Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/mx4u916qgc_ECeVzOlD3tSLZoBc.roa
File: mx4u916qgc_ECeVzOlD3tSLZoBc.roa (raw, json)
Hash identifier: Ed/W0dx6aCLwzgy37Dwp8hHWq8pjHGELEC/iaA+JYYc=
Subject key identifier: 9B:1E:2E:F7:5E:AA:81:CF:C4:09:E5:73:3A:50:F7:B5:22:D9:A0:17
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 0192766DFAC103680ECE1FF92BA2C87B5B67
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/mx4u916qgc_ECeVzOlD3tSLZoBc.roa
Signing time: Thu 10 Oct 2024 12:36:12 +0000
ROA not before: Thu 10 Oct 2024 12:36:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214088
IP address blocks: 85.133.221.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 24 Oct 2024 19:48:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:76:6d:fa:c1:03:68:0e:ce:1f:f9:2b:a2:c8:7b:5b:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Oct 10 12:36:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9b1e2ef75eaa81cfc409e5733a50f7b522d9a017
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:25:18:c8:86:b6:03:66:bf:46:fb:b1:b0:3f:
47:d8:ce:e9:bd:5d:95:49:71:eb:6c:5d:55:76:1e:
72:3a:5f:74:63:d6:63:8b:90:f9:21:23:03:40:0e:
28:92:6c:2f:73:68:d1:6f:e4:b9:2d:f1:6f:b7:8f:
6a:9b:1c:b9:61:00:ce:76:5a:33:4d:6a:09:86:af:
7c:b1:74:1b:bf:fd:c2:48:29:6f:81:5c:76:0a:9a:
bd:ed:83:98:20:a3:e8:49:90:fa:ae:9e:d1:25:d4:
47:ab:ad:15:c0:24:42:77:1b:4d:07:63:3d:69:24:
42:b3:07:80:35:22:31:52:e4:a4:f0:80:a6:88:a4:
28:d6:83:4d:87:19:2e:87:af:05:6a:19:84:27:6e:
91:77:8d:30:bb:d2:f7:d4:53:ff:d5:f9:8f:34:16:
c0:68:87:bd:7e:a4:e4:35:41:4f:fa:87:ae:6a:bf:
71:b0:4a:5e:48:76:97:79:20:ee:d0:89:7e:a8:c3:
f0:55:86:5c:28:61:0c:8f:64:62:91:87:ac:6d:6b:
79:d4:56:24:b1:00:70:d9:10:e0:50:a7:3c:7c:86:
8d:f6:fb:19:d3:52:3f:c6:6f:10:ae:39:34:86:d7:
c3:7b:14:08:85:d4:44:f3:56:ff:28:55:d6:35:40:
7d:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:1E:2E:F7:5E:AA:81:CF:C4:09:E5:73:3A:50:F7:B5:22:D9:A0:17
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/mx4u916qgc_ECeVzOlD3tSLZoBc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.221.0/24
Signature Algorithm: sha256WithRSAEncryption
63:36:09:d5:ec:9f:3c:aa:db:e4:07:eb:af:73:eb:87:34:14:
9c:a0:d7:ed:82:e4:55:52:ff:05:1c:b8:0a:65:de:09:95:67:
24:a6:ad:e6:b0:5a:a0:0c:f9:0d:41:a7:f5:a4:38:79:36:91:
e2:f7:2d:ef:c5:d1:99:73:bc:d6:6a:46:70:bd:e0:54:f1:0f:
3c:78:b4:24:0a:37:c0:a6:2c:55:f6:12:7a:bf:f4:4c:01:d6:
1f:9f:63:67:f7:fd:3e:46:cc:fc:98:69:d2:4d:a4:95:28:62:
07:b6:b9:42:a6:9b:4f:90:9a:67:a0:0d:c8:70:9f:5a:43:79:
8a:22:07:b2:ba:07:40:a3:d3:6d:3e:16:d0:87:4f:ee:b4:82:
aa:21:98:6d:0f:95:09:1a:0b:8d:c8:ac:13:82:3e:17:e0:c0:
e7:8b:bd:5f:9c:17:2e:3d:a5:b0:3b:3b:e3:82:dc:81:7a:f6:
69:4e:25:47:81:f0:db:ae:75:05:85:9d:e9:9e:d3:d3:f8:93:
58:29:83:28:26:42:2e:34:58:81:36:5d:f5:60:c4:4e:b8:04:
b2:f7:9b:6b:fe:c0:cc:fc:7d:3f:e9:d4:a7:78:c5:17:33:d5:
07:5a:49:b3:d0:fd:58:dc:97:bc:ee:5e:4a:9e:1f:4d:10:82:
c1:0a:a3:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 22:39:05 2024 by rpki-client on console-fra.rpki-client.org