Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/MMs6OppSTl_ROfmbcusfCDkjcp8.roa
File: MMs6OppSTl_ROfmbcusfCDkjcp8.roa (raw, json)
Hash identifier: VWxIa3PNvwoz6jcRLtA0BLg9XvzJXdSYebIzwoxPL0c=
Subject key identifier: 30:CB:3A:3A:9A:52:4E:5F:D1:39:F9:9B:72:EB:1F:08:39:23:72:9F
Certificate issuer: /CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Certificate serial: 018CC2DB548D5E513C0B31BCF54A0BF0950B
Authority key identifier: 6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/MMs6OppSTl_ROfmbcusfCDkjcp8.roa
Signing time: Mon 01 Jan 2024 02:30:03 +0000
ROA not before: Mon 01 Jan 2024 02:30:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 95.101.235.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 22 Mar 2024 13:43:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:54:8d:5e:51:3c:0b:31:bc:f5:4a:0b:f0:95:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Validity
Not Before: Jan 1 02:30:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=30cb3a3a9a524e5fd139f99b72eb1f083923729f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d0:16:a0:d7:30:6b:22:1f:17:89:6f:8d:07:
47:d2:d0:7d:7b:9a:d5:df:14:c8:23:b8:9d:35:f8:
2e:c7:5c:93:62:26:3b:4a:db:48:fd:26:d0:dc:80:
39:14:6a:bf:b1:91:50:df:78:7d:3e:65:04:96:17:
9c:a0:83:01:6b:18:f8:47:48:dd:88:c1:04:25:06:
93:8d:49:fe:c5:11:75:94:4e:1e:4f:43:40:59:b0:
ad:5f:f6:5a:c8:3d:04:1d:59:8d:1f:ce:02:ea:15:
35:a8:c2:cc:8b:6e:56:af:24:1f:00:d8:7d:7c:14:
81:d5:7f:77:4e:e7:f8:24:65:3f:1d:b4:14:97:c3:
b9:e4:1a:4f:12:c3:1c:a0:6d:10:1c:56:1a:a2:41:
f7:e5:2a:7e:ff:99:ff:33:39:93:8a:01:95:0d:4f:
1e:ca:70:11:be:c3:c0:b5:87:62:e2:4a:b3:87:74:
1a:ae:b6:ff:70:fe:91:b1:a9:39:92:35:e6:fe:4c:
47:fd:41:29:c2:0c:28:00:61:d8:82:f3:ac:af:7a:
42:e0:03:19:0d:14:ca:97:c8:1e:e7:c7:65:65:02:
32:be:02:42:97:aa:3e:80:ba:61:ec:e9:bb:62:e0:
c1:ff:e4:c2:8b:d4:03:45:62:b9:86:82:6a:39:0f:
8c:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:CB:3A:3A:9A:52:4E:5F:D1:39:F9:9B:72:EB:1F:08:39:23:72:9F
X509v3 Authority Key Identifier:
keyid:6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/MMs6OppSTl_ROfmbcusfCDkjcp8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/a1_LvqSJN6RCur2zMCEyxLyb1qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.101.235.0/24
Signature Algorithm: sha256WithRSAEncryption
70:96:40:36:59:64:94:66:06:fd:25:9b:34:26:46:a9:47:43:
c6:a4:43:70:81:0e:37:4c:58:78:26:57:fd:b9:7a:d7:9a:85:
72:d2:e9:5f:01:12:01:24:6c:64:f6:f4:23:e4:43:4e:4d:b6:
e6:b3:03:4f:e6:ad:75:eb:97:5a:76:ce:7c:1e:b1:af:4a:d9:
09:ea:ca:12:84:db:1f:b9:35:3d:fa:e4:6a:0b:2a:4b:ea:55:
1d:b3:05:4a:fa:13:73:d7:ab:ea:07:fb:28:35:a2:d1:0f:3c:
c2:a1:92:c1:7f:99:22:1d:f7:e9:7e:8e:f5:4c:12:a5:d5:e1:
a1:1d:01:62:5f:4f:1b:92:2e:03:0d:73:35:e5:1c:2f:e2:ad:
4f:b9:83:9a:44:75:f4:5e:38:f0:76:dd:ec:42:a8:3a:5c:da:
8b:14:fd:a7:43:4f:f3:14:e4:5e:73:5c:e6:e2:52:e6:a7:d9:
5c:7c:f9:85:1c:e9:1d:f8:9a:be:6c:6d:fe:85:41:2f:81:44:
1e:13:f9:79:2b:93:fa:42:44:e7:9e:d6:c7:87:91:e7:e5:88:
ae:ab:00:37:bf:1d:ea:38:64:0c:48:cb:f1:0f:33:4b:b2:bd:
1b:97:0d:67:76:d9:d2:b6:6a:c4:b6:4d:91:fa:b4:92:85:51:
30:7c:84:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 22 16:08:03 2024 by rpki-client on console-ams.rpki-client.org