Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/225bcb-6d3d-4c0e-824f-2f1c8e408b64/1/mFrTTywQLx2U7N-B1CdZPfTJZUw.roa
File: mFrTTywQLx2U7N-B1CdZPfTJZUw.roa (raw, json)
Hash identifier: 2K4SAkSFNiIPElRUIDDQSYdgM6CVa1jPo2Bk09xq6+A=
Subject key identifier: 98:5A:D3:4F:2C:10:2F:1D:94:EC:DF:81:D4:27:59:3D:F4:C9:65:4C
Certificate issuer: /CN=32c78eeef7acb451fc37575feb9114dfccc1cdfb
Certificate serial: 0185BBE8EA012E04C86B62ACC68640D52B06
Authority key identifier: 32:C7:8E:EE:F7:AC:B4:51:FC:37:57:5F:EB:91:14:DF:CC:C1:CD:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MseO7vestFH8N1df65EU38zBzfs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/225bcb-6d3d-4c0e-824f-2f1c8e408b64/1/mFrTTywQLx2U7N-B1CdZPfTJZUw.roa
Signing time: Mon 16 Jan 2023 18:48:01 +0000
ROA not before: Mon 16 Jan 2023 18:48:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49600
IP address blocks: 45.141.242.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:bb:e8:ea:01:2e:04:c8:6b:62:ac:c6:86:40:d5:2b:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32c78eeef7acb451fc37575feb9114dfccc1cdfb
Validity
Not Before: Jan 16 18:48:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=985ad34f2c102f1d94ecdf81d427593df4c9654c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:a9:51:70:ed:77:f4:ea:c3:0d:7b:38:bd:07:
b7:13:72:5f:62:df:31:20:ad:e5:2a:9e:a4:dc:c8:
76:4f:bd:7b:be:60:e5:68:a6:0e:af:28:12:0a:5e:
85:36:de:c8:fd:36:bb:1f:db:52:08:56:af:a0:48:
8d:1d:fc:a5:ec:b6:06:c2:68:ec:84:40:be:4d:96:
9b:77:33:c3:12:4e:80:15:69:62:55:31:30:aa:cc:
8f:a8:db:7e:d8:67:86:4e:2a:54:96:ad:0a:5a:fa:
4c:a9:f4:13:15:97:d3:dd:3a:fd:de:db:bb:d2:3f:
a1:d0:06:98:d2:a8:f4:7c:f0:39:07:46:16:4c:cd:
5e:bd:e7:7e:b3:87:70:94:d0:72:ae:52:12:00:9e:
a9:d9:2f:2d:fa:c1:fa:51:9d:71:78:ed:26:94:40:
97:c3:cf:23:24:b9:25:ae:54:0c:4e:b7:24:5d:fb:
66:00:c1:92:b6:7d:fd:2f:40:47:27:02:8e:6e:d9:
30:af:0f:0c:26:c7:81:95:73:d4:bb:11:2d:14:30:
cc:ef:0a:48:d9:22:6f:ea:95:b3:2d:a7:cc:71:ac:
5d:56:d0:35:07:3d:45:b5:f1:32:63:7b:d8:13:fa:
0c:6f:d1:a8:66:43:2a:26:db:56:e3:26:d9:e3:57:
c2:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:5A:D3:4F:2C:10:2F:1D:94:EC:DF:81:D4:27:59:3D:F4:C9:65:4C
X509v3 Authority Key Identifier:
keyid:32:C7:8E:EE:F7:AC:B4:51:FC:37:57:5F:EB:91:14:DF:CC:C1:CD:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MseO7vestFH8N1df65EU38zBzfs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/225bcb-6d3d-4c0e-824f-2f1c8e408b64/1/mFrTTywQLx2U7N-B1CdZPfTJZUw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/225bcb-6d3d-4c0e-824f-2f1c8e408b64/1/MseO7vestFH8N1df65EU38zBzfs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.242.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:d0:bc:5d:f5:1d:4e:b2:3d:74:b6:c3:2e:42:5a:15:38:09:
3e:b3:47:26:75:08:a5:e3:4a:1b:f2:23:1c:f7:10:27:71:7e:
9a:17:8d:07:17:02:32:44:e0:a7:f9:09:05:5a:c0:f1:19:3e:
69:57:d1:72:98:08:b5:bb:89:b3:71:76:83:f7:37:32:e2:e1:
e9:01:a6:fe:c1:44:9c:eb:4a:3a:c7:50:bc:a7:d1:c3:5a:70:
16:0c:04:2d:df:6c:53:6e:7f:08:1e:c0:f7:2a:a2:ec:7c:4c:
9c:ac:62:b2:3c:fa:4f:31:f5:a5:8b:e7:83:2c:4e:80:07:a9:
4e:cf:c2:a0:e2:42:d7:3f:15:e4:89:e1:dc:e5:9d:38:4f:95:
a0:70:bd:da:d4:c0:ed:7c:20:0b:c5:9f:e3:93:0f:0b:49:14:
21:93:35:ca:9c:b7:d1:08:56:e3:09:b6:b4:29:2d:39:67:87:
51:77:cd:b8:38:58:1a:50:d7:d2:d6:2c:f6:dd:99:f8:3f:28:
09:c4:b9:34:0b:0a:87:23:71:8b:83:f9:a7:94:58:69:42:09:
9c:32:53:6e:f9:20:97:36:8c:06:12:9d:e5:a3:84:8c:2c:c7:
2d:d3:5c:98:6d:f8:c0:a3:41:6e:ff:b3:7a:7a:cb:72:9a:79:
d2:1f:c6:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 02:13:26 2024 by rpki-client on console.sobornost.net