Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/1-MuTGO4CNjSzvumVItQTUe_PwnU.roa
File: 1-MuTGO4CNjSzvumVItQTUe_PwnU.roa (raw, json)
Hash identifier: uE/6/QtFWW+/6QOsog7T+wtrJLjWuf7DfdKyoN9l8Jk=
Subject key identifier: F8:CB:93:18:EE:02:36:34:B3:BE:E9:95:22:D4:13:51:EF:CF:C2:75
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 019173F5524F7E75F12DE01C5D853FB75C16
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/1-MuTGO4CNjSzvumVItQTUe_PwnU.roa
Signing time: Wed 21 Aug 2024 08:02:22 +0000
ROA not before: Wed 21 Aug 2024 08:02:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 82.152.176.0/23 maxlen: 23
82.153.136.0/22 maxlen: 22
89.213.50.0/23 maxlen: 23
89.213.56.0/22 maxlen: 22
89.213.104.0/24 maxlen: 24
89.213.145.0/24 maxlen: 24
89.213.148.0/22 maxlen: 24
89.213.152.0/22 maxlen: 24
89.213.156.0/22 maxlen: 24
89.213.167.0/24 maxlen: 24
89.213.172.0/22 maxlen: 24
89.213.196.0/22 maxlen: 24
89.213.200.0/22 maxlen: 24
89.213.204.0/22 maxlen: 24
89.213.228.0/22 maxlen: 22
89.213.232.0/22 maxlen: 24
89.213.236.0/22 maxlen: 24
109.176.16.0/21 maxlen: 24
109.176.204.0/22 maxlen: 24
185.49.126.0/23 maxlen: 24
194.105.80.0/20 maxlen: 20
212.38.88.0/23 maxlen: 24
213.218.211.0/24 maxlen: 24
217.145.66.0/24 maxlen: 24
217.145.72.0/21 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 Aug 2024 17:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:73:f5:52:4f:7e:75:f1:2d:e0:1c:5d:85:3f:b7:5c:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Aug 21 08:02:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f8cb9318ee023634b3bee99522d41351efcfc275
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:07:00:4c:f8:e3:3a:5d:41:47:2d:bd:cc:7c:
20:a7:c9:55:3c:e4:b0:ce:8f:dc:aa:48:6e:97:f7:
99:71:04:69:ce:57:87:aa:1c:32:ec:db:b8:c9:92:
c9:a2:34:65:ef:a6:a9:ca:1b:65:7a:bd:07:31:16:
54:a6:55:da:2a:10:3b:22:5f:58:d7:47:93:3b:83:
c2:fb:b1:0d:8b:42:90:1c:6b:b8:82:ab:76:d1:d7:
13:07:a3:d6:07:62:64:ed:c1:05:fa:5a:3f:2d:b2:
0c:26:ab:eb:ed:37:51:a7:57:de:0a:58:f4:30:29:
cb:36:49:e8:02:ed:6c:3f:63:ba:76:8b:4f:71:62:
a6:50:63:6e:06:d5:fe:d1:9b:34:ca:06:99:08:ee:
a2:46:10:ae:78:04:13:c9:1a:73:1a:25:9c:b4:59:
0a:a5:16:f3:c2:3c:72:4f:11:c2:36:39:b3:38:d9:
19:3c:96:fb:79:8e:33:ff:bf:d3:ab:b8:2c:de:4e:
93:48:60:62:b9:30:cf:61:b6:d1:32:2c:f2:89:c8:
81:a5:03:40:d8:07:53:60:29:e6:dd:5b:50:fc:d2:
3d:61:92:1b:7f:0c:8e:37:32:35:ee:4a:fd:28:b5:
84:0b:b8:73:2d:f2:d0:9c:cd:59:b4:4a:1b:1b:5f:
ee:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:CB:93:18:EE:02:36:34:B3:BE:E9:95:22:D4:13:51:EF:CF:C2:75
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/1-MuTGO4CNjSzvumVItQTUe_PwnU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.152.176.0/23
82.153.136.0/22
89.213.50.0/23
89.213.56.0/22
89.213.104.0/24
89.213.145.0/24
89.213.148.0-89.213.159.255
89.213.167.0/24
89.213.172.0/22
89.213.196.0-89.213.207.255
89.213.228.0-89.213.239.255
