Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/MaATV0KDdy_2LNXaQW8XxHh5CdY.roa
File: MaATV0KDdy_2LNXaQW8XxHh5CdY.roa (raw, json)
Hash identifier: l5NmMbU9/9/VVjoIEkJ3Sxxaaj9nI2FwjLuFtv94pyg=
Subject key identifier: 31:A0:13:57:42:83:77:2F:F6:2C:D5:DA:41:6F:17:C4:78:79:09:D6
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 018B5D38F655E98D662C8C255E39776B6CDA
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/MaATV0KDdy_2LNXaQW8XxHh5CdY.roa
Signing time: Mon 23 Oct 2023 15:48:16 +0000
ROA not before: Mon 23 Oct 2023 15:48:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34450
IP address blocks: 93.114.187.0/24 maxlen: 24
86.106.80.0/24 maxlen: 24
89.43.45.0/24 maxlen: 24
89.43.46.0/24 maxlen: 24
86.106.104.0/24 maxlen: 24
89.34.8.0/21 maxlen: 21
89.43.73.0/24 maxlen: 24
89.39.252.0/24 maxlen: 24
188.213.18.0/24 maxlen: 24
188.240.14.0/24 maxlen: 24
93.114.171.0/24 maxlen: 24
85.204.125.0/24 maxlen: 24
85.204.127.0/24 maxlen: 24
93.114.99.0/24 maxlen: 24
93.113.158.0/24 maxlen: 24
89.33.163.0/24 maxlen: 24
89.37.136.0/24 maxlen: 24
89.45.34.0/24 maxlen: 24
93.114.55.0/24 maxlen: 24
188.215.72.0/24 maxlen: 24
188.215.72.0/23 maxlen: 24
188.215.73.0/24 maxlen: 24
2a05:b680:1::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:5d:38:f6:55:e9:8d:66:2c:8c:25:5e:39:77:6b:6c:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Oct 23 15:48:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=31a013574283772ff62cd5da416f17c4787909d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:c9:a7:13:22:5c:70:4b:68:cf:2e:f1:2b:68:
c6:74:15:0d:8a:70:4a:f5:56:b7:a9:46:31:5b:b5:
6c:11:c8:91:4f:1f:74:48:7d:40:a8:ec:e6:48:5e:
b4:d6:95:52:df:0a:66:f5:1e:87:da:ce:ae:59:50:
22:31:c5:10:8e:7e:d1:03:03:a0:e1:bd:a6:6b:67:
96:da:59:47:39:f3:a9:39:6d:20:1e:3d:f7:29:7c:
2f:42:d3:27:60:4b:a5:07:e4:7f:1b:de:de:35:b5:
c0:0a:eb:91:d1:30:f1:eb:bb:c5:2e:88:0b:67:ca:
a3:0a:9a:46:35:cf:66:57:40:f6:0a:a9:9f:2a:b3:
d5:b6:1f:db:ef:e9:e0:8b:0c:56:2e:f2:78:8e:df:
43:7b:1f:5a:c1:ae:11:a1:14:99:7f:5d:f6:fb:20:
b4:71:47:07:be:b5:c6:08:cb:6f:e2:8b:61:d9:b5:
d6:f4:cf:2d:43:8a:1e:1f:8e:65:7a:9e:29:c0:25:
14:82:c7:50:52:56:c2:e0:be:84:b3:6b:0d:ca:1a:
fb:04:07:48:ca:7a:82:61:f7:2e:91:96:24:7e:a1:
c8:8e:90:3e:4d:29:79:78:b2:f2:41:af:09:4c:5d:
a6:d1:b6:40:26:b4:63:ec:34:b4:83:56:97:09:bc:
66:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:A0:13:57:42:83:77:2F:F6:2C:D5:DA:41:6F:17:C4:78:79:09:D6
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/MaATV0KDdy_2LNXaQW8XxHh5CdY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.125.0/24
85.204.127.0/24
86.106.80.0/24
86.106.104.0/24
89.33.163.0/24
89.34.8.0/21
89.37.136.0/24
89.39.252.0/24
89.43.45.0-89.43.46.255
89.43.73.0/24
89.45.34.0/24
93.113.158.0/24
93.114.55.0/24
93.114.99.0/24
93.114.171.0/24
93.114.187.0/24
188.213.18.0/24
188.215.72.0/23
188.240.14.0/24
IPv6:
2a05:b680:1::/48
Signature Algorithm: sha256WithRSAEncryption
69:13:1f:ba:cb:3c:02:f4:33:aa:54:96:ad:33:a0:22:99:c2:
5e:9e:de:5b:00:94:01:9b:eb:15:50:b3:2f:b1:ea:1d:f4:19:
05:81:72:7b:54:7b:14:d7:d1:18:74:ee:1b:84:f6:1d:20:37:
82:f9:c0:bc:43:a2:2b:83:56:7f:ec:fc:aa:c3:bc:6b:82:c1:
d6:66:e6:40:a5:06:2f:51:20:4c:ea:2d:ed:ee:ba:60:23:33:
d7:e9:2c:a1:b4:36:3c:9d:76:43:67:5d:8f:00:4a:91:f4:67:
df:23:c1:8d:c2:43:b5:cd:e2:39:1a:15:c5:09:15:02:c5:c4:
91:8d:76:63:70:97:10:24:5a:01:b3:ef:dc:69:48:55:97:fa:
25:0e:4f:f0:cc:12:2b:a9:9c:86:13:44:d6:c9:d8:c1:3c:e6:
bd:6e:e4:00:67:56:b8:a0:ff:9a:8b:24:f4:68:ea:a8:f0:07:
a8:29:e3:fa:6b:f7:9a:d1:fd:e0:04:38:78:9f:a5:01:cf:a6:
59:e0:99:98:f3:c5:ac:90:62:09:cf:6a:73:ac:17:00:cc:4a:
e2:ad:a6:17:2f:d0:ed:30:fb:7f:5f:1e:7c:8f:85:48:1f:45:
a4:18:a7:db:39:8a:3b:8a:d7:1f:03:2b:ec:b2:2a:8a:0f:62:
4b:9c:a5:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 27 21:20:48 2023 by rpki-client on console-fra.rpki-client.org