Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/7fe015-5cd5-4429-8b7d-22d027197712/1/MCJJIqMsdrVUKbp112MwTmaOro4.roa
File: MCJJIqMsdrVUKbp112MwTmaOro4.roa (raw, json)
Hash identifier: d/6U1zwgEf4lWww0yY9ZaqgPCbm7XLzYOUtmm4YG7Z4=
Subject key identifier: 30:22:49:22:A3:2C:76:B5:54:29:BA:75:D7:63:30:4E:66:8E:AE:8E
Certificate issuer: /CN=26c672da72a34cc282adc40f282676de75117654
Certificate serial: 0193DEE2C5415BCE00C3C136F08BFF63DE2E
Authority key identifier: 26:C6:72:DA:72:A3:4C:C2:82:AD:C4:0F:28:26:76:DE:75:11:76:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JsZy2nKjTMKCrcQPKCZ23nURdlQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/7fe015-5cd5-4429-8b7d-22d027197712/1/MCJJIqMsdrVUKbp112MwTmaOro4.roa
Signing time: Thu 19 Dec 2024 12:27:03 +0000
ROA not before: Thu 19 Dec 2024 12:27:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 31.88.0.0/15 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 03:48:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:de:e2:c5:41:5b:ce:00:c3:c1:36:f0:8b:ff:63:de:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26c672da72a34cc282adc40f282676de75117654
Validity
Not Before: Dec 19 12:27:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=30224922a32c76b55429ba75d763304e668eae8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:7e:2e:df:a6:6d:2e:63:45:f3:82:2c:ec:47:
6f:ce:5b:dd:32:97:3f:41:3a:0e:81:7c:e2:d0:eb:
01:d9:8f:11:6d:0e:08:c9:9d:7f:09:3b:e6:a8:3b:
55:b0:f5:8e:9e:24:5a:0c:fb:62:c4:ec:40:04:ec:
1d:dd:59:7b:14:1d:7a:25:43:dd:59:1a:4e:d0:c9:
1e:05:46:a8:85:89:3e:b1:95:ac:cd:f4:f8:98:34:
7a:e3:5b:73:29:21:75:b7:cd:e2:9c:af:f0:70:ec:
21:57:1f:24:0e:2f:de:cd:dc:af:cc:e2:f9:16:0c:
11:bd:86:72:a9:52:f3:33:06:06:8f:28:83:a9:7c:
e0:f6:c4:18:50:46:df:09:58:4e:d3:fc:9a:3d:21:
3c:f6:5b:32:de:cf:0d:8e:30:9c:41:52:44:75:e7:
3c:20:0b:84:5a:2d:0c:d8:67:93:75:3f:87:f1:99:
7f:f7:2b:69:f0:66:79:1d:f0:8e:4b:19:6b:25:7f:
13:db:0a:68:db:b4:a4:55:b8:6d:23:79:0f:4c:eb:
b3:8c:64:7b:88:6f:be:5c:68:1a:17:df:ac:ec:2e:
2a:3b:de:0c:95:d8:6a:b1:20:91:c6:af:18:eb:3b:
19:6f:3a:f0:ed:08:a0:96:49:31:9b:8b:50:2e:e8:
d7:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:22:49:22:A3:2C:76:B5:54:29:BA:75:D7:63:30:4E:66:8E:AE:8E
X509v3 Authority Key Identifier:
keyid:26:C6:72:DA:72:A3:4C:C2:82:AD:C4:0F:28:26:76:DE:75:11:76:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JsZy2nKjTMKCrcQPKCZ23nURdlQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/7fe015-5cd5-4429-8b7d-22d027197712/1/MCJJIqMsdrVUKbp112MwTmaOro4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/7fe015-5cd5-4429-8b7d-22d027197712/1/JsZy2nKjTMKCrcQPKCZ23nURdlQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.88.0.0/15
Signature Algorithm: sha256WithRSAEncryption
75:9c:d7:56:ee:8b:60:aa:05:03:3e:d5:f1:32:9f:b8:fb:8c:
5d:39:54:5d:44:fc:e1:46:0e:a1:f6:0e:a1:32:53:20:54:7f:
b0:b6:85:3d:83:b1:01:91:2d:fc:4e:e1:6a:19:c9:32:b2:b9:
71:e6:46:c5:55:83:06:20:5a:2b:c0:fa:4f:38:fa:23:58:4f:
1b:1c:7c:6a:a7:e2:fd:1e:ba:f7:9d:02:a7:bf:bd:30:74:61:
91:d7:43:bb:02:e8:5a:b4:ef:03:7e:83:da:38:21:32:76:40:
df:24:70:c7:7a:d5:39:93:5e:69:33:c2:a5:6c:4e:fc:5a:a5:
3d:08:eb:15:1d:3b:c9:11:00:f3:d2:a6:3b:36:cb:26:16:c1:
e0:ec:af:3e:c0:99:ad:15:77:71:cf:9e:30:2b:be:3c:29:ec:
91:4c:74:7b:8c:42:eb:f1:b4:76:a9:8b:73:28:a6:45:98:e9:
c8:a4:bb:5f:b8:99:da:c8:d0:b6:55:76:d0:ca:5b:81:0d:1b:
45:d3:ab:11:3f:75:46:d9:85:a5:bd:da:a5:9d:47:e4:c0:2e:
50:8e:56:67:0b:60:d5:29:98:97:91:6d:33:c3:64:23:8f:52:
9c:7b:fc:e2:d9:31:ae:e9:b6:6b:f4:43:fb:56:cc:ae:fb:51:
77:28:c4:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 2 07:59:20 2025 by rpki-client on console-fra.rpki-client.org