Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/986dde-5f68-4c21-b546-d540df886bab/1/MDY7de3pFSbskMpSawa149rQnvA.roa
File: MDY7de3pFSbskMpSawa149rQnvA.roa (raw, json)
Hash identifier: CSjOfh6GGb6QNxVZJCFowquP/QPFoM1RJYQrypLMRMA=
Subject key identifier: 30:36:3B:75:ED:E9:15:26:EC:90:CA:52:6B:06:B5:E3:DA:D0:9E:F0
Certificate issuer: /CN=e795c9617ca5a6a3bff263fc1837992fd1ac47f2
Certificate serial: 01856F02331378A9B7EC2AE10F81671552D8
Authority key identifier: E7:95:C9:61:7C:A5:A6:A3:BF:F2:63:FC:18:37:99:2F:D1:AC:47:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/55XJYXylpqO_8mP8GDeZL9GsR_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/986dde-5f68-4c21-b546-d540df886bab/1/MDY7de3pFSbskMpSawa149rQnvA.roa
Signing time: Sun 01 Jan 2023 20:24:53 +0000
ROA not before: Sun 01 Jan 2023 20:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 45.149.154.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:33:13:78:a9:b7:ec:2a:e1:0f:81:67:15:52:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e795c9617ca5a6a3bff263fc1837992fd1ac47f2
Validity
Not Before: Jan 1 20:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=30363b75ede91526ec90ca526b06b5e3dad09ef0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:ab:5d:84:7a:a3:84:47:c2:45:b8:8e:00:62:
65:c0:21:72:c4:36:d7:6c:82:8e:02:2d:c2:a4:3a:
8a:32:5d:ad:87:d7:2d:0a:01:bc:31:6a:73:87:50:
02:be:0d:df:91:26:af:fd:f7:8b:6d:c5:bd:a4:c6:
34:45:ea:8b:d1:57:9a:d5:85:48:60:6e:ea:d4:87:
47:c7:e9:0f:67:c6:8a:b6:9e:02:f7:92:38:f1:a1:
b1:a0:5b:15:a7:8a:43:1e:69:00:1c:9c:ff:8e:c3:
35:01:89:a9:bc:0e:90:0c:25:cb:8f:01:5f:4e:85:
83:9a:e2:a7:54:6e:20:c0:8d:50:02:6a:bf:a4:2b:
68:88:b6:a5:e9:71:69:4d:ab:82:41:1c:05:26:5b:
04:f4:59:39:09:6a:5d:1c:fc:f6:68:05:2e:b1:c2:
9c:b2:55:76:4b:bf:28:8b:f7:54:db:da:b8:7f:57:
1b:38:bc:f1:ce:0e:52:d7:ac:eb:13:39:16:c1:5f:
f4:ac:2d:e0:2a:ab:6b:e1:43:ba:83:6b:2a:00:78:
34:5e:9f:76:48:32:f1:21:4a:95:70:1b:e4:2c:c2:
7e:14:fc:f8:62:36:bd:26:51:e8:6d:6d:8f:a0:ed:
f2:78:6b:d4:14:a2:bd:15:6d:bf:6e:4c:fb:33:0c:
c6:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:36:3B:75:ED:E9:15:26:EC:90:CA:52:6B:06:B5:E3:DA:D0:9E:F0
X509v3 Authority Key Identifier:
keyid:E7:95:C9:61:7C:A5:A6:A3:BF:F2:63:FC:18:37:99:2F:D1:AC:47:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/55XJYXylpqO_8mP8GDeZL9GsR_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/986dde-5f68-4c21-b546-d540df886bab/1/MDY7de3pFSbskMpSawa149rQnvA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/986dde-5f68-4c21-b546-d540df886bab/1/55XJYXylpqO_8mP8GDeZL9GsR_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.154.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:10:fe:b7:9b:fb:7a:53:1a:69:03:c0:75:6d:50:c9:ff:91:
18:73:fe:55:d0:76:12:56:6d:4f:e9:36:93:a8:4d:c3:2b:28:
82:9b:43:ab:29:bf:5e:77:3c:43:3e:e4:a1:5b:d8:db:5f:21:
87:23:46:d4:c2:66:cf:0d:12:93:9d:05:85:ef:df:fc:76:0f:
fc:b4:9a:77:4f:5d:d6:ca:f1:2a:1b:cb:e3:72:ab:cb:3d:2a:
88:e5:b8:b6:67:07:a0:4b:bf:97:d4:09:d8:ae:f1:55:01:ae:
83:16:46:b6:2a:13:33:ff:bc:ff:39:99:a5:58:62:38:ba:a6:
bd:ca:f5:14:77:39:57:4b:bc:96:99:05:24:ce:12:ec:41:d0:
8c:2b:4b:43:d2:11:a4:80:8f:dc:99:2f:44:d7:02:06:d7:bb:
67:73:e3:d7:33:16:e1:b5:f1:d4:07:b1:e3:77:10:5c:a4:08:
f1:e1:63:97:f2:15:cb:a7:b4:30:cb:f1:b0:6e:cf:cf:e8:ab:
6a:e3:a9:4e:78:35:d5:85:14:96:4d:89:8b:77:da:bc:9f:84:
c2:b7:b8:b1:4c:90:49:d6:86:bc:61:b3:43:17:ff:0d:f0:d8:
d0:68:03:b4:fe:96:72:b1:40:de:47:7c:36:a3:0e:a7:9f:b5:
14:3c:c7:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:02 2023 by rpki-client on console-ams.rpki-client.org