Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/mLK-Kqq4OlwrWJwgNiDPFfnRmWM.roa
File: mLK-Kqq4OlwrWJwgNiDPFfnRmWM.roa (raw, json)
Hash identifier: W0c31Jg7h6hc0wgiM4UlW7HunR+o7qHE4z3euT1EL+I=
Subject key identifier: 98:B2:BE:2A:AA:B8:3A:5C:2B:58:9C:20:36:20:CF:15:F9:D1:99:63
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018F62ECCD42603D26A140AC96EDD56C7B30
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/mLK-Kqq4OlwrWJwgNiDPFfnRmWM.roa
Signing time: Fri 10 May 2024 14:33:57 +0000
ROA not before: Fri 10 May 2024 14:33:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 399486
IP address blocks: 45.88.91.0/24 maxlen: 24
79.110.49.0/24 maxlen: 24
80.76.49.0/24 maxlen: 24
85.209.133.0/24 maxlen: 24
194.59.30.0/24 maxlen: 24
194.59.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 Jul 2024 19:10:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:62:ec:cd:42:60:3d:26:a1:40:ac:96:ed:d5:6c:7b:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: May 10 14:33:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=98b2be2aaab83a5c2b589c203620cf15f9d19963
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:31:2d:5f:a6:01:28:f5:96:8b:24:a5:91:7d:
56:33:2e:e6:c9:18:9c:fc:52:fb:cd:8d:49:ea:80:
eb:37:41:2f:af:29:28:21:11:59:0b:92:d2:24:38:
dd:a9:6f:4e:89:6e:2d:97:49:04:28:21:34:fe:3f:
b1:bf:a5:d2:60:bd:fa:b5:6b:7b:db:e0:fc:12:7f:
2b:51:8d:eb:8c:1a:c0:cf:fa:a5:b5:d1:3e:a0:0f:
3f:16:1f:1b:ad:2e:4b:d4:ff:c1:8c:85:6b:ef:90:
ef:88:35:50:07:08:cd:08:a0:af:eb:bf:27:ad:f2:
1b:ea:a4:83:0e:fb:7a:46:d1:99:8d:8c:5b:10:e9:
b9:f0:ba:d9:c2:00:4f:01:db:a5:e6:33:f6:36:80:
ba:7e:f9:0d:35:46:13:aa:31:01:a0:2b:d2:50:3a:
71:ef:24:30:1c:11:55:40:8d:7a:6a:cb:7b:53:18:
05:92:0b:b6:7f:43:b6:a8:a2:5c:c2:2b:49:25:2f:
4d:84:4c:6e:5f:05:e4:43:6e:f3:70:c9:e0:f0:a4:
14:e2:2b:ff:1a:b9:e1:8a:89:7d:6e:51:96:18:1a:
33:ca:f4:30:c4:04:f4:15:b8:53:51:ee:14:3d:79:
0c:bd:47:a8:4b:7b:b8:ed:ae:cb:a7:31:3e:eb:1c:
05:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:B2:BE:2A:AA:B8:3A:5C:2B:58:9C:20:36:20:CF:15:F9:D1:99:63
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/mLK-Kqq4OlwrWJwgNiDPFfnRmWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.91.0/24
79.110.49.0/24
80.76.49.0/24
85.209.133.0/24
194.59.30.0/23
Signature Algorithm: sha256WithRSAEncryption
2a:3c:66:01:13:93:b0:08:62:25:7d:0c:bd:2b:7d:69:65:ad:
e6:87:d9:a8:69:c3:21:a8:3f:14:e2:20:d1:ca:56:00:b6:24:
06:f6:38:fd:2a:74:23:47:9f:53:66:fd:cd:ff:c9:f8:c5:1a:
5e:98:d8:0e:99:b7:36:b1:59:32:be:01:61:44:4c:f9:af:4a:
ef:57:de:85:f2:0c:ee:10:55:ee:16:7c:15:c6:35:d7:e9:e5:
2a:22:61:14:6e:2b:c5:1e:6d:77:6a:19:5a:71:02:78:91:13:
e2:c4:bf:3a:28:03:7b:35:11:b1:4e:87:60:b9:03:b9:8b:3a:
d0:a0:a7:cb:af:2c:92:92:49:f6:32:c8:5e:77:67:63:5f:c1:
9f:79:17:03:fe:a0:cd:87:2d:68:09:60:f8:d9:d0:4d:91:b1:
95:18:ce:7a:73:b6:dc:7e:a4:e9:b0:12:b0:61:b9:b0:7c:80:
13:2a:dc:22:26:7f:3a:a8:c2:2b:0c:30:2a:db:e0:e3:25:58:
fe:0e:44:2f:1e:ba:6a:92:bb:be:ef:3f:89:15:16:82:e2:39:
a2:b7:0a:9a:04:76:8e:2f:aa:28:36:dd:ff:8f:ab:d4:0f:02:
93:e8:7b:8f:0c:71:6e:0c:ea:3a:c7:3b:43:3a:97:f5:ee:00:
3e:6b:8f:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 10 20:25:26 2024 by rpki-client on console-fra.rpki-client.org