Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/22e1d1-9984-4158-8d18-cf818c7c451a/1/MvitbM-SE1U5jASxm1C3UEa_45o.roa
File: MvitbM-SE1U5jASxm1C3UEa_45o.roa (raw, json)
Hash identifier: cvq/vRtvVQ1WxpN3sku57DrYZGTg3hKCA9aTuMME1WU=
Subject key identifier: 32:F8:AD:6C:CF:92:13:55:39:8C:04:B1:9B:50:B7:50:46:BF:E3:9A
Certificate issuer: /CN=0d72fe2c805ed63afc9c89e9324ac94d30939aab
Certificate serial: 018FAB14421BB3171DB33D478B3FF19F40B7
Authority key identifier: 0D:72:FE:2C:80:5E:D6:3A:FC:9C:89:E9:32:4A:C9:4D:30:93:9A:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXL-LIBe1jr8nInpMkrJTTCTmqs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/22e1d1-9984-4158-8d18-cf818c7c451a/1/MvitbM-SE1U5jASxm1C3UEa_45o.roa
Signing time: Fri 24 May 2024 14:49:42 +0000
ROA not before: Fri 24 May 2024 14:49:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198691
IP address blocks: 109.245.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 15:47:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ab:14:42:1b:b3:17:1d:b3:3d:47:8b:3f:f1:9f:40:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d72fe2c805ed63afc9c89e9324ac94d30939aab
Validity
Not Before: May 24 14:49:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=32f8ad6ccf921355398c04b19b50b75046bfe39a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:3d:eb:9c:01:d4:d3:f7:9e:1a:b7:b5:95:d9:
b9:42:62:50:77:21:fc:8c:2a:dc:ca:65:bf:15:e2:
b5:f7:63:d7:27:1f:6e:fd:1e:29:41:81:3a:42:fe:
b9:6e:73:8c:b6:48:fd:31:5e:e1:38:05:93:27:59:
28:37:95:73:4c:df:c8:65:9b:98:21:e6:80:ec:21:
e5:e8:b1:03:62:87:62:f4:d2:1a:80:81:e2:94:4c:
91:1b:d1:dc:78:53:de:b7:10:6f:f2:54:74:2d:c2:
60:68:37:bb:6a:d0:99:a2:88:66:b7:81:d7:b2:86:
5d:88:6c:17:bb:f3:c9:ba:61:3b:e3:a2:a0:a1:59:
7b:92:0f:81:39:0a:fa:ff:7f:69:b7:35:43:d8:77:
2c:c9:76:29:6b:02:2f:b9:dd:f4:1e:b4:63:0b:33:
c9:d9:13:42:5a:5e:22:dd:5d:cc:7d:ed:22:bf:b3:
80:bf:00:76:6d:a5:4e:3c:cf:27:79:71:d7:9f:ec:
af:a8:f6:99:17:27:72:b8:f5:cb:eb:2e:da:4c:8b:
ab:22:4e:cc:e1:3a:08:88:f7:0e:6d:09:42:6f:d6:
92:35:ec:c9:d7:ae:13:51:35:ee:9c:5d:f1:35:05:
31:88:54:5c:36:46:55:2a:1e:e4:17:83:17:ed:12:
aa:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:F8:AD:6C:CF:92:13:55:39:8C:04:B1:9B:50:B7:50:46:BF:E3:9A
X509v3 Authority Key Identifier:
keyid:0D:72:FE:2C:80:5E:D6:3A:FC:9C:89:E9:32:4A:C9:4D:30:93:9A:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXL-LIBe1jr8nInpMkrJTTCTmqs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/22e1d1-9984-4158-8d18-cf818c7c451a/1/MvitbM-SE1U5jASxm1C3UEa_45o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/22e1d1-9984-4158-8d18-cf818c7c451a/1/DXL-LIBe1jr8nInpMkrJTTCTmqs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.245.31.0/24
Signature Algorithm: sha256WithRSAEncryption
68:87:a9:2f:53:b4:64:46:0e:34:03:7e:a2:07:bb:eb:c9:8f:
be:07:44:64:99:e2:c4:f1:bc:66:8b:14:4a:74:9a:71:87:b4:
02:9b:88:80:9b:fa:3e:f7:b9:cc:bf:0e:0e:45:ea:a7:78:b1:
c1:e4:a9:fa:85:d9:44:7d:c1:d4:41:d0:9d:9f:f8:29:d1:ab:
4a:f8:41:65:d3:ee:c9:35:cb:29:ec:ca:79:37:2f:d3:9b:a0:
c3:13:bd:89:11:a7:80:52:83:ad:07:57:0a:64:4b:d4:d7:e1:
7b:a0:9d:5d:b0:5f:7a:d6:23:bf:3f:ff:9a:8b:17:ea:78:ce:
fe:cd:ac:b8:80:06:45:51:1f:2c:bd:38:16:ba:ea:a7:c1:11:
8e:52:27:fc:1f:66:62:22:16:1f:9e:e7:4b:82:24:1c:9b:29:
b7:78:7c:f8:ef:48:b0:aa:2b:29:fb:7f:a0:3f:f3:13:39:36:
36:7c:c0:6e:c7:3f:20:95:d6:af:8b:f3:3a:23:89:18:f9:c2:
ad:7e:30:03:7f:a4:cd:ac:31:e8:b1:97:ea:0e:0d:e0:26:53:
0c:62:03:e2:8c:85:2a:7f:bc:da:85:0f:03:ca:af:05:1b:c7:
f8:3d:59:4f:65:98:5e:27:0c:a6:e2:b5:ec:f3:c4:1e:68:95:
a2:6e:cd:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 01:30:37 2025 by rpki-client