Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/1f3c4d-59e4-4937-bc14-6c88bfa7b55c/1/MTIrmhlvi4y6QdqGMjIFD_36c6I.roa
File: MTIrmhlvi4y6QdqGMjIFD_36c6I.roa (raw, json)
Hash identifier: PdQYZzyDIlMC6Dj2FLzfetm0XAyYJeVYt89eH58FDns=
Subject key identifier: 31:32:2B:9A:19:6F:8B:8C:BA:41:DA:86:32:32:05:0F:FD:FA:73:A2
Certificate issuer: /CN=c8f258ce203e04a33f4e90651153b259cffa3e88
Certificate serial: 01860BEAA4EE131BBA7861BF5BDEBB6AE87B
Authority key identifier: C8:F2:58:CE:20:3E:04:A3:3F:4E:90:65:11:53:B2:59:CF:FA:3E:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yPJYziA-BKM_TpBlEVOyWc_6Pog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/1f3c4d-59e4-4937-bc14-6c88bfa7b55c/1/MTIrmhlvi4y6QdqGMjIFD_36c6I.roa
Signing time: Wed 01 Feb 2023 07:39:32 +0000
ROA not before: Wed 01 Feb 2023 07:39:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200486
IP address blocks: 194.5.100.0/22 maxlen: 24
185.156.205.0/24 maxlen: 24
185.156.204.0/22 maxlen: 24
2a07:a106::/32 maxlen: 32
2a07:a105::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:0b:ea:a4:ee:13:1b:ba:78:61:bf:5b:de:bb:6a:e8:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8f258ce203e04a33f4e90651153b259cffa3e88
Validity
Not Before: Feb 1 07:39:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=31322b9a196f8b8cba41da863232050ffdfa73a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:7d:04:6f:38:e8:43:c5:27:93:83:bc:56:22:
e5:29:56:b8:4e:fd:10:dc:af:ec:ef:32:e7:77:00:
0a:3c:40:b0:4a:9f:48:3b:2a:0b:e0:d5:59:c1:0d:
84:6f:3c:6e:5f:bf:11:f2:42:a3:7f:ce:d8:f9:17:
eb:5e:dc:ec:8e:83:65:6a:da:16:e7:e0:77:82:13:
2e:49:e4:96:52:9f:54:66:07:dd:11:f8:98:50:02:
15:27:06:d9:fd:77:bb:34:42:5a:d3:64:79:20:0d:
1b:a5:51:c9:bc:ef:ab:48:46:16:d4:f8:c3:3c:8a:
d0:38:91:8c:86:f3:ce:9c:37:1a:32:c5:bc:6b:c9:
08:2d:5d:ff:54:04:03:a1:d9:07:85:ce:ac:74:f7:
b1:8b:33:85:72:7e:39:06:e7:cd:b4:0a:49:6f:4b:
04:29:df:ce:ef:0d:fa:78:88:ad:fd:66:94:a9:05:
c1:d4:c3:79:5a:29:d4:ec:09:f5:6d:37:c3:49:15:
a4:4c:6a:c0:37:e8:4e:bf:68:a2:65:1b:01:0e:cd:
ff:6b:40:d7:dc:fe:0d:05:d3:70:01:5d:b0:6c:2f:
4b:cf:ff:93:4c:9e:4e:ff:ce:1d:52:c2:78:69:ca:
67:0d:a6:ba:f7:4f:35:2f:d0:4d:f4:dd:a7:42:7c:
bc:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:32:2B:9A:19:6F:8B:8C:BA:41:DA:86:32:32:05:0F:FD:FA:73:A2
X509v3 Authority Key Identifier:
keyid:C8:F2:58:CE:20:3E:04:A3:3F:4E:90:65:11:53:B2:59:CF:FA:3E:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yPJYziA-BKM_TpBlEVOyWc_6Pog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/1f3c4d-59e4-4937-bc14-6c88bfa7b55c/1/MTIrmhlvi4y6QdqGMjIFD_36c6I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/1f3c4d-59e4-4937-bc14-6c88bfa7b55c/1/yPJYziA-BKM_TpBlEVOyWc_6Pog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.156.204.0/22
194.5.100.0/22
IPv6:
2a07:a105::-2a07:a106:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
c8:cd:df:46:b9:bb:01:cf:7c:b7:a6:30:ee:68:c1:ec:4c:b9:
25:2f:70:1e:f4:0b:b0:a8:29:73:5a:f0:03:6d:6b:4a:05:07:
99:2d:a7:f8:a5:d1:74:5e:81:03:b4:46:23:2d:77:72:c0:dd:
b5:e7:72:ae:80:29:bf:21:03:b2:da:0a:93:9c:6a:b1:e4:02:
4d:61:d1:24:29:32:53:45:3f:c2:c9:71:22:07:dd:44:70:41:
45:e3:8a:4a:ee:d3:0c:1d:1b:97:32:5f:e3:d8:9b:18:fc:92:
69:be:74:0e:82:61:ec:84:30:68:ff:f7:79:00:67:87:8c:4a:
5a:2f:31:b1:c8:ab:cf:fa:97:33:d0:c8:aa:61:38:69:0c:53:
6e:9b:ec:1a:f8:c2:ee:8c:06:32:52:6a:b9:ca:89:41:51:2d:
fe:bf:a8:59:2b:17:35:04:53:3e:84:f1:73:fa:19:eb:10:5a:
1e:ee:62:54:dc:6f:e2:1e:50:05:ed:a5:26:5a:9c:2f:75:9d:
1c:88:06:25:9e:3c:bf:72:02:03:b6:2a:a2:bd:1e:90:90:12:
57:99:13:33:af:a4:42:1f:60:a8:48:35:61:d4:2a:93:48:af:
8b:2b:28:96:ee:fb:2c:ff:b0:40:7d:51:63:3c:ac:ba:07:50:
94:39:b2:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:14 2024 by rpki-client on console-fra.rpki-client.org