Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/MNY_dXsXdZ-v0Z7hFCGdpa08tMc.roa
File: MNY_dXsXdZ-v0Z7hFCGdpa08tMc.roa (raw, json)
Hash identifier: CLaByZHHAzq4AhB9qGvbtalZEGgLo5kMr2ysfadGN38=
Subject key identifier: 30:D6:3F:75:7B:17:75:9F:AF:D1:9E:E1:14:21:9D:A5:AD:3C:B4:C7
Certificate issuer: /CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Certificate serial: 0193D49915C45DAA2B36FD5E2CBD1E2055A6
Authority key identifier: DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/MNY_dXsXdZ-v0Z7hFCGdpa08tMc.roa
Signing time: Tue 17 Dec 2024 12:30:22 +0000
ROA not before: Tue 17 Dec 2024 12:30:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208485
IP address blocks: 94.154.43.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 05:48:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:d4:99:15:c4:5d:aa:2b:36:fd:5e:2c:bd:1e:20:55:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Validity
Not Before: Dec 17 12:30:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=30d63f757b17759fafd19ee114219da5ad3cb4c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:7d:b1:14:41:99:da:94:a8:04:9a:49:d2:e5:
91:10:6e:4e:78:e6:56:f1:65:7f:f9:78:67:6d:0d:
3a:9d:0b:a6:b0:4e:6b:c5:39:ee:dd:3c:5d:c9:ef:
53:3c:1f:a5:9d:af:2b:23:11:8c:07:f3:08:7b:6b:
f0:53:bc:44:30:d8:15:35:dd:ae:5f:90:d2:32:e5:
f8:22:f9:bc:2b:40:da:95:4f:87:51:fb:68:e9:39:
02:2f:cb:12:20:8a:a1:be:01:82:9b:ce:d9:f6:74:
1c:a1:6b:c9:23:6e:44:6e:48:10:d2:db:0e:75:d7:
ea:68:ff:e6:b9:d0:21:af:42:8f:ad:3b:85:60:f7:
b1:1c:0c:30:28:d7:d8:e9:c7:95:cb:b1:0e:27:d0:
24:43:a4:44:13:ec:2d:d1:f0:eb:ec:6c:b7:77:90:
96:bc:6a:0d:65:f2:6e:5e:ed:b3:05:d9:a6:45:2b:
c3:e6:c1:1d:85:d5:15:2e:64:cf:14:dd:8a:cb:33:
55:f1:f3:a0:56:28:33:7f:35:84:c8:68:1c:55:26:
21:9a:1f:5c:9a:f1:47:7f:69:c9:0c:66:0e:d4:79:
2e:ee:9e:02:e0:7a:6e:65:07:18:06:e0:d2:2b:bc:
62:9e:44:a7:0a:07:08:0e:12:12:b9:cc:9f:0b:da:
e8:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:D6:3F:75:7B:17:75:9F:AF:D1:9E:E1:14:21:9D:A5:AD:3C:B4:C7
X509v3 Authority Key Identifier:
keyid:DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/MNY_dXsXdZ-v0Z7hFCGdpa08tMc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/3BHa76_4HH5QEnjYfZvCsgTXEVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.43.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:4e:02:64:75:e9:74:1e:9c:e8:c8:4a:1f:c6:20:70:d4:cb:
09:74:70:2c:08:28:98:40:29:c0:b8:65:39:a8:7e:21:f1:98:
32:ed:1d:23:1d:d7:74:2f:28:cb:e7:ef:71:87:08:4f:9a:c5:
53:c1:5b:0a:a0:77:94:b8:4a:a6:f7:ec:0a:2e:d5:05:f3:7b:
8e:63:f6:35:b0:20:30:1f:6d:67:0a:9d:f2:53:33:63:04:e5:
2b:bf:ca:d5:1b:e6:0e:26:83:5e:13:98:9d:94:33:21:a9:5c:
1d:59:7c:91:e4:d6:c6:39:54:dc:fd:52:8c:36:77:04:04:90:
da:0e:19:89:d0:4f:f0:04:6d:81:4a:0b:9b:56:7a:4d:26:34:
1c:83:3c:94:a4:5a:be:f4:7e:c4:05:b2:e7:9a:db:6a:05:90:
58:9c:9b:7f:6b:9c:19:54:90:20:92:f8:27:38:d2:ce:0f:53:
2d:1f:78:a5:59:f5:b9:ce:26:7b:e3:13:aa:54:e9:2b:8f:32:
65:96:62:b1:c2:4f:99:a3:25:91:38:ed:43:c9:07:b8:17:f8:
e5:8f:ea:b3:78:d3:c4:a1:fd:5a:b6:43:2e:26:72:de:8b:31:
3a:8d:42:11:87:eb:b7:ad:c5:fb:30:dd:af:2f:69:73:41:9e:
7a:4f:91:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 04:00:52 2025 by rpki-client