Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/4c66cc-fa9a-4f58-ad21-7da183eff115/1/MkTpyDv1wJmG2gwy8Itknb4Ngjo.roa
File: MkTpyDv1wJmG2gwy8Itknb4Ngjo.roa (raw, json)
Hash identifier: 3GtqfleFNMLiU53io+enIO+n5sAlfgkbn5weU8BdyAc=
Subject key identifier: 32:44:E9:C8:3B:F5:C0:99:86:DA:0C:32:F0:8B:64:9D:BE:0D:82:3A
Certificate issuer: /CN=586936266e980dd203b2cbeb1c9c4570604b911b
Certificate serial: 018CD42ED52104B56A3AC375F331A20AB00B
Authority key identifier: 58:69:36:26:6E:98:0D:D2:03:B2:CB:EB:1C:9C:45:70:60:4B:91:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WGk2Jm6YDdIDssvrHJxFcGBLkRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/4c66cc-fa9a-4f58-ad21-7da183eff115/1/MkTpyDv1wJmG2gwy8Itknb4Ngjo.roa
Signing time: Thu 04 Jan 2024 11:14:48 +0000
ROA not before: Thu 04 Jan 2024 11:14:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49628
IP address blocks: 185.46.176.0/22 maxlen: 22
78.40.104.0/24 maxlen: 24
78.40.104.0/22 maxlen: 22
78.40.105.0/24 maxlen: 24
193.176.212.0/24 maxlen: 24
193.176.212.0/22 maxlen: 22
193.176.213.0/24 maxlen: 24
37.75.128.0/21 maxlen: 21
188.227.192.0/22 maxlen: 22
188.227.192.0/24 maxlen: 24
188.227.193.0/24 maxlen: 24
188.227.194.0/24 maxlen: 24
188.227.195.0/24 maxlen: 24
78.40.106.0/24 maxlen: 24
78.40.107.0/24 maxlen: 24
193.176.215.0/24 maxlen: 24
193.176.214.0/24 maxlen: 24
5.187.9.0/24 maxlen: 24
5.187.10.0/24 maxlen: 24
5.187.8.0/24 maxlen: 24
5.187.8.0/21 maxlen: 21
5.187.11.0/24 maxlen: 24
5.187.12.0/24 maxlen: 24
185.168.224.0/24 maxlen: 24
185.168.224.0/22 maxlen: 22
185.168.225.0/24 maxlen: 24
185.168.226.0/24 maxlen: 24
185.168.227.0/24 maxlen: 24
185.81.93.0/24 maxlen: 24
185.81.94.0/24 maxlen: 24
185.81.92.0/22 maxlen: 22
185.81.92.0/24 maxlen: 24
185.81.95.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 01:49:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:d4:2e:d5:21:04:b5:6a:3a:c3:75:f3:31:a2:0a:b0:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=586936266e980dd203b2cbeb1c9c4570604b911b
Validity
Not Before: Jan 4 11:14:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3244e9c83bf5c09986da0c32f08b649dbe0d823a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:05:ab:82:50:6f:7e:d5:ec:10:f5:62:b3:53:
58:d3:5f:12:b7:f7:5e:fd:14:85:bb:d0:e4:8a:dc:
76:2f:e4:42:e8:ae:45:a7:25:89:fc:dc:77:a8:6a:
78:c8:f3:f1:7d:f9:60:54:8c:74:1f:40:e0:e1:cf:
68:31:92:ee:79:3f:1a:29:d9:d6:94:f8:66:25:d9:
7b:9e:f5:54:e0:c1:4b:59:0d:4b:cd:e4:94:a3:6f:
c8:d7:3c:6b:da:13:32:7a:f8:05:fc:44:7d:26:8e:
16:6a:d3:f0:09:3a:66:48:7c:49:f6:83:5b:6b:43:
d7:d0:77:38:64:74:82:60:e5:d3:c4:6c:3c:65:03:
e0:a7:49:e0:0b:49:0f:18:17:ac:5f:6d:a9:57:85:
21:22:6b:a7:45:57:db:c1:75:fb:86:37:26:05:fe:
91:46:0a:51:99:3d:b9:82:78:8a:81:fc:20:ad:88:
b7:99:bd:20:8f:e6:71:29:f9:7c:ad:0d:55:94:84:
00:1d:49:00:f0:8d:f0:92:19:7e:a7:ee:f5:65:90:
79:eb:ef:7c:9f:53:fb:a4:f1:b2:1b:96:0d:cc:65:
e2:c6:57:52:fc:d8:c4:57:3a:59:6c:ed:03:79:1a:
22:b8:26:bc:7b:8e:f1:46:b0:c1:b3:0c:58:44:fe:
7d:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:44:E9:C8:3B:F5:C0:99:86:DA:0C:32:F0:8B:64:9D:BE:0D:82:3A
X509v3 Authority Key Identifier:
keyid:58:69:36:26:6E:98:0D:D2:03:B2:CB:EB:1C:9C:45:70:60:4B:91:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WGk2Jm6YDdIDssvrHJxFcGBLkRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/4c66cc-fa9a-4f58-ad21-7da183eff115/1/MkTpyDv1wJmG2gwy8Itknb4Ngjo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/4c66cc-fa9a-4f58-ad21-7da183eff115/1/WGk2Jm6YDdIDssvrHJxFcGBLkRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.187.8.0/21
37.75.128.0/21
78.40.104.0/22
185.46.176.0/22
185.81.92.0/22
185.168.224.0/22
188.227.192.0/22
193.176.212.0/22
Signature Algorithm: sha256WithRSAEncryption
c2:9b:84:f9:2d:ab:33:09:07:0b:17:96:69:e1:d8:01:f8:23:
a9:44:7d:49:61:22:3f:83:26:cb:ba:cc:8a:df:c9:f2:9d:76:
df:a7:73:bc:9f:7c:18:c7:71:74:62:d3:32:0d:a7:93:b5:d2:
f9:c6:4c:8c:e0:61:14:8b:ac:06:bb:57:d9:eb:6e:32:81:6e:
77:b2:0b:83:3a:d9:d0:4a:84:ae:56:65:d4:6f:51:8b:d5:cb:
45:55:49:30:c3:48:a0:7d:e9:d9:bc:14:85:59:f3:1e:3a:8b:
88:bc:51:9e:b9:3f:ca:b3:70:ec:12:dd:23:fc:9f:00:53:f1:
7c:03:7f:e2:be:1e:b7:43:ee:0e:32:8c:ea:82:93:31:4a:51:
b5:af:de:05:9a:fe:7f:e3:15:8c:ef:06:d6:94:d5:42:e6:cc:
78:5c:79:d4:53:97:f8:6d:06:29:7a:8c:c8:59:02:4c:bc:9a:
e8:81:e6:dd:12:65:41:37:3f:21:cf:f2:75:bd:33:e0:54:52:
85:18:76:58:b6:86:e5:f1:36:7c:e7:9b:53:4a:b4:60:da:62:
70:a3:36:dd:67:d0:2a:9b:b4:ec:15:d0:a9:47:65:a1:34:91:
7c:80:fa:78:c4:72:e3:0d:9b:af:ab:5a:b2:b6:c1:9c:93:2d:
14:ac:cd:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:01:40 2025 by rpki-client