryption
24:8b:0a:36:b9:2b:cb:91:03:dc:ce:22:59:78:87:53:4c:4e:
78:46:bd:38:39:3e:1c:78:4a:e3:68:62:89:01:23:f1:30:5a:
0c:be:bf:c3:8d:17:8e:85:d7:86:88:bf:e9:22:c8:be:65:f2:
1a:e6:e9:fc:3e:1f:ca:17:d1:f2:92:e4:3d:32:10:d5:b8:df:
ed:41:18:82:ea:00:2d:14:8b:77:d3:b9:d5:77:a9:61:7a:48:
fd:c0:bb:de:a0:4d:0e:81:d2:e9:b2:50:4b:2a:01:6b:50:df:
ef:e3:d9:76:64:91:a2:e4:ec:68:b8:c2:b8:f7:5b:57:a7:b2:
8c:1d:12:39:25:5b:93:7d:f5:d7:ca:0b:d9:d5:9b:b9:82:7b:
61:86:04:c5:8d:48:79:58:16:f5:64:03:ad:e6:53:8a:5b:37:
49:48:ef:2f:60:3f:96:57:c0:c9:13:5c:ad:54:5b:a9:71:be:
98:cc:1c:5c:43:53:c6:b7:24:08:aa:6a:bf:2e:ca:dc:8d:f7:
dd:83:c1:0f:67:78:55:21:c5:fc:04:fe:d4:e2:30:ba:31:ab:
60:0e:12:f5:8e:a2:03:09:20:9d:77:b5:2b:4e:fe:48:16:8a:
ac:ed:42:75:83:af:7c:94:b3:aa:3b:5f:89:d6:3b:00:fe:76:
d6:ab:16:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 22:48:47 2024 by rpki-client on console-ams.rpki-client.org