Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/4f336b-4a79-4425-9556-be45f0d2abbb/1/MmNZ8lJmojHd1U7ujxSxX_aive4.roa
File: MmNZ8lJmojHd1U7ujxSxX_aive4.roa (raw, json)
Hash identifier: OVaBHMz1ehLj0xRcHjI1ME99lIsACZ9fT4U/b0ulAnM=
Subject key identifier: 32:63:59:F2:52:66:A2:31:DD:D5:4E:EE:8F:14:B1:5F:F6:A2:BD:EE
Certificate issuer: /CN=9cb25ce550e4d9bda05bd5d45c8b6ba37430bbba
Certificate serial: 01891D31CD2FF8142A24A757CE6D525C5CE3
Authority key identifier: 9C:B2:5C:E5:50:E4:D9:BD:A0:5B:D5:D4:5C:8B:6B:A3:74:30:BB:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nLJc5VDk2b2gW9XUXItro3Qwu7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/4f336b-4a79-4425-9556-be45f0d2abbb/1/MmNZ8lJmojHd1U7ujxSxX_aive4.roa
Signing time: Mon 03 Jul 2023 19:19:10 +0000
ROA not before: Mon 03 Jul 2023 19:19:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 45.94.136.0/24 maxlen: 24
45.94.137.0/24 maxlen: 24
45.94.139.0/24 maxlen: 24
5.253.184.0/23 maxlen: 23
185.114.204.0/24 maxlen: 24
5.253.187.0/24 maxlen: 24
193.135.220.0/22 maxlen: 22
88.214.0.0/24 maxlen: 24
88.214.1.0/24 maxlen: 24
88.214.2.0/24 maxlen: 24
88.214.3.0/24 maxlen: 24
88.218.196.0/22 maxlen: 22
185.219.160.0/24 maxlen: 24
185.219.163.0/24 maxlen: 24
45.81.161.0/24 maxlen: 24
45.81.162.0/24 maxlen: 24
45.81.163.0/24 maxlen: 24
45.130.32.0/24 maxlen: 24
45.130.33.0/24 maxlen: 24
45.130.34.0/23 maxlen: 23
193.111.184.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:1d:31:cd:2f:f8:14:2a:24:a7:57:ce:6d:52:5c:5c:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9cb25ce550e4d9bda05bd5d45c8b6ba37430bbba
Validity
Not Before: Jul 3 19:19:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=326359f25266a231ddd54eee8f14b15ff6a2bdee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:f9:01:da:e2:ea:1d:63:73:cb:cf:da:22:5f:
91:0c:a0:b1:f5:c7:29:3e:c6:0e:4c:2e:17:82:a2:
e3:f6:1c:eb:30:11:85:be:2b:32:12:82:06:b9:53:
dd:b7:4c:60:56:9d:7e:fa:a9:db:28:bf:23:2d:fb:
95:ff:09:1a:41:6d:82:ba:79:bf:a3:cb:9d:61:d4:
24:69:38:fb:a2:a6:14:e1:ba:21:34:63:62:22:d0:
02:eb:98:69:db:fb:04:be:1e:88:59:35:25:b0:ee:
f3:12:5f:d4:37:ab:e3:42:8c:b3:81:bb:0e:37:c5:
a5:b6:d3:a3:be:84:2c:d2:e7:ab:4d:cb:77:15:2a:
eb:c4:06:e5:a9:b9:98:45:9f:98:bb:c4:14:df:ee:
33:a4:d9:3c:7d:2d:b9:f3:07:90:e4:3e:6f:17:1e:
8c:e2:50:0d:8c:68:c1:ee:86:3c:ec:df:e7:93:9b:
52:d9:10:59:e5:7d:8a:01:96:0b:98:00:91:4b:51:
a6:7e:c4:b8:d5:bd:fc:92:6d:0d:27:a4:52:3d:76:
99:52:6c:d5:90:f2:4a:51:22:e0:ba:43:47:de:ef:
25:3a:82:2e:1d:43:ac:b2:9d:be:0c:03:df:a1:76:
35:ee:07:02:82:4d:97:39:7e:26:da:ed:63:eb:93:
89:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:63:59:F2:52:66:A2:31:DD:D5:4E:EE:8F:14:B1:5F:F6:A2:BD:EE
X509v3 Authority Key Identifier:
keyid:9C:B2:5C:E5:50:E4:D9:BD:A0:5B:D5:D4:5C:8B:6B:A3:74:30:BB:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nLJc5VDk2b2gW9XUXItro3Qwu7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/4f336b-4a79-4425-9556-be45f0d2abbb/1/MmNZ8lJmojHd1U7ujxSxX_aive4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/4f336b-4a79-4425-9556-be45f0d2abbb/1/nLJc5VDk2b2gW9XUXItro3Qwu7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.184.0/23
5.253.187.0/24
45.81.161.0-45.81.163.255
45.94.136.0/23
45.94.139.0/24
45.130.32.0/22
88.214.0.0/22
88.218.196.0/22
185.114.204.0/24
185.219.160.0/24
185.219.163.0/24
193.111.184.0/22
193.135.220.0/22
Signature Algorithm: sha256WithRSAEncryption
93:5e:46:f5:d2:e1:e9:25:df:8d:c4:81:19:42:13:5e:ad:ea:
17:0e:fe:61:1a:47:bf:1e:b5:2a:b2:49:5b:6b:79:d9:68:fe:
70:61:fd:3d:a6:56:ad:e3:b7:02:a3:f3:39:78:80:b4:c8:68:
b2:84:66:ed:0f:09:43:db:9e:e7:21:29:7f:34:da:fc:a1:59:
7c:2e:57:f2:4c:40:94:dd:04:1a:c0:9b:1b:ac:ac:5f:23:82:
d2:c3:83:79:7e:a1:11:d2:5e:76:f0:10:c0:e5:04:28:5c:64:
bf:30:ce:e8:e1:87:ef:4d:28:fc:0e:10:7b:e6:d9:b3:2b:9f:
75:41:67:b3:53:8a:5c:c7:db:8f:f8:20:3c:17:ea:c2:c6:fb:
80:3f:79:b6:7d:b5:8d:3f:95:b4:93:f4:fd:68:77:32:c8:53:
97:cc:49:7a:ea:97:6d:0e:53:7c:be:f4:ad:17:cf:94:57:e3:
27:18:06:74:93:80:18:09:54:ee:99:20:d0:a6:9a:ee:66:cc:
4b:9d:5c:90:4a:62:a9:13:f7:3f:c4:5d:fd:51:06:18:49:ac:
72:02:0a:df:f3:6c:54:b5:15:66:1a:26:3c:ac:db:94:ff:93:
58:5a:2e:09:f7:fe:6f:e2:88:60:4b:8f:d3:8f:03:4a:f8:2e:
3c:51:32:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 6 13:12:03 2023 by rpki-client on console-fra.rpki-client.org