Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/MBIPg7iRmyKAsu0EVCG-gUI2nog.roa
File: MBIPg7iRmyKAsu0EVCG-gUI2nog.roa (raw, json)
Hash identifier: NrcqaPH0xZc7KTHCbYg173QbZk61mZMIl9xTDwiCO8c=
Subject key identifier: 30:12:0F:83:B8:91:9B:22:80:B2:ED:04:54:21:BE:81:42:36:9E:88
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018E08D4843EC05747E6A4CF99518AFAD588
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/MBIPg7iRmyKAsu0EVCG-gUI2nog.roa
Signing time: Mon 04 Mar 2024 09:38:48 +0000
ROA not before: Mon 04 Mar 2024 09:38:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58061
IP address blocks: 2.56.112.0/24 maxlen: 24
2.56.113.0/24 maxlen: 24
5.183.128.0/24 maxlen: 24
31.222.248.0/24 maxlen: 24
62.68.83.0/24 maxlen: 24
62.204.57.0/24 maxlen: 24
62.233.49.0/24 maxlen: 24
80.91.210.0/24 maxlen: 24
91.213.117.0/24 maxlen: 24
91.242.238.0/24 maxlen: 24
94.158.191.0/24 maxlen: 24
130.193.79.0/24 maxlen: 24
130.255.169.0/24 maxlen: 24
146.19.137.0/24 maxlen: 24
146.19.194.0/24 maxlen: 24
176.56.38.0/24 maxlen: 24
185.218.1.0/24 maxlen: 24
185.232.47.0/24 maxlen: 24
193.3.22.0/24 maxlen: 24
193.239.209.0/24 maxlen: 24
194.26.221.0/24 maxlen: 24
194.32.243.0/24 maxlen: 24
195.64.106.0/24 maxlen: 24
195.64.112.0/24 maxlen: 24
195.96.146.0/24 maxlen: 24
195.96.157.0/24 maxlen: 24
212.18.103.0/24 maxlen: 24
212.52.5.0/24 maxlen: 24
217.114.32.0/24 maxlen: 24
217.119.130.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Mar 2024 14:13:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:08:d4:84:3e:c0:57:47:e6:a4:cf:99:51:8a:fa:d5:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Mar 4 09:38:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=30120f83b8919b2280b2ed045421be8142369e88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:01:b9:e9:b5:a8:2d:2a:d4:b8:6d:d9:08:bd:
9a:7b:83:78:78:1a:8b:7c:c0:3f:e0:2e:4a:19:42:
06:64:a2:4f:67:4b:dd:9a:65:48:37:ec:66:89:cd:
e2:9b:c7:63:33:38:13:29:fa:c1:e9:2a:56:16:31:
c1:8b:7f:9f:06:81:d1:b8:ca:c6:12:2e:a2:4b:34:
7f:bc:24:a5:c5:f2:46:8d:75:20:6c:b8:13:57:62:
14:89:bb:6b:a2:31:37:c5:ee:63:e4:6e:2b:bc:3f:
f3:aa:82:dc:08:bd:da:a5:43:cb:c2:c8:99:d9:20:
d8:a3:6e:f6:0f:3c:40:f4:c1:94:2c:99:66:ec:6a:
26:53:de:3c:bf:e0:b2:28:e7:7a:9c:ff:ec:80:18:
ff:f5:6b:1e:46:45:7c:20:64:d6:f7:29:1e:91:a9:
38:0e:c3:b4:da:6e:4c:61:b1:db:7c:f1:da:4c:ba:
fd:52:4e:54:da:b4:ea:83:6a:0d:f4:39:87:93:06:
ff:02:66:38:45:82:d4:0b:f1:51:43:d5:3c:bc:e7:
c0:eb:38:54:10:4a:dd:21:e9:d7:76:e4:42:1c:83:
3e:78:2a:9c:77:1b:5c:b7:f2:ac:0f:64:5b:6d:22:
b1:fc:de:3c:42:ae:59:93:9e:98:a0:f4:15:9b:7b:
38:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:12:0F:83:B8:91:9B:22:80:B2:ED:04:54:21:BE:81:42:36:9E:88
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/MBIPg7iRmyKAsu0EVCG-gUI2nog.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.112.0/23
5.183.128.0/24
31.222.248.0/24
62.68.83.0/24
62.204.57.0/24
62.233.49.0/24
80.91.210.0/24
91.213.117.0/24
91.242.238.0/24
94.158.191.0/24
130.193.79.0/24
130.255.169.0/24
146.19.137.0/24
146.19.194.0/24
176.56.38.0/24
185.218.1.0/24
185.232.47.0/24
193.3.22.0/24
193.239.209.0/24
194.26.221.0/24
194.32.243.0/24
195.64.106.0/24
195.64.112.0/24
195.96.146.0/24
195.96.157.0/24
212.18.103.0/24
212.52.5.0/24
217.114.32.0/24
217.119.130.0/24
Signature Algorithm: sha256WithRSAEncryption
41:cf:31:a8:f4:36:5a:b5:c9:db:67:ef:67:9d:6d:7e:a1:c2:
d2:d4:2b:08:01:9b:fe:a7:04:28:0b:e3:1d:82:39:ca:a0:75:
e4:df:92:ec:fe:ef:3e:63:cf:75:45:65:e4:af:cb:ad:8d:5c:
01:cf:9e:8e:c1:81:a7:c9:b4:c9:d1:4d:9a:7e:04:d6:a2:4d:
e6:d7:77:7c:d4:59:3d:c8:59:ac:ce:d4:d8:54:47:45:7d:95:
d4:21:56:bd:fd:54:b7:f6:f7:62:74:ee:17:bd:68:9c:64:50:
9c:1b:4f:5c:af:fc:f9:0d:df:55:e6:27:76:70:09:77:40:83:
37:35:c2:32:0d:ea:78:df:6f:88:5c:d1:a4:0b:57:da:33:17:
35:da:71:8c:07:fb:45:50:03:91:17:0f:58:95:64:35:74:af:
ee:55:3a:3d:8d:b1:aa:69:5c:b3:97:b6:3b:8b:6a:5c:e8:47:
d9:38:16:8a:01:45:4a:b0:1e:3b:db:74:d4:fd:41:11:14:13:
86:d6:c7:62:92:0f:04:48:22:47:f1:54:26:99:9d:c5:2f:0b:
32:ea:ff:1b:3e:b6:2f:20:3c:ee:3d:a9:fa:5b:5c:f6:ba:33:
18:53:75:2d:9b:b8:60:c3:b2:89:12:49:15:bc:3f:1c:4b:72:
2e:be:fa:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:48 2024 by rpki-client on console-ams.rpki-client.org