Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Mb7VANsIobgicORE7DrlDDm2J4s.roa
File: Mb7VANsIobgicORE7DrlDDm2J4s.roa (raw, json)
Hash identifier: sLBWQmlH/vdjuvLDssgmH8RHczdpcg2O+eIXIzKhdiE=
Subject key identifier: 31:BE:D5:00:DB:08:A1:B8:22:70:E4:44:EC:3A:E5:0C:39:B6:27:8B
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018AD7652F2858ED3AFC71B2A1F3093DBC76
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Mb7VANsIobgicORE7DrlDDm2J4s.roa
Signing time: Wed 27 Sep 2023 16:07:27 +0000
ROA not before: Wed 27 Sep 2023 16:07:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 86.107.51.0/24 maxlen: 24
89.34.219.0/24 maxlen: 24
45.88.13.0/24 maxlen: 24
188.214.107.0/24 maxlen: 24
89.35.119.0/24 maxlen: 24
89.35.130.0/23 maxlen: 23
89.35.131.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 01 Oct 2023 18:45:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d7:65:2f:28:58:ed:3a:fc:71:b2:a1:f3:09:3d:bc:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Sep 27 16:07:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=31bed500db08a1b82270e444ec3ae50c39b6278b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:33:85:46:ca:c7:7a:b4:23:b9:63:79:18:65:
09:26:52:82:ae:e1:e7:2c:d1:34:c4:3f:8e:13:49:
e2:31:26:4d:57:b4:95:3d:7e:48:8f:0f:f3:63:59:
df:08:d4:ca:e5:a3:7d:50:ba:48:16:22:24:ad:6e:
1d:05:f6:10:76:d0:e3:d0:79:58:f6:c9:00:4b:9b:
96:d9:69:b2:e3:a1:e2:5c:fa:c8:00:e5:43:b7:c6:
e8:4c:1d:c1:de:79:fa:d5:1e:63:47:0a:92:8c:57:
aa:78:8e:a7:fa:0b:06:33:07:af:5f:21:60:48:e6:
3e:70:cb:60:ce:c5:39:e5:0e:0a:fb:3c:80:bf:da:
39:cb:51:38:0d:16:0a:77:e2:51:39:97:8f:72:64:
97:78:b1:cc:02:ff:4d:95:78:33:98:44:44:41:ff:
50:36:4f:bd:56:55:9a:70:9e:46:dd:b5:ca:2d:74:
71:0b:61:5c:47:fe:4b:68:c2:c7:b9:1e:32:f9:65:
86:48:90:05:17:45:4d:b1:e4:d1:ad:c3:ce:15:65:
7c:7e:82:43:8e:f9:bb:12:97:8a:fa:21:c8:c4:0e:
ba:74:12:84:a9:15:76:c0:8a:96:49:59:97:28:71:
14:56:45:5c:7d:13:83:88:bf:5c:2d:f7:9a:b6:63:
4d:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:BE:D5:00:DB:08:A1:B8:22:70:E4:44:EC:3A:E5:0C:39:B6:27:8B
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Mb7VANsIobgicORE7DrlDDm2J4s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.13.0/24
86.107.51.0/24
89.34.219.0/24
89.35.119.0/24
89.35.130.0/23
188.214.107.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:bf:5f:33:9e:c1:3a:ff:35:80:9c:4b:d4:92:2b:0d:de:8a:
dd:78:b5:05:03:31:3e:4e:0e:92:ff:a3:e2:8d:32:90:61:e7:
bd:b4:84:81:f2:10:01:94:59:eb:40:30:aa:b4:2c:35:3b:c5:
32:08:b8:0b:26:54:13:e1:01:74:9f:c0:26:62:1d:1b:d2:b6:
62:21:5a:9e:db:7f:e6:6c:5a:90:8a:be:62:ae:11:15:23:47:
5e:ab:27:2d:c5:40:32:1c:32:18:48:6d:ea:e3:f6:c9:4d:39:
7f:7d:2c:5e:75:42:c6:cb:20:f3:4b:77:24:be:26:27:fe:46:
a0:50:58:e5:24:9b:e0:4e:98:20:4b:55:8e:68:c9:eb:6b:95:
79:75:d6:e2:37:ac:d0:b0:fe:d0:e3:9a:28:81:ba:96:83:ee:
14:35:21:45:8d:01:51:f2:20:c3:e2:63:3b:57:e8:b4:0c:34:
9b:cc:2a:f1:b6:ed:bd:c5:7c:cc:9c:2e:d7:63:14:48:63:80:
08:77:59:4a:bf:ca:e9:7d:f8:56:9b:6a:48:6a:08:97:7e:7e:
6b:10:55:78:6d:38:06:1f:a2:db:c7:14:24:b5:84:3f:4f:3a:
fd:da:24:33:a4:98:a2:ad:5f:2a:dc:fb:59:55:08:34:15:c0:
3a:ad:7c:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:06 2024 by rpki-client on console-fra.rpki-client.org