Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/4522fb-c1da-4ccc-a7c7-a043e1b67b94/1/MJmXB_KdeDuyjcobbaT3jE2WLDY.roa
File: MJmXB_KdeDuyjcobbaT3jE2WLDY.roa (raw, json)
Hash identifier: al/pD98O5vEueSt/fdyzS9DgGdbbKDSsNc7eGRltSOY=
Subject key identifier: 30:99:97:07:F2:9D:78:3B:B2:8D:CA:1B:6D:A4:F7:8C:4D:96:2C:36
Certificate issuer: /CN=4292b5da4b4ffeaf720649518fbaaa10c5cb2811
Certificate serial: 019333EFBECFCC785A67D4D706EE9F9F8E75
Authority key identifier: 42:92:B5:DA:4B:4F:FE:AF:72:06:49:51:8F:BA:AA:10:C5:CB:28:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QpK12ktP_q9yBklRj7qqEMXLKBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/4522fb-c1da-4ccc-a7c7-a043e1b67b94/1/MJmXB_KdeDuyjcobbaT3jE2WLDY.roa
Signing time: Sat 16 Nov 2024 07:46:10 +0000
ROA not before: Sat 16 Nov 2024 07:46:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49127
IP address blocks: 185.219.6.0/24 maxlen: 24
193.37.216.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 19:48:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:33:ef:be:cf:cc:78:5a:67:d4:d7:06:ee:9f:9f:8e:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4292b5da4b4ffeaf720649518fbaaa10c5cb2811
Validity
Not Before: Nov 16 07:46:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=30999707f29d783bb28dca1b6da4f78c4d962c36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:d8:a6:44:5b:07:e4:e1:12:bd:6d:e0:de:da:
f8:77:16:a0:0e:20:8e:78:e9:2b:dd:c9:01:85:6f:
c3:12:e2:fb:7c:d1:c6:e7:7f:29:6c:01:23:b4:b3:
7c:98:75:67:97:8e:24:a1:4a:94:7c:05:b7:c2:ac:
f2:e4:62:88:05:4d:c1:6e:47:b0:a0:3e:02:20:fb:
6e:8f:38:f1:1f:a2:fe:49:06:90:58:71:93:bd:1e:
f7:90:61:ec:37:8e:74:77:eb:75:a5:8d:9e:2b:dc:
c6:59:04:12:f7:72:31:17:4f:6a:7b:79:3b:8c:e2:
46:03:e8:00:fc:23:ff:28:4e:95:b5:2a:7b:67:eb:
77:ff:34:03:d4:cf:b6:5b:4a:51:5e:e5:cd:90:8e:
a9:56:f6:d6:d1:f4:77:cb:6f:48:da:60:49:5d:e3:
09:19:be:7a:29:07:80:6c:36:c7:b0:7c:41:52:44:
e5:e7:71:a1:96:25:4c:47:c5:d0:4d:24:d9:40:2b:
25:b0:60:bf:37:d6:94:70:0f:17:96:24:f8:a7:ec:
34:dd:66:df:21:03:7d:5f:5c:5a:8c:98:6b:48:a1:
67:56:23:2b:f3:f4:d1:d0:42:4b:b0:05:09:2a:65:
d9:0b:aa:31:83:3c:99:f4:44:00:ca:23:50:ac:02:
97:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:99:97:07:F2:9D:78:3B:B2:8D:CA:1B:6D:A4:F7:8C:4D:96:2C:36
X509v3 Authority Key Identifier:
keyid:42:92:B5:DA:4B:4F:FE:AF:72:06:49:51:8F:BA:AA:10:C5:CB:28:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QpK12ktP_q9yBklRj7qqEMXLKBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/4522fb-c1da-4ccc-a7c7-a043e1b67b94/1/MJmXB_KdeDuyjcobbaT3jE2WLDY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/4522fb-c1da-4ccc-a7c7-a043e1b67b94/1/QpK12ktP_q9yBklRj7qqEMXLKBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.219.6.0/24
193.37.216.0/22
Signature Algorithm: sha256WithRSAEncryption
52:e5:ec:3b:c3:7d:3d:48:08:25:a3:7d:74:aa:20:d0:65:79:
27:56:57:15:60:e7:4a:76:d2:50:71:18:ca:50:00:45:6b:ae:
a8:86:43:7d:6b:10:14:c7:0d:17:01:e4:2d:49:74:70:e7:e9:
1d:c5:dd:4f:74:b9:dc:45:41:2c:1d:39:23:29:62:b5:8b:a3:
18:ca:d1:f5:be:b8:5f:4a:b9:9e:e5:30:52:48:7e:3d:d1:1e:
35:5f:4d:50:fc:52:4b:df:6c:ba:32:a3:fa:26:44:86:24:df:
19:2b:71:7a:97:65:d3:a6:5b:98:bd:88:d3:77:42:76:5d:bc:
27:81:ce:2d:9b:3c:04:9e:33:ac:5d:17:1f:20:b5:80:8e:f2:
dc:79:92:10:88:b6:02:89:41:a9:65:27:23:22:8a:bf:d1:d3:
0e:89:d4:d3:7f:7a:75:dd:9a:41:e4:2d:b6:13:d2:e5:d6:f0:
45:40:8f:d5:85:f3:8b:0e:c8:10:02:9b:d8:8c:f0:36:4e:9c:
ea:97:44:4b:fc:4f:b8:f0:32:aa:d2:cd:6a:2e:87:bb:45:38:
29:aa:14:7f:28:2d:ee:d5:3e:05:e3:67:e7:9b:8b:83:78:97:
79:83:f9:46:df:30:1d:98:52:a1:32:22:20:07:06:ac:dd:31:
b0:90:b9:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:10:06 2025 by rpki-client