Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/MMMpRGu_bqSpRqBEsJdh5ziYdnQ.roa
File: MMMpRGu_bqSpRqBEsJdh5ziYdnQ.roa (raw, json)
Hash identifier: OqfGgdNM5UCXAwffF/eE2vtSQXaNSTn/0eMyvBZ/7P0=
Subject key identifier: 30:C3:29:44:6B:BF:6E:A4:A9:46:A0:44:B0:97:61:E7:38:98:76:74
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 01877768FC14E56D765BEF27327EB8BC300F
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/MMMpRGu_bqSpRqBEsJdh5ziYdnQ.roa
Signing time: Wed 12 Apr 2023 21:39:41 +0000
ROA not before: Wed 12 Apr 2023 21:39:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 185.199.148.0/24 maxlen: 24
79.98.247.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 14 Apr 2023 09:24:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:77:68:fc:14:e5:6d:76:5b:ef:27:32:7e:b8:bc:30:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Apr 12 21:39:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=30c329446bbf6ea4a946a044b09761e738987674
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d3:ae:f3:8b:6a:53:7c:4e:17:64:85:cb:f4:
ec:19:21:35:64:98:24:36:46:44:18:e4:54:5f:3c:
4e:49:b0:95:3b:11:62:e2:2d:3d:18:76:12:9e:87:
a8:aa:2c:15:1e:66:5a:9f:6f:15:07:c8:1b:07:ec:
c5:96:2c:62:f6:d5:54:e5:f4:44:28:9e:62:87:43:
17:78:dd:a4:b5:67:72:23:9f:f7:0b:a8:5f:b3:79:
ee:96:58:56:d7:6b:6a:1a:82:21:c0:32:58:e6:a4:
cf:a9:aa:0f:58:4d:fd:4a:7a:44:e4:b6:1f:21:c6:
fa:2d:f1:42:d1:35:f4:60:94:32:70:d8:d5:31:87:
e5:82:92:f3:7b:ce:23:20:54:bb:55:da:58:e6:e6:
6d:9b:97:0b:ea:14:d8:5e:81:7a:55:2f:bc:f6:db:
1a:2e:3c:c8:07:a3:41:3a:7c:a6:50:c8:ec:f4:e9:
b9:8a:77:96:c2:31:cd:f9:92:2f:18:f7:de:ca:9d:
1f:1e:80:3d:3c:cb:8f:ed:0a:e1:60:a2:e5:b3:fb:
ca:f4:42:33:20:20:79:4c:54:d5:c0:e1:b3:ae:f2:
20:55:21:c9:ca:f9:1a:7b:cf:61:42:a9:74:ba:18:
03:2a:b2:d8:c8:bc:c2:e3:43:44:20:3f:bf:37:b5:
8b:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:C3:29:44:6B:BF:6E:A4:A9:46:A0:44:B0:97:61:E7:38:98:76:74
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/MMMpRGu_bqSpRqBEsJdh5ziYdnQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.98.247.0/24
185.199.148.0/24
Signature Algorithm: sha256WithRSAEncryption
82:f0:2e:1d:4b:6d:28:af:af:b6:fe:ba:b6:d6:70:28:75:af:
79:cd:22:dd:a9:63:3d:67:20:a4:73:0e:49:f8:51:93:ae:e4:
cd:cf:29:7a:92:35:26:b0:e2:c8:9f:a2:8c:8b:57:c8:3f:a4:
27:ca:1c:59:bc:2c:79:cb:7c:77:d8:1f:91:49:ca:78:1a:1c:
b3:e1:e7:ca:08:e3:0d:7d:33:00:34:d0:cc:61:3e:37:18:fa:
71:8e:b7:2a:1c:76:54:47:ee:3e:68:c7:e5:cd:db:41:e4:1f:
35:42:18:0c:8a:32:49:d7:43:c8:04:02:09:e1:2a:51:bd:ca:
68:cf:94:12:05:06:6b:bf:f5:e1:7a:a9:e5:32:03:74:62:e3:
65:af:26:18:96:5e:48:80:3e:d4:9b:36:1d:b7:82:fe:81:f5:
57:7e:0b:89:ad:9e:3c:f4:56:5a:f4:66:35:5c:9d:a3:1d:af:
f1:ec:b7:23:e9:fc:70:79:39:87:ea:7b:50:bc:0b:4f:de:80:
01:bb:55:2f:82:43:0d:20:38:c4:1b:cc:3d:d7:87:61:4e:69:
76:a3:b6:2c:dc:21:3a:5d:b8:8b:a3:af:9e:4c:2a:3c:ff:42:
42:0e:fa:84:9f:d7:e7:15:c1:02:9c:d4:db:62:ff:23:14:26:
18:4c:e3:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:13 2024 by rpki-client on console-fra.rpki-client.org