Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/f10e0e-16ca-48b0-abdc-c14f6ba25cb0/1/MZGb0EDJSRbzov7qdaMDm50n5UY.roa
File: MZGb0EDJSRbzov7qdaMDm50n5UY.roa (raw, json)
Hash identifier: h6Yu5O1p36XogQ1Bv4WttF37kYOwdDikpLwllxU3wjc=
Subject key identifier: 31:91:9B:D0:40:C9:49:16:F3:A2:FE:EA:75:A3:03:9B:9D:27:E5:46
Certificate issuer: /CN=26425863c309f2655b884c1600394c4338e7fb41
Certificate serial: 0185723A298F0D4220FC45E7D2F4F633DD38
Authority key identifier: 26:42:58:63:C3:09:F2:65:5B:88:4C:16:00:39:4C:43:38:E7:FB:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JkJYY8MJ8mVbiEwWADlMQzjn-0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/f10e0e-16ca-48b0-abdc-c14f6ba25cb0/1/MZGb0EDJSRbzov7qdaMDm50n5UY.roa
Signing time: Mon 02 Jan 2023 11:24:52 +0000
ROA not before: Mon 02 Jan 2023 11:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5089
IP address blocks: 109.107.154.0/24 maxlen: 24
195.60.172.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 Dec 2023 12:40:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:3a:29:8f:0d:42:20:fc:45:e7:d2:f4:f6:33:dd:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26425863c309f2655b884c1600394c4338e7fb41
Validity
Not Before: Jan 2 11:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=31919bd040c94916f3a2feea75a3039b9d27e546
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:45:a3:9d:0a:76:b4:5e:a2:0e:04:57:95:04:
0e:e6:68:02:75:41:5f:71:0b:64:94:64:10:1a:d8:
29:50:bb:a2:e3:6f:42:b1:b7:0f:f3:23:dd:90:d6:
2a:32:84:a2:87:2f:7b:8b:b8:93:93:e5:2b:0b:17:
31:8e:09:b2:c3:48:ff:fe:2f:66:d8:43:c3:da:8c:
ee:c6:28:72:33:b8:bb:ba:0d:e2:b2:d2:6c:8e:9b:
db:84:fb:e8:fa:5d:bd:96:8d:a4:0d:16:3e:ed:5f:
00:f5:28:ca:6e:60:5d:23:bf:e9:47:c2:f1:73:c3:
c5:7a:d6:60:f9:c1:89:4a:50:09:a1:8e:42:d5:08:
40:98:15:06:e8:4d:4c:7a:3c:2b:47:32:8c:2a:14:
db:72:a8:87:33:bb:63:b0:08:c9:6c:0e:47:f8:05:
a3:45:aa:7c:d1:9f:4b:28:68:35:2f:4a:c0:b3:c7:
57:93:af:04:6c:41:fc:8e:f3:e2:6b:de:dd:66:eb:
6c:48:02:9c:62:c6:dc:54:e1:58:95:a2:eb:f9:20:
f7:c5:b9:74:c2:97:ef:4b:28:6b:b3:6f:92:ed:0b:
6f:5e:ec:cc:4e:96:f4:2b:b7:79:cb:c6:13:eb:13:
d1:3c:71:1d:08:21:6e:2f:4b:27:2e:11:84:34:8c:
f8:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:91:9B:D0:40:C9:49:16:F3:A2:FE:EA:75:A3:03:9B:9D:27:E5:46
X509v3 Authority Key Identifier:
keyid:26:42:58:63:C3:09:F2:65:5B:88:4C:16:00:39:4C:43:38:E7:FB:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JkJYY8MJ8mVbiEwWADlMQzjn-0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/f10e0e-16ca-48b0-abdc-c14f6ba25cb0/1/MZGb0EDJSRbzov7qdaMDm50n5UY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/f10e0e-16ca-48b0-abdc-c14f6ba25cb0/1/JkJYY8MJ8mVbiEwWADlMQzjn-0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.107.154.0/24
195.60.172.0/24
Signature Algorithm: sha256WithRSAEncryption
74:11:02:fa:ee:b1:17:af:0e:5f:a7:96:2e:89:db:93:aa:45:
8c:0d:7f:94:25:a2:b6:90:9c:06:e6:81:f2:16:8e:49:b2:2b:
cb:01:7e:97:5e:f1:ef:4c:c8:b7:d3:e9:26:7f:51:99:8d:cb:
9c:34:23:d9:ab:17:ca:e3:87:15:68:aa:57:97:67:8f:30:8b:
68:11:40:fc:be:cc:a8:79:34:25:2e:c2:9b:bd:a3:2c:23:38:
c5:49:c4:9b:b6:b7:73:ad:72:0a:a4:e6:44:14:ff:42:cf:9c:
4f:e2:98:5f:f5:6d:c7:0e:d8:8c:ed:e7:56:7d:d6:a4:33:b5:
30:5e:95:a2:e9:64:5a:72:00:72:cf:34:cb:1e:5a:d7:e2:d7:
4f:f2:09:6b:d0:60:2a:4a:2d:3a:28:a3:b1:20:21:36:ca:04:
28:1b:b5:1f:d8:0c:60:9b:eb:eb:98:56:e5:55:ef:5d:48:94:
87:36:fc:b8:4f:4e:4d:b8:ee:82:11:db:43:e2:94:21:1c:57:
ca:ff:2e:63:c3:ff:7c:32:95:3d:ae:85:fa:9e:31:32:91:ad:
a7:b1:59:33:ad:3d:c1:f9:83:79:0e:9c:50:22:cb:02:16:23:
a8:d8:d4:78:ca:0e:9b:e9:85:ec:13:ff:17:f3:15:27:d1:9a:
5e:bd:a5:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:03 2024 by rpki-client on console-fra.rpki-client.org