Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/87b267-49c2-4269-9f66-00bcd9b91c1b/1/mBG3mq_YQrRaTE_2oY73QK8EzSM.roa
File: mBG3mq_YQrRaTE_2oY73QK8EzSM.roa (raw, json)
Hash identifier: c/SUHUwQsj1PhTT8zKZlQ+SBGuh1OQdY63PPLkioEMw=
Subject key identifier: 98:11:B7:9A:AF:D8:42:B4:5A:4C:4F:F6:A1:8E:F7:40:AF:04:CD:23
Certificate issuer: /CN=dc90e0aee1ecc31066cb744f8a7feedefb3f7930
Certificate serial: 018CC5DC519F686DDDF86798147AFECE3892
Authority key identifier: DC:90:E0:AE:E1:EC:C3:10:66:CB:74:4F:8A:7F:EE:DE:FB:3F:79:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3JDgruHswxBmy3RPin_u3vs_eTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/87b267-49c2-4269-9f66-00bcd9b91c1b/1/mBG3mq_YQrRaTE_2oY73QK8EzSM.roa
Signing time: Mon 01 Jan 2024 16:29:59 +0000
ROA not before: Mon 01 Jan 2024 16:29:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204601
IP address blocks: 185.224.215.0/24 maxlen: 24
185.80.234.0/24 maxlen: 24
80.89.228.0/23 maxlen: 23
80.89.230.0/24 maxlen: 24
80.89.234.0/23 maxlen: 23
80.89.238.0/23 maxlen: 23
80.89.237.0/24 maxlen: 24
85.208.186.0/24 maxlen: 24
85.208.184.0/22 maxlen: 22
85.208.184.0/24 maxlen: 24
85.208.185.0/24 maxlen: 24
85.208.187.0/24 maxlen: 24
185.92.148.0/22 maxlen: 24
89.105.213.0/24 maxlen: 24
89.105.217.0/24 maxlen: 24
45.14.13.0/24 maxlen: 24
45.14.12.0/24 maxlen: 24
45.14.14.0/24 maxlen: 24
45.14.15.0/24 maxlen: 24
80.89.224.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 03 Oct 2024 12:25:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:51:9f:68:6d:dd:f8:67:98:14:7a:fe:ce:38:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc90e0aee1ecc31066cb744f8a7feedefb3f7930
Validity
Not Before: Jan 1 16:29:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9811b79aafd842b45a4c4ff6a18ef740af04cd23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:91:6c:00:89:de:0e:ca:cb:77:da:a9:bc:84:
f0:cd:75:9d:4b:db:44:53:cc:b2:08:14:7a:a3:c9:
61:71:74:04:2f:0e:19:23:ac:eb:4e:05:7b:74:86:
fd:15:c0:93:b9:c3:fc:00:de:a0:6c:18:a3:99:f0:
29:87:5b:b8:cb:c3:19:08:2d:a6:2d:a3:74:ca:18:
8f:c5:30:56:db:b8:91:64:02:4a:76:01:86:e0:5d:
b6:05:00:40:63:0e:48:e8:95:1e:cb:cc:b4:d4:c2:
cf:41:f8:78:4f:c5:90:be:f2:fb:4a:4d:d3:e4:cc:
10:00:12:99:f7:9b:16:a7:9e:bb:18:c7:8d:b8:84:
82:2c:93:1a:43:4c:2e:d4:7d:25:c8:1a:28:57:6f:
b2:29:88:96:4f:e7:1b:5a:1a:b0:a2:64:e4:92:f4:
92:fd:9c:8f:ef:61:1c:56:95:c4:7a:78:67:65:a1:
a7:0b:5a:1e:a0:f3:e6:5d:71:ae:7f:5a:ed:f1:d2:
7a:f3:36:12:63:6c:32:95:92:95:7a:c9:a0:20:ce:
e2:18:b5:98:13:60:c4:e0:a1:02:36:c9:8f:72:e2:
c3:2b:a1:07:f8:40:30:ce:7e:0f:49:55:99:5b:02:
fe:d7:8b:57:cc:ae:68:92:db:5a:60:1a:02:c0:d2:
56:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:11:B7:9A:AF:D8:42:B4:5A:4C:4F:F6:A1:8E:F7:40:AF:04:CD:23
X509v3 Authority Key Identifier:
keyid:DC:90:E0:AE:E1:EC:C3:10:66:CB:74:4F:8A:7F:EE:DE:FB:3F:79:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3JDgruHswxBmy3RPin_u3vs_eTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/87b267-49c2-4269-9f66-00bcd9b91c1b/1/mBG3mq_YQrRaTE_2oY73QK8EzSM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/87b267-49c2-4269-9f66-00bcd9b91c1b/1/3JDgruHswxBmy3RPin_u3vs_eTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.14.12.0/22
80.89.224.0-80.89.230.255
80.89.234.0/23
80.89.237.0-80.89.239.255
85.208.184.0/22
89.105.213.0/24
89.105.217.0/24
185.80.234.0/24
185.92.148.0/22
185.224.215.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:32:88:70:10:fd:ff:c0:d4:e6:ac:40:42:cc:19:80:de:97:
c7:61:3b:57:87:01:cf:58:d3:7d:1a:06:8b:53:0e:6e:cd:1e:
63:36:66:96:98:d6:7a:0f:b0:26:ba:d9:e4:7a:cd:9e:be:26:
8f:aa:b0:ba:5c:80:0a:ec:26:69:90:48:4a:55:21:48:ec:d8:
9c:fe:f5:e2:d9:6b:95:10:42:a7:9c:ba:df:0d:38:0b:71:55:
44:58:95:e4:cc:1e:ba:dd:47:b2:01:f1:68:99:a3:3a:f1:e7:
52:4e:76:b0:73:e6:9b:f8:8d:4f:fc:1c:36:22:0d:31:4e:6d:
0b:5f:c2:73:4d:0f:7f:05:12:2e:86:69:88:61:36:9a:81:5d:
1a:6c:d8:64:f1:1c:13:bf:76:e4:d6:92:79:57:9d:61:4a:59:
a9:19:4e:fa:05:e5:04:dd:68:fc:99:5e:78:07:0b:78:9e:44:
bd:8a:c2:dd:0e:c6:8a:7a:a8:78:b7:ae:de:a7:9a:05:43:d6:
75:49:65:6a:24:e0:d8:b8:58:08:3f:fa:37:dc:63:09:7c:4b:
e6:a7:66:a7:de:a4:dd:1a:cf:03:d5:18:90:a4:64:0f:27:af:
6d:d1:33:1f:ce:24:e5:84:42:ef:fc:55:fe:d8:ab:c6:ce:ef:
67:93:60:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 3 15:30:06 2024 by rpki-client on console-ams.rpki-client.org