109.176.16.0/21
109.176.204.0/22
185.49.126.0/23
194.105.80.0/20
212.38.88.0/23
213.218.211.0/24
217.145.66.0/24
217.145.72.0/21
Signature Algorithm: sha256WithRSAEncryption
7e:f3:16:71:80:17:0e:13:12:11:c2:88:99:6b:f9:95:9c:4c:
a9:70:fd:10:10:bc:e4:09:4a:97:a0:8e:e5:06:af:00:4c:8d:
e6:d5:d0:02:c1:9f:79:c6:87:82:3a:3d:ac:bf:be:b8:1a:b7:
15:5f:89:7a:97:2d:68:96:95:86:86:75:fb:5d:cb:52:d2:d1:
3f:b9:ba:dd:f9:ff:5a:9f:1c:ba:8b:6b:de:fe:90:45:f8:82:
5e:ba:cf:10:fc:5c:69:e0:c5:3f:0f:b9:40:96:50:b8:40:50:
9b:5b:2f:c6:d0:b4:50:07:2e:c3:f1:9c:eb:eb:0d:6c:03:c6:
a8:9b:3c:0c:89:8a:8d:bb:3f:11:8a:60:eb:54:d7:c1:ae:79:
c8:b8:45:3a:78:05:e3:5d:33:77:36:79:13:5e:27:c1:9a:db:
e5:48:a9:aa:26:69:bb:ce:d3:88:de:5b:2e:2a:0b:64:d5:e3:
ed:8c:df:c4:0b:29:f1:94:13:69:c6:a7:19:c3:d6:10:00:8c:
74:b2:18:f8:50:fb:73:48:4b:dc:e9:15:46:0e:2c:3f:7e:a2:
d8:8b:91:33:5d:36:bd:ac:16:ae:3c:a1:0a:2b:6f:ca:e0:59:
b1:7b:9b:21:06:a7:c0:ab:06:67:b1:d9:4b:4d:68:83:cd:8e:
2c:b8:4b:28
-----BEGIN CERTIFICATE-----
MIIFhzCCBG+gAwIBAgISAZFz9VJPfnXxLeAcXYU/t1wWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNmZDMwZDhhN2UxMmZjN2JmNjJlMGMxMjFlN2NjMjI2ZGVh
NTNiOWIwHhcNMjQwODIxMDgwMjIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmOGNiOTMxOGVlMDIzNjM0YjNiZWU5OTUyMmQ0MTM1MWVmY2ZjMjc1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlAcATPjjOl1BRy29zHwgp8lVPOSw
zo/cqkhul/eZcQRpzleHqhwy7Nu4yZLJojRl76apyhtler0HMRZUplXaKhA7Il9Y
10eTO4PC+7ENi0KQHGu4gqt20dcTB6PWB2Jk7cEF+lo/LbIMJqvr7TdRp1feClj0
MCnLNknoAu1sP2O6dotPcWKmUGNuBtX+0Zs0ygaZCO6iRhCueAQTyRpzGiWctFkK
pRbzwjxyTxHCNjmzONkZPJb7eY4z/7/Tq7gs3k6TSGBiuTDPYbbRMizyiciBpQNA
2AdTYCnm3VtQ/NI9YZIbfwyONzI17kr9KLWEC7hzLfLQnM1ZtEobG1/uAwIDAQAB
o4ICkzCCAo8wHQYDVR0OBBYEFPjLkxjuAjY0s77plSLUE1Hvz8J1MB8GA1UdIwQY
MBaAFD/TDYp+Evx79i4MEh58wibepTubMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUDlNTmluNFNfSHYyTGd3U0huekNKdDZsTzVzLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS80OWRjMDAtOTdlMi00NjI4LWFlMzkt
NDEyMjhlMzlmZjdjLzEvMS1NdVRHTzRDTmpTenZ1bVZJdFFUVWVfUHduVS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvOGEvNDlkYzAwLTk3ZTItNDYyOC1hZTM5LTQxMjI4ZTM5ZmY3
Yy8xL1A5TU5pbjRTX0h2Mkxnd1NIbnpDSnQ2bE81cy5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjCBpwYIKwYBBQUHAQcBAf8EgZcwgZQwgZEEAgABMIGKAwQB
UpiwAwQCUpmIAwQBWdUyAwQCWdU4AwQAWdVoAwQAWdWRMAwDBAJZ1ZQDBAVZ1YAD
BABZ1acDBAJZ1awwDAMEAlnVxAMEBFnVwDAMAwQCWdXkAwQEWdXgAwQDbbAQAwQC
bbDMAwQBuTF+AwQEwmlQAwQB1CZYAwQA1drTAwQA2ZFCAwQD2ZFIMA0GCSqGSIb3
DQEBCwUAA4IBAQB+8xZxgBcOExIRwoiZa/mVnEypcP0QELzkCUqXoI7lBq8ATI3m
1dACwZ95xoeCOj2sv764GrcVX4l6ly1olpWGhnX7XctS0tE/ubrd+f9anxy6i2ve
/pBF+IJeus8Q/Fxp4MU/D7lAllC4QFCbWy/G0LRQBy7D8Zzr6w1sA8aomzwMiYqN
uz8RimDrVNfBrnnIuEU6eAXjXTN3NnkTXifBmtvlSKmqJmm7ztOI3lsuKgtk1ePt
jN/ECynxlBNpxqcZw9YQAIx0shj4UPtzSEvc6RVGDiw/fqLYi5EzXTa9rBauPKEK
K2/K4Fmxe5shBqfAqwZnsdlLTWiDzY4suEso
-----END CERTIFICATE-----
Generated at Thu Mar 13 19:22:26 2025 by rpki-client