Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/mg8_vSgR8gKHVgwE_b1l1XjZU6w.roa
File: mg8_vSgR8gKHVgwE_b1l1XjZU6w.roa (raw, json)
Hash identifier: 0ADwK6nDcvE4AGUD9NKVlPjjD4spAnibXB7KVsMYAUc=
Subject key identifier: 9A:0F:3F:BD:28:11:F2:02:87:56:0C:04:FD:BD:65:D5:78:D9:53:AC
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01860A15E741EC91E6AB4C1C0E9BDCC948BA
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/mg8_vSgR8gKHVgwE_b1l1XjZU6w.roa
Signing time: Tue 31 Jan 2023 23:07:32 +0000
ROA not before: Tue 31 Jan 2023 23:07:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58057
IP address blocks: 194.50.94.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
139.28.96.0/22 maxlen: 24
45.131.184.0/22 maxlen: 24
45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
45.12.68.0/22 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2001:7f8:119::/48 maxlen: 48
2a10:cc46:1000::/36 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a0e:b107:1165::/48 maxlen: 48
2a0c:3b80::/29 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2a10:2f00:18f::/48 maxlen: 48
2a0e:b107:6f0::/44 maxlen: 44
2a0e:b107:9f2::/48 maxlen: 48
2a10:cc40:250::/44 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a0e:b107:1786::/48 maxlen: 48
2a10:cc41:800::/37 maxlen: 48
2a0e:97c4:100::/44 maxlen: 48
Validation: Failed, certificate revoked on Fri 03 Feb 2023 16:18:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:0a:15:e7:41:ec:91:e6:ab:4c:1c:0e:9b:dc:c9:48:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 31 23:07:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9a0f3fbd2811f20287560c04fdbd65d578d953ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e5:e2:8d:36:77:6d:65:aa:25:d6:64:48:11:
cf:e3:a3:ad:f1:0c:48:7d:6d:58:1e:ea:d4:29:32:
eb:cb:3d:d1:60:52:d3:45:86:02:59:57:9b:26:2c:
0c:f8:f1:1c:13:11:2c:11:10:07:59:ab:68:7b:14:
03:6e:31:b8:1e:bb:93:cb:9d:8b:3b:65:a8:d4:14:
5e:1d:da:be:5d:62:75:f5:e9:3f:9a:7e:c6:07:10:
f0:ec:84:bc:05:f8:51:67:c8:2c:82:87:71:dd:63:
0d:60:89:d3:95:29:bb:b5:1d:ec:94:76:65:ad:a5:
8f:a3:88:ae:cf:cf:2e:6d:79:03:e3:10:8e:73:0e:
ca:ea:68:f6:3f:a1:c3:b5:72:28:f0:c9:63:dd:6c:
11:56:72:d3:b3:fb:a8:0d:5c:6e:52:2d:2c:8a:57:
11:85:45:b6:20:01:d5:7d:50:18:43:83:b9:db:34:
9c:da:f7:0d:7e:34:2a:5f:a3:eb:b5:e1:69:8a:27:
9d:cf:a8:bb:cd:f4:c8:c6:07:4b:03:03:79:af:29:
09:aa:ae:4b:06:7f:2b:2c:49:51:48:87:aa:10:7b:
3c:cd:d2:56:1b:1d:48:2f:c4:e9:5b:be:97:8a:4b:
59:ce:83:47:e7:22:ab:d9:b5:4a:92:7c:6c:c9:67:
7f:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:0F:3F:BD:28:11:F2:02:87:56:0C:04:FD:BD:65:D5:78:D9:53:AC
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/mg8_vSgR8gKHVgwE_b1l1XjZU6w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.12.68.0/22
45.131.184.0/22
45.136.136.0/22
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
194.50.92.0/24
194.50.94.0/24
IPv6:
2001:7f8:119::/48
2a09:4c0::/29
2a0c:3b80::/29
2a0e:97c0:170::/48
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c4:100::/44
2a0e:b107:6f0::/44
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0f:e404:102::/48
2a10:2f00:18f::/48
2a10:cc40:250::/44
2a10:cc41:800::/37
2a10:cc46:1000::/36
Signature Algorithm: sha256WithRSAEncryption
c6:28:43:15:e8:21:15:0c:01:a9:12:ef:a7:d9:ae:32:d8:16:
0f:89:e9:28:8b:54:89:26:fd:96:7d:f6:38:ed:56:36:c9:4c:
19:e3:4c:a2:e3:8f:4b:7f:76:1e:22:43:a3:74:9e:1a:66:cc:
5a:1b:94:d4:89:0f:8e:33:7d:3e:63:36:39:0f:8d:a2:18:10:
d9:38:27:94:7a:8e:a2:8e:19:0c:17:19:a4:e5:a1:8c:c4:ad:
83:41:2b:6b:b1:e5:a2:3a:f5:f1:ca:bc:2f:07:bc:f1:48:d5:
45:34:95:bc:da:02:57:a1:a6:1d:1b:f3:df:eb:3b:f1:45:8c:
f0:67:fe:b0:16:d9:9e:81:ee:89:f6:2d:99:c2:35:e6:b8:a0:
62:c9:59:33:9d:f5:e8:7a:92:6e:65:24:61:91:52:21:fc:b9:
40:4a:92:26:54:b3:3c:68:80:c6:53:73:e6:4a:13:72:ec:ef:
51:ee:50:4f:7e:07:25:a0:1e:ef:58:d5:2a:14:d4:03:50:34:
f4:d7:27:c0:2f:52:2b:4a:71:b1:f2:a8:fb:bd:a9:49:55:22:
12:e2:dd:2c:93:ce:c8:ef:ed:a5:30:61:e5:74:c3:fe:57:0c:
06:48:f2:ec:60:d4:99:9a:cb:28:25:d4:60:9b:ad:f5:f3:03:
35:05:2b:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:37 2024 by rpki-client on console-fra.rpki-client.org