Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Mt82LejW8neMDXgcSO-8Mpf3kao.roa
File: Mt82LejW8neMDXgcSO-8Mpf3kao.roa (raw, json)
Hash identifier: RuLgH+CK3DmXnQ0fx5K34l/dm0cGV1HYUkCyzbvZpzQ=
Subject key identifier: 32:DF:36:2D:E8:D6:F2:77:8C:0D:78:1C:48:EF:BC:32:97:F7:91:AA
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018D179BF87B605D1D842359C540ADC2F738
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Mt82LejW8neMDXgcSO-8Mpf3kao.roa
Signing time: Wed 17 Jan 2024 13:28:34 +0000
ROA not before: Wed 17 Jan 2024 13:28:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 86.107.51.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
89.34.202.0/24 maxlen: 24
89.34.219.0/24 maxlen: 24
89.35.131.0/24 maxlen: 24
89.37.192.0/24 maxlen: 24
94.176.215.0/24 maxlen: 24
188.241.137.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Jan 2024 11:20:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:17:9b:f8:7b:60:5d:1d:84:23:59:c5:40:ad:c2:f7:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 17 13:28:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=32df362de8d6f2778c0d781c48efbc3297f791aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d4:c5:f0:1d:31:33:ba:a9:a0:ce:55:9d:4b:
04:d4:38:e9:ce:bc:de:9b:8f:b3:f2:93:32:44:32:
a0:4d:9b:57:16:01:26:73:a1:b6:94:ed:b5:8d:8d:
1f:0c:22:a8:ff:8d:77:a4:1e:82:2d:e5:27:53:c3:
10:fa:a7:6a:c6:0e:22:e1:a7:a5:73:8d:81:87:34:
82:a3:7e:e7:ae:cf:d1:14:47:f7:c0:2e:0d:d8:90:
6a:32:fe:17:6d:39:eb:ac:f6:86:df:ba:ac:20:58:
60:f7:c3:86:6b:97:70:38:91:eb:18:39:b6:34:77:
14:cf:37:84:cb:b8:d6:fc:c5:21:77:84:5f:a8:3f:
e9:a0:4d:ae:da:28:c5:21:95:3f:04:0d:53:27:1d:
ba:65:c6:78:24:72:af:21:73:c0:07:4f:53:72:26:
36:a2:b4:19:cd:e4:5e:bc:ba:90:00:65:9f:fe:bb:
36:b1:36:41:1a:dc:b2:84:9e:66:3f:d2:aa:d1:a5:
ea:b9:08:77:62:cb:25:24:9d:25:46:45:e4:f7:26:
f4:aa:65:f9:12:6d:45:38:fd:7b:68:1e:b0:ee:4c:
5d:b2:75:81:cb:81:0f:8e:08:44:7e:71:38:2e:cf:
96:2d:86:65:d2:d8:43:9c:2d:40:ef:a5:b4:55:cc:
f8:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:DF:36:2D:E8:D6:F2:77:8C:0D:78:1C:48:EF:BC:32:97:F7:91:AA
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Mt82LejW8neMDXgcSO-8Mpf3kao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.107.51.0/24
89.34.106.0/24
89.34.202.0/24
89.34.219.0/24
89.35.131.0/24
89.37.192.0/24
94.176.215.0/24
188.241.137.0/24
Signature Algorithm: sha256WithRSAEncryption
84:80:c6:1f:8e:3c:29:a9:38:b0:ba:81:a0:87:82:81:3b:d5:
72:74:f1:b6:af:8d:a3:56:d5:6b:73:85:0d:65:f3:54:4e:9b:
8d:75:74:d0:92:8c:e2:be:75:18:ab:a8:cd:25:ad:34:67:c8:
28:eb:ce:34:89:fb:b9:83:37:61:0d:68:0c:1d:a9:4a:3c:a0:
b1:aa:b6:76:59:0a:f1:60:1b:66:29:7c:fc:1d:9e:42:e9:bb:
eb:c6:d6:c4:2e:94:ec:88:14:01:9c:6b:a5:e8:a0:16:19:34:
48:51:44:43:bb:7d:88:6a:bf:29:98:2b:d8:54:71:fe:da:3f:
4b:f5:2d:ff:c1:ef:0f:37:85:d2:f7:d7:6c:71:da:e1:6d:f8:
02:d4:c9:23:b3:7b:c4:72:35:f3:65:e5:05:be:e4:60:85:77:
af:71:15:c7:b3:5a:de:b8:03:94:49:1e:ed:a4:d4:99:19:4e:
ed:4e:d6:c9:f8:3d:e4:76:9e:ff:34:f0:d5:c1:cb:fd:d6:c9:
04:2e:6b:d3:3c:8d:6e:e7:3d:f9:8c:a8:ca:58:e4:3a:81:96:
97:7e:f2:55:dc:3d:e1:bd:9d:91:ed:a0:92:89:1a:36:b2:e5:
cc:04:1d:75:a0:17:ff:8c:2f:c4:e1:2a:74:0d:41:7c:98:09:
70:98:8e:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:06 2024 by rpki-client on console-fra.rpki-client.org