Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/b548d5-82fe-46c2-b997-157ad0ac520a/1/MZUC4YTMZIrab83VuA28FpuUlTM.roa
File: MZUC4YTMZIrab83VuA28FpuUlTM.roa (raw, json)
Hash identifier: kVFRhgK59kSHM6QCgN4O4227PPnRAhwjSiqcRVC5DhM=
Subject key identifier: 31:95:02:E1:84:CC:64:8A:DA:6F:CD:D5:B8:0D:BC:16:9B:94:95:33
Certificate issuer: /CN=a3717ea54b95942fad81a943edb1c10f9df94afb
Certificate serial: 018854C51E566558C451EC1993BB440D8829
Authority key identifier: A3:71:7E:A5:4B:95:94:2F:AD:81:A9:43:ED:B1:C1:0F:9D:F9:4A:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o3F-pUuVlC-tgalD7bHBD535Svs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/b548d5-82fe-46c2-b997-157ad0ac520a/1/MZUC4YTMZIrab83VuA28FpuUlTM.roa
Signing time: Thu 25 May 2023 21:16:24 +0000
ROA not before: Thu 25 May 2023 21:16:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56911
IP address blocks: 185.139.180.0/24 maxlen: 24
195.177.112.0/24 maxlen: 24
195.177.114.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 05 Jun 2023 11:44:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:54:c5:1e:56:65:58:c4:51:ec:19:93:bb:44:0d:88:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3717ea54b95942fad81a943edb1c10f9df94afb
Validity
Not Before: May 25 21:16:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=319502e184cc648ada6fcdd5b80dbc169b949533
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:89:a6:4a:d0:a5:a5:05:30:fd:b6:2f:9e:e0:
46:a5:3f:73:03:23:30:4a:bc:2d:85:48:4c:15:f5:
79:75:50:0b:06:5e:bf:d0:2e:8e:69:e3:0f:59:3a:
af:8b:78:39:11:3e:b4:4d:c2:d8:6a:32:f7:f9:92:
f1:d4:86:56:f4:ab:e9:c5:79:90:c6:28:3b:4a:f0:
18:44:16:05:d4:99:34:66:14:12:99:fc:37:7c:5f:
e1:8e:9f:ef:17:29:83:89:95:a2:83:75:58:93:79:
9c:ab:17:5f:44:ff:d8:35:93:e4:1e:3f:b8:58:bd:
99:e8:6d:eb:ae:4e:ad:11:17:70:69:fe:d7:58:1c:
77:b9:8a:5d:20:1d:fb:65:82:d5:9a:55:2f:15:53:
63:67:9f:cd:f9:b9:17:90:78:87:f6:19:39:06:5e:
30:1d:0a:29:25:f5:70:1e:1a:14:df:30:cf:ac:00:
4e:f0:df:54:8e:70:ba:0e:d8:0f:b7:a7:06:d6:12:
77:c8:d3:d5:29:21:7c:31:c6:34:57:8b:e0:fe:6d:
1f:69:b5:5d:b9:be:c0:ff:5d:1d:91:10:23:8f:17:
16:ed:88:16:7f:ca:4b:8b:92:69:97:d5:6b:b3:27:
a7:22:f6:aa:0e:dc:0e:85:47:bb:60:fa:df:36:00:
69:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:95:02:E1:84:CC:64:8A:DA:6F:CD:D5:B8:0D:BC:16:9B:94:95:33
X509v3 Authority Key Identifier:
keyid:A3:71:7E:A5:4B:95:94:2F:AD:81:A9:43:ED:B1:C1:0F:9D:F9:4A:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o3F-pUuVlC-tgalD7bHBD535Svs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b548d5-82fe-46c2-b997-157ad0ac520a/1/MZUC4YTMZIrab83VuA28FpuUlTM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b548d5-82fe-46c2-b997-157ad0ac520a/1/o3F-pUuVlC-tgalD7bHBD535Svs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.139.180.0/24
195.177.112.0/24
195.177.114.0/24
Signature Algorithm: sha256WithRSAEncryption
12:75:cd:14:13:48:41:1c:f8:1d:a9:4e:af:32:e2:79:e2:66:
aa:6f:c8:0f:05:02:dc:9f:e3:ec:8c:1b:bd:39:42:47:67:f1:
d0:5a:42:e6:d8:ac:51:85:e4:c3:35:9d:f4:96:07:07:77:b0:
f8:5f:6a:96:0d:45:d5:9b:62:cf:37:fd:9a:cd:f6:74:ea:d6:
65:3a:a4:d8:c0:d5:a9:ce:e6:3c:4a:c2:70:56:9f:95:07:ca:
8d:64:d7:da:cb:9d:37:b6:ab:2a:28:8f:e4:cb:20:22:3f:34:
e5:71:16:17:a9:60:df:ed:35:d0:53:cf:d7:d4:09:9a:ef:6f:
a8:10:9e:b2:51:80:aa:c2:51:35:be:c5:52:f7:63:75:86:38:
63:8b:0d:fa:c1:75:1d:68:2b:f4:44:e8:f7:ac:39:1a:81:c6:
14:8c:6a:21:e0:db:b6:9c:69:76:ac:f1:ee:53:ce:b4:c8:62:
3c:48:20:c2:b8:ee:7f:70:4f:34:44:92:e2:dd:24:50:8c:87:
87:44:fa:63:a6:18:4c:ff:6f:58:b6:7b:82:d3:ae:18:0c:78:
d8:3e:35:e8:14:23:22:5e:e8:42:ac:08:23:e9:f3:3b:80:a7:
4f:82:39:b8:a2:27:6c:4b:d3:97:44:cb:38:bd:fd:6d:b3:cd:
1b:bb:b0:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:24 2024 by rpki-client on console-ams.rpki-client.org