Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/MJlfoD41I18v_lJ2DJ3kxD0Qt4c.roa
File: MJlfoD41I18v_lJ2DJ3kxD0Qt4c.roa (raw, json)
Hash identifier: Pe7EKeKj26vLT6Soi8rjxbQp542ttwju2l8nYoI6Sfk=
Subject key identifier: 30:99:5F:A0:3E:35:23:5F:2F:FE:52:76:0C:9D:E4:C4:3D:10:B7:87
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 01862B52751B374D14993456C289C06FBC9E
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/MJlfoD41I18v_lJ2DJ3kxD0Qt4c.roa
Signing time: Tue 07 Feb 2023 10:01:09 +0000
ROA not before: Tue 07 Feb 2023 10:01:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206092
IP address blocks: 45.86.202.0/24 maxlen: 24
45.86.200.0/24 maxlen: 24
136.144.17.0/24 maxlen: 24
193.37.33.0/24 maxlen: 24
193.37.32.0/24 maxlen: 24
136.144.19.0/24 maxlen: 24
194.5.48.0/24 maxlen: 24
194.5.49.0/24 maxlen: 24
136.144.33.0/24 maxlen: 24
194.5.52.0/24 maxlen: 24
194.5.53.0/24 maxlen: 24
136.144.42.0/24 maxlen: 24
194.34.173.0/24 maxlen: 24
45.84.216.0/24 maxlen: 24
193.36.224.0/24 maxlen: 24
193.36.225.0/24 maxlen: 24
45.95.243.0/24 maxlen: 24
193.176.211.0/24 maxlen: 24
45.154.138.0/24 maxlen: 24
45.146.54.0/24 maxlen: 24
2a0f:e387::/32 maxlen: 32
2a0f:e386::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 07 Feb 2023 12:41:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:2b:52:75:1b:37:4d:14:99:34:56:c2:89:c0:6f:bc:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Feb 7 10:01:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=30995fa03e35235f2ffe52760c9de4c43d10b787
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:7e:61:4a:42:42:e7:6b:2d:94:e9:39:28:60:
10:cf:fc:b7:d0:a7:ab:df:83:74:6a:63:de:8c:dc:
c1:1e:64:f8:45:15:f5:4a:44:d6:6b:25:79:ec:03:
26:aa:6e:56:2d:63:05:b1:98:f2:31:ca:37:00:0d:
e4:13:ea:9b:02:06:06:9c:d8:be:f3:ec:bb:77:5d:
80:1f:10:50:ec:27:f5:9e:9c:5b:61:fc:07:bf:c7:
f6:d0:bf:59:c0:03:da:13:88:75:00:f5:15:f7:58:
2c:68:78:44:c5:db:4a:9a:71:ee:04:65:c3:72:00:
41:e2:58:99:59:fb:90:61:a0:e5:48:6c:d3:4d:af:
96:ad:a9:8c:27:74:fa:5b:91:22:c3:14:20:de:eb:
bf:b5:40:2c:5d:de:cb:2a:77:57:6e:18:01:b4:fc:
ed:87:5c:18:98:1e:fb:85:e3:c4:c6:2f:4f:ef:e4:
d4:cb:d1:3e:73:0a:89:14:4d:c1:05:47:b6:98:22:
cd:27:b0:a4:aa:60:a2:c9:3d:54:e0:92:72:36:2c:
38:83:52:03:76:fb:f2:06:5f:e0:ea:74:75:89:7d:
8b:b4:76:2d:54:2e:5c:29:77:2b:8a:44:c3:00:61:
ec:44:f1:f1:cb:c7:04:7b:53:53:3b:e7:bc:c9:a2:
70:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:99:5F:A0:3E:35:23:5F:2F:FE:52:76:0C:9D:E4:C4:3D:10:B7:87
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/MJlfoD41I18v_lJ2DJ3kxD0Qt4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.216.0/24
45.86.200.0/24
45.86.202.0/24
45.95.243.0/24
45.146.54.0/24
45.154.138.0/24
136.144.17.0/24
136.144.19.0/24
136.144.33.0/24
136.144.42.0/24
193.36.224.0/23
193.37.32.0/23
193.176.211.0/24
194.5.48.0/23
194.5.52.0/23
194.34.173.0/24
IPv6:
2a0f:e386::/31
Signature Algorithm: sha256WithRSAEncryption
ac:69:34:55:60:79:3a:e1:30:5a:df:56:31:1b:b9:9c:66:ae:
f0:60:e4:09:16:f1:90:11:5f:c0:b4:de:1e:99:a0:63:22:e1:
fe:7f:86:04:f1:d0:7c:7d:bc:3c:fe:12:63:97:d9:9e:1c:07:
64:13:69:8e:d6:5f:fb:f3:60:43:60:61:32:32:7d:7f:50:d4:
1a:d1:09:af:fa:45:d8:98:21:65:79:c1:eb:53:56:7b:32:d9:
cf:5f:2d:03:d3:53:ff:60:80:b7:d5:d1:28:00:d6:b4:54:3e:
33:ec:6f:40:ec:5d:d7:66:b0:de:a8:b3:d9:3a:f7:00:f3:dc:
63:67:d0:cd:67:b7:03:ab:12:9b:57:cb:fd:c8:3d:8b:25:71:
8f:bb:65:21:3d:55:17:4b:89:c9:50:b1:78:d0:dc:4a:a4:89:
b4:00:7b:30:66:6d:0b:88:47:3c:44:c1:33:4a:9a:33:3f:2d:
77:c7:67:18:53:b5:b1:02:bc:68:31:90:bc:16:20:0a:0d:50:
6b:58:e5:29:de:2b:24:d9:d2:1a:65:d5:54:df:5f:2c:a8:2c:
9f:43:40:52:30:37:b3:12:14:9d:17:f5:89:e9:7a:8f:75:a9:
70:15:9d:6c:d1:08:b4:aa:59:55:f5:de:73:b4:34:94:97:2e:
b4:88:87:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:51 2024 by rpki-client on console-ams.rpki-client.org