Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/db5101-015c-40c5-905b-657b3a7d9676/1/MUh7xLpn9mf8LjnNTtB-uYMyGqg.roa
File: MUh7xLpn9mf8LjnNTtB-uYMyGqg.roa (raw, json)
Hash identifier: ViPjyqmvSGzs3gdxebzDhDKx3sSUQ2RgS8iXS7ovROQ=
Subject key identifier: 31:48:7B:C4:BA:67:F6:67:FC:2E:39:CD:4E:D0:7E:B9:83:32:1A:A8
Certificate issuer: /CN=30f90d2520ad619ac3060b39fbd2c204e29a2a14
Certificate serial: 01856C6F306567676DEB916B3B5948026357
Authority key identifier: 30:F9:0D:25:20:AD:61:9A:C3:06:0B:39:FB:D2:C2:04:E2:9A:2A:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MPkNJSCtYZrDBgs5-9LCBOKaKhQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/db5101-015c-40c5-905b-657b3a7d9676/1/MUh7xLpn9mf8LjnNTtB-uYMyGqg.roa
Signing time: Sun 01 Jan 2023 08:25:04 +0000
ROA not before: Sun 01 Jan 2023 08:25:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50277
IP address blocks: 195.5.180.0/24 maxlen: 24
2001:67c:1580::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:6f:30:65:67:67:6d:eb:91:6b:3b:59:48:02:63:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30f90d2520ad619ac3060b39fbd2c204e29a2a14
Validity
Not Before: Jan 1 08:25:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=31487bc4ba67f667fc2e39cd4ed07eb983321aa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:d4:ab:0a:e2:15:e5:04:30:a4:85:0d:21:18:
5c:75:f7:a0:4c:56:1e:55:13:4b:2a:16:53:b3:4a:
56:93:15:26:2c:ef:44:09:bf:3a:c8:68:fb:7a:83:
69:87:f3:6a:4c:fd:d2:28:33:f0:c2:2f:c0:76:80:
59:94:d1:e1:2d:0e:ac:96:f3:bb:e4:f7:44:ca:cc:
91:55:95:9e:42:d9:ab:a0:bd:0e:4f:17:bf:b2:43:
07:cd:73:36:77:f0:42:b0:1d:04:ae:1a:49:ea:a2:
a5:fd:9e:ce:98:83:93:70:5e:62:7f:b6:ab:3b:0d:
a0:1b:fe:1f:49:c9:1f:50:41:4e:69:a7:6e:18:bf:
36:1f:b6:25:a8:da:dd:8e:39:b1:dc:e1:6a:44:2c:
16:3e:ae:00:47:c6:25:c6:c1:65:a1:df:0a:63:6a:
0f:69:11:38:0b:78:22:63:f8:de:d1:21:a4:3d:5f:
82:9a:54:96:fc:57:63:8c:40:f7:b0:ac:de:5a:f3:
3a:14:2d:2f:bc:48:e6:2c:8d:ea:91:74:af:92:24:
ec:7d:94:3c:d8:f5:51:6a:e7:7b:15:48:32:3e:f8:
e0:9c:77:9a:8e:72:d2:2a:6f:4a:05:75:18:e8:0e:
36:7e:c1:89:dc:7e:eb:3e:be:51:b8:e4:39:a2:27:
c2:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:48:7B:C4:BA:67:F6:67:FC:2E:39:CD:4E:D0:7E:B9:83:32:1A:A8
X509v3 Authority Key Identifier:
keyid:30:F9:0D:25:20:AD:61:9A:C3:06:0B:39:FB:D2:C2:04:E2:9A:2A:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MPkNJSCtYZrDBgs5-9LCBOKaKhQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/db5101-015c-40c5-905b-657b3a7d9676/1/MUh7xLpn9mf8LjnNTtB-uYMyGqg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/db5101-015c-40c5-905b-657b3a7d9676/1/MPkNJSCtYZrDBgs5-9LCBOKaKhQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.5.180.0/24
IPv6:
2001:67c:1580::/48
Signature Algorithm: sha256WithRSAEncryption
48:95:c8:ca:1b:ad:c5:87:9d:07:cd:5a:46:32:18:a5:e7:16:
ce:03:10:4c:46:b2:3a:1e:95:50:62:a4:58:97:09:d7:09:33:
72:57:71:fd:b1:49:08:5f:44:f9:4b:df:68:a3:8a:81:8d:8b:
13:03:b9:48:66:87:04:4c:01:9e:cc:8f:e9:da:fb:08:e6:55:
6a:0b:8f:cf:f7:ad:cd:cb:8e:b0:bb:76:ff:31:79:90:12:05:
75:82:90:62:23:dd:10:96:45:08:fb:93:9a:86:fa:17:b3:70:
13:3c:94:55:c5:00:2c:cd:66:69:2f:56:b2:53:84:d4:eb:93:
35:b2:40:ce:75:b9:00:39:76:8c:38:cf:e0:96:bf:80:84:57:
9d:52:03:06:48:64:75:ff:55:32:f2:7c:c3:6b:58:9f:98:52:
23:27:8e:47:41:7b:a0:c4:bf:63:44:79:25:89:e7:44:fc:30:
c1:e2:ff:3e:38:be:b3:94:ea:6a:2a:5a:e3:22:72:5b:36:c8:
5b:36:d9:c9:bc:55:5b:24:09:d0:72:f4:56:0f:27:60:49:73:
93:18:70:83:81:16:e0:ea:71:29:32:3f:33:68:15:a5:86:9f:
fd:d7:e2:c8:71:85:fd:20:eb:2a:a4:89:06:df:0b:be:cd:0a:
b6:16:ec:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:17 2024 by rpki-client on console-fra.rpki-client.org