Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/MPgzDSv1ydLqZBqHwsi9JdblNHA.roa
File: MPgzDSv1ydLqZBqHwsi9JdblNHA.roa (raw, json)
Hash identifier: WEhVrvVg6oG35kBfJp3zniTpbHLas3shwqzRtBQTCjM=
Subject key identifier: 30:F8:33:0D:2B:F5:C9:D2:EA:64:1A:87:C2:C8:BD:25:D6:E5:34:70
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 018573283F01B4290A2C62C3847D2FD9B118
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/MPgzDSv1ydLqZBqHwsi9JdblNHA.roa
Signing time: Mon 02 Jan 2023 15:44:55 +0000
ROA not before: Mon 02 Jan 2023 15:44:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47670
IP address blocks: 94.249.152.0/24 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:28:3f:01:b4:29:0a:2c:62:c3:84:7d:2f:d9:b1:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 2 15:44:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=30f8330d2bf5c9d2ea641a87c2c8bd25d6e53470
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b9:7b:d6:05:51:d9:c2:7d:bd:6b:2d:62:0b:
aa:86:b0:a6:c6:05:2e:08:3e:db:a1:f0:1c:7d:c1:
e2:fe:74:fc:ff:f6:5c:65:d8:87:83:0c:0d:f6:c0:
63:5a:c6:83:d7:8d:3c:cf:bd:a2:e8:10:c3:30:71:
b1:ff:df:bd:31:6b:67:28:68:0b:15:19:3c:45:76:
7d:03:ce:f4:85:b8:da:04:19:53:cc:c3:e2:51:1e:
36:e0:79:94:07:9e:21:bb:f7:8b:6d:94:20:4e:71:
bd:c9:ee:0c:da:61:27:69:3b:d1:18:3f:c5:ba:e0:
ed:35:7b:ba:19:81:4b:b6:57:5e:69:a8:e0:85:86:
96:66:ec:da:c4:b0:b6:cb:08:7b:2f:dd:85:72:d1:
8a:c3:50:dc:ec:13:e7:5a:73:da:af:04:2a:6d:ea:
94:4b:d7:e4:6d:96:f3:34:9f:fe:76:13:e2:06:1c:
99:74:ff:8e:3f:42:4e:c7:58:62:cd:2b:fa:02:0a:
93:cc:f4:33:32:4a:25:a0:2e:c3:bb:c6:1b:54:bc:
94:33:1a:90:e0:2f:e3:b7:4e:4d:ff:af:af:4a:00:
fc:9f:59:a2:29:79:6f:4b:fa:c6:31:09:95:58:6c:
c5:64:bd:a8:f2:5f:54:2b:2f:6a:e7:78:14:82:d4:
45:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:F8:33:0D:2B:F5:C9:D2:EA:64:1A:87:C2:C8:BD:25:D6:E5:34:70
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/MPgzDSv1ydLqZBqHwsi9JdblNHA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.249.152.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:dc:c6:8b:e6:f4:23:08:ea:1f:86:da:e2:29:da:7a:6f:3b:
72:fe:41:30:ee:24:a6:45:ee:6d:11:fc:1f:3e:95:77:46:66:
db:ed:bf:18:b3:c1:3c:bc:41:db:2f:f2:9d:f3:9d:32:18:08:
10:21:e1:12:70:5a:d7:77:b4:f0:12:74:c8:09:69:3e:7e:48:
ef:a2:9d:06:99:d7:87:41:02:a0:51:bd:63:25:8e:12:ee:2d:
de:a5:21:2f:de:69:af:5a:e2:9d:8a:f0:f3:4a:b5:c4:98:5b:
ee:5a:e6:9c:7e:4f:1e:e9:72:4a:6f:e8:fa:dc:b2:63:a9:af:
4d:56:1f:f3:b8:29:67:3b:b5:c6:4f:f3:91:07:e5:ad:3d:ee:
5f:35:e2:0e:fb:e8:ca:4a:f6:51:61:b0:b5:85:f4:db:c9:ce:
79:0c:e1:31:f8:b3:3f:05:bd:95:c2:df:89:c7:05:07:bf:07:
66:1c:82:b0:3a:65:fd:9a:18:ad:09:e6:67:88:7a:08:04:65:
fb:ad:43:10:26:2b:df:cf:d7:d0:0f:9f:49:c6:ec:e9:f5:30:
a9:3c:c4:fe:fc:06:b3:4b:8c:ca:ce:85:96:b2:ea:66:3b:a7:
ee:88:6d:f2:19:dd:3b:c1:9d:96:e7:bb:e2:49:1e:fd:9f:e7:
33:3d:16:eb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVzKD8BtCkKLGLDhH0v2bEYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjMwMTAyMTU0NDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMGY4MzMwZDJiZjVjOWQyZWE2NDFhODdjMmM4YmQyNWQ2ZTUzNDcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqbl71gVR2cJ9vWstYguqhrCmxgUu
CD7bofAcfcHi/nT8//ZcZdiHgwwN9sBjWsaD1408z72i6BDDMHGx/9+9MWtnKGgL
FRk8RXZ9A870hbjaBBlTzMPiUR424HmUB54hu/eLbZQgTnG9ye4M2mEnaTvRGD/F
uuDtNXu6GYFLtldeaajghYaWZuzaxLC2ywh7L92FctGKw1Dc7BPnWnParwQqbeqU
S9fkbZbzNJ/+dhPiBhyZdP+OP0JOx1hizSv6AgqTzPQzMkoloC7Du8YbVLyUMxqQ
4C/jt05N/6+vSgD8n1miKXlvS/rGMQmVWGzFZL2o8l9UKy9q53gUgtRF7QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDD4Mw0r9cnS6mQah8LIvSXW5TRwMB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEvTVBnekRTdjF5ZExxWkJxSHdzaTlKZGJsTkhBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXvmYMA0G
CSqGSIb3DQEBCwUAA4IBAQDM3MaL5vQjCOofhtriKdp6bzty/kEw7iSmRe5tEfwf
PpV3Rmbb7b8Ys8E8vEHbL/Kd850yGAgQIeEScFrXd7TwEnTICWk+fkjvop0GmdeH
QQKgUb1jJY4S7i3epSEv3mmvWuKdivDzSrXEmFvuWuacfk8e6XJKb+j63LJjqa9N
Vh/zuClnO7XGT/ORB+WtPe5fNeIO++jKSvZRYbC1hfTbyc55DOEx+LM/Bb2Vwt+J
xwUHvwdmHIKwOmX9mhitCeZniHoIBGX7rUMQJivfz9fQD59Jxuzp9TCpPMT+/Aaz
S4zKzoWWsupmO6fuiG3yGd07wZ2W57viSR79n+czPRbr
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:54 2024 by rpki-client on console-ams.rpki-client.org