Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/MHhD5sIDnE0X6MUPYFu0Wc_l6ds.roa
File: MHhD5sIDnE0X6MUPYFu0Wc_l6ds.roa (raw, json)
Hash identifier: RVwrbRUEgLWvFN4Yf9/12H94+SPcclokPg1vJsJd5T0=
Subject key identifier: 30:78:43:E6:C2:03:9C:4D:17:E8:C5:0F:60:5B:B4:59:CF:E5:E9:DB
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0187458014DB8CF6483EC9870FC57A51DC35
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/MHhD5sIDnE0X6MUPYFu0Wc_l6ds.roa
Signing time: Mon 03 Apr 2023 05:03:54 +0000
ROA not before: Mon 03 Apr 2023 05:03:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400377
IP address blocks: 86.107.50.0/24 maxlen: 24
86.107.168.0/24 maxlen: 24
195.88.89.0/24 maxlen: 24
188.213.216.0/24 maxlen: 24
93.115.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 03 Apr 2023 14:50:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:45:80:14:db:8c:f6:48:3e:c9:87:0f:c5:7a:51:dc:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Apr 3 05:03:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=307843e6c2039c4d17e8c50f605bb459cfe5e9db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d9:35:24:3d:1b:ed:e9:47:c3:9f:a2:8b:2b:
8e:5d:9b:42:43:60:25:e3:33:71:d3:1a:63:50:b6:
ad:54:59:c5:02:30:08:ee:a4:2d:78:32:d8:ac:6f:
35:7a:c4:5a:4e:ce:35:06:27:4f:2c:3e:66:38:f3:
2e:02:1f:7c:18:24:6e:48:d3:9d:60:cd:1d:ca:ad:
d9:6a:19:ab:b4:25:19:2b:80:42:e8:b2:43:18:f1:
0a:a7:13:75:bd:ea:ac:5a:79:22:14:67:75:40:7b:
7a:0e:46:65:a9:b9:d0:44:2c:b0:6f:05:b4:92:96:
e2:1b:31:93:f9:86:7c:1d:03:3b:ef:b7:d7:25:7c:
5b:48:1f:18:e0:9a:e1:f0:ac:44:50:9b:60:08:d9:
00:bb:d6:28:4f:ee:d5:79:0c:11:5e:05:18:01:e8:
ab:ac:c4:df:41:0d:fa:5a:aa:cb:27:02:43:40:42:
7d:ee:b1:ff:45:e7:22:95:ae:f1:b3:80:2b:9b:70:
db:6a:91:8e:47:73:a8:8e:1c:d6:3d:29:4f:f9:b3:
b4:58:fd:9e:88:81:88:63:0d:65:3e:f0:92:79:c9:
f7:cc:8e:51:59:e3:90:5c:de:7a:26:16:07:c2:41:
d9:b2:27:20:3a:4a:bd:48:38:e6:65:40:2d:92:47:
b0:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:78:43:E6:C2:03:9C:4D:17:E8:C5:0F:60:5B:B4:59:CF:E5:E9:DB
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/MHhD5sIDnE0X6MUPYFu0Wc_l6ds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.107.50.0/24
86.107.168.0/24
93.115.203.0/24
188.213.216.0/24
195.88.89.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:95:ff:5e:9d:b2:6e:49:e1:73:66:53:07:2f:87:82:3d:63:
ef:89:f5:ea:da:1b:52:ef:16:5a:b3:2b:cc:f7:f7:0a:0f:b6:
6e:64:df:de:48:b5:ac:f7:04:25:b1:2f:18:31:95:08:dc:57:
fa:25:67:da:be:29:45:9c:39:0f:f3:10:df:a7:25:1d:14:60:
d2:de:b0:55:58:ca:8e:0e:2e:55:48:50:a9:ce:64:49:1c:2e:
66:fc:b7:c2:95:af:6a:5d:2d:3d:1a:b2:1c:3e:7f:d9:fc:5e:
67:64:49:76:63:46:c8:69:ff:b8:33:d9:b1:39:aa:9f:1c:b1:
06:b9:fb:6f:71:cf:58:10:78:47:51:91:cd:3d:dc:ad:e1:00:
92:88:15:c1:3b:51:55:62:72:fc:e0:90:32:0e:f8:65:13:85:
f1:21:8b:ae:e1:46:78:e3:ed:5b:76:f4:f7:e8:b7:8d:99:85:
3a:bf:f8:8f:8b:fd:d7:aa:24:44:90:a1:12:83:01:55:20:07:
ac:8f:d7:22:f6:45:00:2d:ea:9d:15:b6:1f:07:a5:63:84:2f:
f5:59:a0:74:4a:a8:24:0c:ae:17:27:bd:71:b8:f6:13:c1:28:
11:f6:d6:6c:29:46:e6:f7:b0:e7:6c:91:28:88:ea:aa:90:46:
82:fd:db:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:12 2024 by rpki-client on console-ams.rpki-client.org