Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/2ac980-2259-46fd-a428-7b98c7462a7e/1/mJUmHhcTnGQBQKYELOMiQjjRTfs.roa
File: mJUmHhcTnGQBQKYELOMiQjjRTfs.roa (raw, json)
Hash identifier: 54eCEKKVNh3K+WHdYwkbftejfrWknubgR5S4tJYZfJs=
Subject key identifier: 98:95:26:1E:17:13:9C:64:01:40:A6:04:2C:E3:22:42:38:D1:4D:FB
Certificate issuer: /CN=84f2ce71c6ffce87560d565ee5ccda31e01b9c15
Certificate serial: 0187A2CFD23E1F2118E017021190BC049187
Authority key identifier: 84:F2:CE:71:C6:FF:CE:87:56:0D:56:5E:E5:CC:DA:31:E0:1B:9C:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hPLOccb_zodWDVZe5czaMeAbnBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/2ac980-2259-46fd-a428-7b98c7462a7e/1/mJUmHhcTnGQBQKYELOMiQjjRTfs.roa
Signing time: Fri 21 Apr 2023 07:55:41 +0000
ROA not before: Fri 21 Apr 2023 07:55:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13036
IP address blocks: 194.108.0.0/16 maxlen: 16
195.22.32.0/19 maxlen: 19
195.39.0.0/17 maxlen: 17
62.84.128.0/19 maxlen: 19
194.149.96.0/19 maxlen: 19
195.144.96.0/19 maxlen: 19
46.13.0.0/16 maxlen: 16
213.29.0.0/16 maxlen: 16
62.209.192.0/18 maxlen: 18
212.65.192.0/18 maxlen: 18
194.213.32.0/19 maxlen: 19
193.86.0.0/16 maxlen: 16
62.77.64.0/18 maxlen: 18
194.212.0.0/16 maxlen: 16
195.47.0.0/17 maxlen: 17
194.213.192.0/19 maxlen: 19
212.47.0.0/19 maxlen: 19
213.210.128.0/18 maxlen: 18
193.85.0.0/16 maxlen: 16
62.168.0.0/18 maxlen: 18
89.24.0.0/16 maxlen: 16
193.179.0.0/16 maxlen: 16
195.70.128.0/19 maxlen: 19
2001:af0::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 28 Apr 2023 12:34:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:a2:cf:d2:3e:1f:21:18:e0:17:02:11:90:bc:04:91:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84f2ce71c6ffce87560d565ee5ccda31e01b9c15
Validity
Not Before: Apr 21 07:55:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9895261e17139c640140a6042ce3224238d14dfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:10:31:af:1f:5e:0c:6e:64:bc:3f:ff:d2:fb:
c5:f0:29:05:bf:78:48:28:3d:f2:b9:c5:c7:f6:16:
91:ae:ed:40:4e:45:df:3c:d5:92:81:7e:6b:17:56:
bb:7c:1b:db:59:ac:54:ed:4c:5a:8a:e2:de:4c:f7:
27:e4:ae:84:39:f8:75:4f:de:bf:40:59:ed:93:27:
95:09:c3:d1:92:8c:7a:db:e7:a8:80:fb:92:82:2f:
35:c7:fb:2b:d3:bb:cc:d1:f4:ff:c2:38:8c:06:96:
e4:ce:7f:77:9a:43:76:0a:c4:e8:48:09:21:f1:9b:
34:63:eb:52:3a:bd:a4:d1:38:90:50:77:17:be:02:
be:21:8a:f0:35:fe:64:a2:66:29:1a:7f:f5:d3:67:
98:0a:12:06:70:8e:40:92:4f:ec:92:0c:3f:7d:f5:
27:2c:a4:36:92:0d:66:8d:28:54:14:63:95:f5:3f:
21:3f:bf:2f:cc:9d:6f:c6:8e:10:ef:c7:76:56:c6:
0b:eb:ad:6f:44:73:a9:3c:7a:76:e2:f3:fa:dd:5e:
4c:e5:54:00:cb:bc:a4:f1:77:52:40:bc:ed:ce:2e:
24:1d:2b:94:e4:4b:2c:ed:bd:27:81:71:be:2b:3f:
f8:0a:7e:80:a6:57:0c:80:6c:94:98:74:94:ce:88:
09:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:95:26:1E:17:13:9C:64:01:40:A6:04:2C:E3:22:42:38:D1:4D:FB
X509v3 Authority Key Identifier:
keyid:84:F2:CE:71:C6:FF:CE:87:56:0D:56:5E:E5:CC:DA:31:E0:1B:9C:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hPLOccb_zodWDVZe5czaMeAbnBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/2ac980-2259-46fd-a428-7b98c7462a7e/1/mJUmHhcTnGQBQKYELOMiQjjRTfs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/2ac980-2259-46fd-a428-7b98c7462a7e/1/hPLOccb_zodWDVZe5czaMeAbnBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.13.0.0/16
62.77.64.0/18
62.84.128.0/19
62.168.0.0/18
62.209.192.0/18
89.24.0.0/16
193.85.0.0-193.86.255.255
193.179.0.0/16
194.108.0.0/16
194.149.96.0/19
194.212.0.0/16
194.213.32.0/19
194.213.192.0/19
195.22.32.0/19
195.39.0.0/17
195.47.0.0/17
195.70.128.0/19
195.144.96.0/19
212.47.0.0/19
212.65.192.0/18
213.29.0.0/16
213.210.128.0/18
IPv6:
2001:af0::/32
Signature Algorithm: sha256WithRSAEncryption
69:02:b1:4d:4d:8b:8b:1f:24:c0:b7:f4:2b:67:4d:79:06:ad:
a2:3a:cf:c3:15:75:57:82:ed:18:40:ba:b2:06:1d:f7:3a:c3:
e1:ee:56:49:fc:c8:0f:be:ba:ab:5a:27:9f:43:5b:35:60:0c:
e1:94:e1:65:79:eb:06:34:7a:49:df:77:e8:95:ec:9e:41:33:
e6:23:5a:81:76:5e:c5:f5:eb:27:e1:2b:02:01:37:1f:47:1c:
75:5d:37:cf:14:af:54:c2:41:f8:ef:d1:88:68:53:e3:cc:21:
3f:a5:0b:b6:28:22:2c:2c:d2:71:5d:fd:6d:f0:3e:3f:12:2f:
6c:e7:df:12:a3:96:d1:98:91:e1:7b:bf:b7:1f:c8:d2:9c:21:
bc:53:5b:01:e4:41:a7:c8:dd:e3:3c:84:86:ce:f3:3a:32:01:
8c:73:46:2c:df:68:c3:94:ed:de:41:f2:1a:5c:f3:f2:c5:61:
29:01:95:f3:f9:8d:25:95:f7:8a:a2:12:0e:3f:c0:18:d1:bf:
59:b1:8e:4f:45:c7:8b:d4:e7:c8:fe:e1:19:8a:e0:34:e3:61:
82:7f:71:64:9d:49:62:37:31:5c:a0:99:d6:a4:3f:f7:cd:c6:
ae:c9:75:5f:15:18:fc:89:89:bf:6c:c7:11:7a:5a:7e:17:cd:
12:26:67:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:45 2024 by rpki-client on console-fra.rpki-client.org