Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/8c1544-7cf2-4871-a1df-0253d04fb8ff/1/MHJQSH1DzKTrE_zQf6GSz25jiD4.roa
File: MHJQSH1DzKTrE_zQf6GSz25jiD4.roa (raw, json)
Hash identifier: vd8mnFGi94OS3V+WMZPA1WM1mVrcbs5nb/0DigtQiC0=
Subject key identifier: 30:72:50:48:7D:43:CC:A4:EB:13:FC:D0:7F:A1:92:CF:6E:63:88:3E
Certificate issuer: /CN=943e3f4856dac2a005c3a52347114dec453934b8
Certificate serial: 01856D017E139ED8CCCB79E0F0AC2A2C3841
Authority key identifier: 94:3E:3F:48:56:DA:C2:A0:05:C3:A5:23:47:11:4D:EC:45:39:34:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lD4_SFbawqAFw6UjRxFN7EU5NLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/8c1544-7cf2-4871-a1df-0253d04fb8ff/1/MHJQSH1DzKTrE_zQf6GSz25jiD4.roa
Signing time: Sun 01 Jan 2023 11:04:52 +0000
ROA not before: Sun 01 Jan 2023 11:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3303
IP address blocks: 185.105.132.0/22 maxlen: 24
185.105.144.0/22 maxlen: 24
109.164.128.0/17 maxlen: 24
188.60.0.0/14 maxlen: 24
217.11.32.0/20 maxlen: 24
170.205.64.0/18 maxlen: 24
212.90.192.0/19 maxlen: 24
62.202.0.0/15 maxlen: 24
212.41.192.0/19 maxlen: 24
213.3.0.0/16 maxlen: 24
92.104.0.0/14 maxlen: 24
81.62.0.0/15 maxlen: 24
178.192.0.0/13 maxlen: 24
85.0.0.0/13 maxlen: 24
83.173.192.0/18 maxlen: 24
83.76.0.0/14 maxlen: 24
213.200.192.0/18 maxlen: 24
84.253.0.0/18 maxlen: 24
170.17.128.0/17 maxlen: 24
146.4.0.0/16 maxlen: 24
95.152.64.0/18 maxlen: 24
176.127.0.0/16 maxlen: 24
195.186.0.0/16 maxlen: 24
178.174.64.0/19 maxlen: 24
213.180.160.0/19 maxlen: 24
178.174.0.0/18 maxlen: 24
46.14.0.0/16 maxlen: 24
2001:4d98::/33 maxlen: 48
2a02:1200::/27 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:01:7e:13:9e:d8:cc:cb:79:e0:f0:ac:2a:2c:38:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=943e3f4856dac2a005c3a52347114dec453934b8
Validity
Not Before: Jan 1 11:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=307250487d43cca4eb13fcd07fa192cf6e63883e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:4e:f8:92:b8:a1:f9:c3:dd:91:38:fc:49:a3:
15:9e:b3:3b:a5:a5:b0:47:44:24:1a:78:d8:03:9a:
80:10:67:19:2e:6f:0b:10:4d:d0:36:da:a3:06:d9:
1c:16:78:0c:d4:61:b8:7c:53:66:99:56:36:51:86:
be:fa:c6:31:72:7a:78:67:45:53:f3:cd:37:dc:09:
3c:91:0c:5a:71:e5:cb:36:15:1b:62:83:04:0e:7e:
8f:85:e8:4d:b5:6f:99:94:72:3c:75:3f:d6:43:08:
61:ee:09:9c:97:f5:9d:ee:f2:14:59:ad:98:55:b0:
33:45:4f:ca:1e:ff:8b:bf:05:7e:f3:db:37:29:fb:
f4:9a:02:82:ab:74:8a:2d:94:70:ea:94:e5:76:fd:
b2:be:ce:bd:c5:2a:e7:8e:24:8b:56:81:17:33:0b:
6e:a5:17:5d:55:1a:cc:e7:c9:7b:f7:e5:53:a4:52:
69:a5:a9:27:5b:f0:60:68:a3:3c:04:a3:2f:40:89:
b0:a5:99:f0:e7:6c:3a:f9:00:02:4f:fe:47:2e:26:
d5:2a:c2:33:f8:6e:17:30:e5:4d:2a:40:1a:3e:11:
1e:bb:12:04:6a:7e:76:ed:04:dc:22:6b:bd:84:38:
e3:30:6e:4f:91:a4:3b:2d:cd:c3:d6:31:fa:df:86:
3c:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:72:50:48:7D:43:CC:A4:EB:13:FC:D0:7F:A1:92:CF:6E:63:88:3E
X509v3 Authority Key Identifier:
keyid:94:3E:3F:48:56:DA:C2:A0:05:C3:A5:23:47:11:4D:EC:45:39:34:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lD4_SFbawqAFw6UjRxFN7EU5NLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/8c1544-7cf2-4871-a1df-0253d04fb8ff/1/MHJQSH1DzKTrE_zQf6GSz25jiD4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/8c1544-7cf2-4871-a1df-0253d04fb8ff/1/lD4_SFbawqAFw6UjRxFN7EU5NLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.14.0.0/16
62.202.0.0/15
81.62.0.0/15
83.76.0.0/14
83.173.192.0/18
84.253.0.0/18
85.0.0.0/13
92.104.0.0/14
95.152.64.0/18
109.164.128.0/17
146.4.0.0/16
170.17.128.0/17
170.205.64.0/18
176.127.0.0/16
178.174.0.0-178.174.95.255
178.192.0.0/13
185.105.132.0/22
185.105.144.0/22
188.60.0.0/14
195.186.0.0/16
212.41.192.0/19
212.90.192.0/19
213.3.0.0/16
213.180.160.0/19
213.200.192.0/18
217.11.32.0/20
IPv6:
2001:4d98::/33
2a02:1200::/27
Signature Algorithm: sha256WithRSAEncryption
82:4c:c1:c9:2c:db:9a:94:53:04:ef:93:24:b8:de:75:cb:db:
50:bf:1f:12:64:15:fd:f2:3e:cf:bc:02:a5:f4:31:47:9f:fb:
69:83:ff:88:ef:30:2c:41:6d:38:05:ca:52:ee:51:86:a9:27:
82:a4:96:c7:00:60:c0:09:6c:64:75:36:50:5a:c2:44:3c:90:
d8:22:80:2a:30:f3:ae:23:43:bb:4c:b1:04:bd:18:c4:68:0f:
d3:67:1d:a3:08:3f:ee:52:d1:a7:72:58:51:ea:12:a2:cf:99:
3d:cd:a1:4d:be:17:0a:c8:b0:1c:36:dd:84:63:8e:f8:c7:da:
24:f2:d7:a8:bc:d7:00:3b:68:39:05:11:19:65:8b:3d:df:78:
24:9c:e6:94:13:6b:a1:b8:d2:0c:19:7b:6a:d9:d2:49:6d:ad:
70:01:78:16:49:15:f1:d1:76:8c:f8:f1:a1:7b:24:fb:ad:88:
3c:95:ca:5e:b6:e4:f4:b4:aa:48:d9:0b:fa:79:cd:e5:5f:e6:
f7:8e:d9:a3:13:c1:34:71:c0:bc:4d:88:b0:80:b1:12:6c:5a:
d0:48:c9:47:a8:0b:e2:08:e7:55:78:c8:cb:72:f4:a5:c8:c2:
81:bb:71:1a:05:ef:74:d0:c6:c2:b2:6c:24:4b:ea:80:c8:3d:
8f:10:3f:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:31:16 2024 by rpki-client on console-fra.rpki-client.org