Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/memMWNOFMaBocFbHTIG0GPkY5YA.roa
File: memMWNOFMaBocFbHTIG0GPkY5YA.roa (raw, json)
Hash identifier: XRF6H1B2X3nTf5hydvzlLRnrk/NVEYIYATnbQ8GqLHs=
Subject key identifier: 99:E9:8C:58:D3:85:31:A0:68:70:56:C7:4C:81:B4:18:F9:18:E5:80
Certificate issuer: /CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Certificate serial: 01874C8F5497BFE20C27EB48CE9AF2242F7E
Authority key identifier: 4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/memMWNOFMaBocFbHTIG0GPkY5YA.roa
Signing time: Tue 04 Apr 2023 13:57:54 +0000
ROA not before: Tue 04 Apr 2023 13:57:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29262
IP address blocks: 193.38.44.0/23 maxlen: 23
194.56.186.0/23 maxlen: 23
193.38.46.0/23 maxlen: 23
85.235.74.0/23 maxlen: 23
85.235.72.0/23 maxlen: 23
139.28.35.0/24 maxlen: 24
139.28.34.0/24 maxlen: 24
139.28.33.0/24 maxlen: 24
139.28.32.0/24 maxlen: 24
194.169.94.0/23 maxlen: 23
194.169.92.0/23 maxlen: 23
185.254.54.0/24 maxlen: 24
185.254.55.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 Nov 2023 20:53:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:4c:8f:54:97:bf:e2:0c:27:eb:48:ce:9a:f2:24:2f:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Validity
Not Before: Apr 4 13:57:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=99e98c58d38531a0687056c74c81b418f918e580
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:6c:86:66:63:9f:5a:62:7a:d7:23:42:05:db:
d1:62:a1:f4:ea:f3:1a:bf:22:23:ef:97:f8:39:d7:
2f:68:17:fa:4e:31:ef:46:6b:21:7c:e0:48:e9:74:
43:37:ef:7e:d9:9d:e9:70:10:ac:45:df:ef:82:a8:
7f:60:a1:49:27:8b:f4:25:b0:21:bf:fc:31:30:7d:
c2:de:33:7f:a0:d4:da:54:4e:75:af:fd:c3:c2:0e:
f4:8e:76:86:9a:d4:99:26:b0:14:a9:54:cc:a7:cf:
00:3b:62:fe:39:2b:b2:17:1c:76:3e:37:c1:7c:79:
31:cb:59:ef:7d:fd:95:af:a3:e0:d8:d4:b3:f7:1d:
4d:6a:c2:3f:8d:92:66:5f:71:31:94:60:15:07:aa:
43:13:e3:d5:be:37:75:b2:72:12:b4:a8:37:ab:1d:
eb:f7:3d:50:4e:cc:e7:d1:d8:6d:4b:b7:17:5c:30:
19:2f:8e:8f:64:e9:c1:0c:02:b2:20:49:a9:63:cf:
3f:66:32:be:9d:6f:68:d1:b8:87:02:38:42:32:22:
ce:29:df:d0:d5:25:ee:5f:14:82:2d:19:6f:bb:e7:
49:1d:a9:9c:7c:ad:0e:52:29:29:a9:4f:ae:bb:df:
8f:52:9b:fc:80:f3:0f:6e:3d:2c:23:ce:6a:4b:e5:
d5:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:E9:8C:58:D3:85:31:A0:68:70:56:C7:4C:81:B4:18:F9:18:E5:80
X509v3 Authority Key Identifier:
keyid:4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/memMWNOFMaBocFbHTIG0GPkY5YA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.235.72.0/22
139.28.32.0/22
185.254.54.0/23
193.38.44.0/22
194.56.186.0/23
194.169.92.0/22
Signature Algorithm: sha256WithRSAEncryption
58:c6:ec:da:6b:c0:cf:30:ad:0d:b9:41:ea:33:e3:58:41:fc:
df:90:4b:16:7a:77:86:33:5f:b4:b5:66:dc:e3:d1:06:1c:ca:
c7:5f:9c:63:98:8c:ab:ed:58:d2:89:b4:37:25:c9:5f:c7:37:
3a:f2:f2:9d:f4:4f:bf:b1:37:a2:78:2b:b8:fd:71:32:b1:48:
c4:92:d1:59:3b:b9:ad:ae:5d:11:a2:d1:2c:2e:b5:3d:15:e9:
88:e4:76:ce:97:b9:51:11:64:cb:46:c8:97:2f:c3:23:3f:9a:
76:64:01:bf:9f:ad:d5:0d:06:d6:da:87:0f:06:d6:3f:f1:e9:
3d:42:4d:6f:6d:00:1d:e6:91:b3:8b:7d:73:d7:8f:67:43:a1:
0c:c5:f6:39:46:fa:ba:92:02:e8:42:86:d7:3d:55:e3:de:42:
50:91:79:e6:05:22:63:3d:af:6e:2b:4b:6d:c4:4b:c4:c3:a2:
6d:29:a5:38:99:78:58:94:93:60:a9:bd:9f:68:9d:92:23:4a:
42:a5:86:b8:9d:b0:7d:d9:52:76:de:dd:67:3b:9f:2b:b1:2e:
af:47:58:34:2b:85:83:b7:ac:99:86:bb:f0:c3:f0:91:d1:82:
91:b3:c5:bc:68:81:26:be:99:79:e6:0c:ec:6d:80:11:b9:31:
0f:34:3a:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:50 2024 by rpki-client on console-fra.rpki-client.org