Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/mMcIjzS9XkZTup1g2LXIB8DyPiM.roa
File: mMcIjzS9XkZTup1g2LXIB8DyPiM.roa (raw, json)
Hash identifier: i9yYHf2QEA67QCrVY6dAgfScFdvJ/nfzDlKaYudfwac=
Subject key identifier: 98:C7:08:8F:34:BD:5E:46:53:BA:9D:60:D8:B5:C8:07:C0:F2:3E:23
Certificate issuer: /CN=89056fa9625b6c87404267c6dc219924ac160045
Certificate serial: 0187E0B57C632A16BCBE11A2C1D7306CE3F6
Authority key identifier: 89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/mMcIjzS9XkZTup1g2LXIB8DyPiM.roa
Signing time: Wed 03 May 2023 08:23:22 +0000
ROA not before: Wed 03 May 2023 08:23:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 136258
IP address blocks: 185.213.23.0/24 maxlen: 24
109.104.153.0/24 maxlen: 24
147.78.0.0/24 maxlen: 24
147.78.1.0/24 maxlen: 24
185.126.239.0/24 maxlen: 24
2a11:840:12::/48 maxlen: 48
2a11:840:8::/48 maxlen: 48
2a11:840:18::/48 maxlen: 48
2a11:840:13::/48 maxlen: 48
2a11:840:11::/48 maxlen: 48
2a11:840:41::/48 maxlen: 48
2a11:840:17::/48 maxlen: 48
2a11:840:47::/48 maxlen: 48
2a11:840:7::/48 maxlen: 48
2a11:840:40::/48 maxlen: 48
2a11:840:10::/48 maxlen: 48
2a11:840:19::/48 maxlen: 48
2a11:840:14::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 04 May 2023 13:28:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e0:b5:7c:63:2a:16:bc:be:11:a2:c1:d7:30:6c:e3:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89056fa9625b6c87404267c6dc219924ac160045
Validity
Not Before: May 3 08:23:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=98c7088f34bd5e4653ba9d60d8b5c807c0f23e23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:67:88:c4:37:62:63:e8:23:f7:fe:a3:f8:f8:
27:48:46:19:0a:fb:a9:45:26:e0:5c:1f:6a:67:f1:
ed:d0:7b:c6:e8:96:aa:4d:af:cd:3c:57:7a:65:93:
e4:ef:c6:e9:c0:90:86:d9:2f:80:76:ef:32:71:b3:
a3:7b:be:c7:9a:ce:24:47:e2:90:75:ef:83:80:67:
53:82:08:18:0e:53:99:d9:4a:24:17:64:33:03:09:
97:b7:0f:d1:57:3b:60:97:98:08:82:41:47:f9:58:
cb:a7:d8:aa:83:ef:e6:d6:73:60:e3:d6:05:ec:28:
3e:71:8e:b9:68:c6:2c:0d:54:41:23:a0:9f:46:85:
dc:3b:54:2d:d8:af:d6:d7:36:2d:65:22:fe:11:f8:
37:3e:ed:36:da:da:5b:99:61:6f:b5:ed:2f:18:45:
00:43:9c:3e:0b:fd:4c:b6:e6:c0:fe:39:58:ba:16:
22:37:64:1a:08:ee:5c:25:c4:f6:95:b3:c1:83:55:
8e:2e:2d:a4:3e:2d:a7:a3:6a:e8:a3:94:75:3a:9e:
88:10:52:86:61:b5:1c:86:b0:b1:d3:f3:90:c9:88:
3e:73:fc:5c:5a:13:85:0f:b3:9f:f1:ea:e1:a1:a4:
e7:e5:46:af:51:5f:64:4b:2e:f6:12:91:5c:af:78:
a8:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:C7:08:8F:34:BD:5E:46:53:BA:9D:60:D8:B5:C8:07:C0:F2:3E:23
X509v3 Authority Key Identifier:
keyid:89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/mMcIjzS9XkZTup1g2LXIB8DyPiM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/iQVvqWJbbIdAQmfG3CGZJKwWAEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.104.153.0/24
147.78.0.0/23
185.126.239.0/24
185.213.23.0/24
IPv6:
2a11:840:7::-2a11:840:8:ffff:ffff:ffff:ffff:ffff
2a11:840:10::-2a11:840:14:ffff:ffff:ffff:ffff:ffff
2a11:840:17::-2a11:840:19:ffff:ffff:ffff:ffff:ffff
2a11:840:40::/47
2a11:840:47::/48
Signature Algorithm: sha256WithRSAEncryption
01:81:af:91:3e:f6:d0:4f:9b:3e:19:c6:a0:5b:53:98:35:58:
bc:b0:c0:2d:44:e4:5e:b4:22:7b:ef:20:9c:0b:8d:b2:9c:51:
31:d0:27:54:21:a7:67:c6:d3:fd:ff:9e:af:55:e0:0f:c5:36:
24:cf:9e:bd:2c:60:fc:62:09:61:87:82:e3:b2:8a:1f:f1:02:
e0:45:32:4e:c2:5c:24:58:6e:88:46:e3:dc:c2:ec:ce:69:da:
13:bc:5b:c7:63:48:5f:4a:86:ea:9a:93:c9:f4:b8:32:b7:73:
e1:41:7e:ad:a9:eb:b7:2f:7a:db:ea:7c:0f:56:3c:aa:c5:e3:
a5:3c:da:c6:1b:f1:28:3c:b9:f5:0e:2b:13:3b:40:1a:f1:0c:
b2:01:7a:94:db:e5:9a:a7:9e:7f:e1:18:6b:2f:5c:20:73:7f:
29:b2:f7:2f:8c:d2:5d:e8:6a:8c:e4:43:5d:7b:24:74:b0:40:
43:97:ef:ba:30:2a:ab:cf:a2:77:0b:c5:63:36:56:16:8c:d6:
b6:43:e0:5b:8e:19:65:c3:2f:5e:25:67:bd:82:56:04:12:58:
64:99:cb:61:7f:f3:3e:25:95:8f:55:a8:b6:a6:cb:c3:fd:55:
33:bd:38:3e:a4:92:7f:06:5e:c9:89:d9:2e:c6:ac:03:d2:bc:
a7:9c:f4:b5
-----BEGIN CERTIFICATE-----
MIIFZjCCBE6gAwIBAgISAYfgtXxjKha8vhGiwdcwbOP2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5MDU2ZmE5NjI1YjZjODc0MDQyNjdjNmRjMjE5OTI0YWMx
NjAwNDUwHhcNMjMwNTAzMDgyMzIyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5OGM3MDg4ZjM0YmQ1ZTQ2NTNiYTlkNjBkOGI1YzgwN2MwZjIzZTIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuWeIxDdiY+gj9/6j+PgnSEYZCvup
RSbgXB9qZ/Ht0HvG6JaqTa/NPFd6ZZPk78bpwJCG2S+Adu8ycbOje77Hms4kR+KQ
de+DgGdTgggYDlOZ2UokF2QzAwmXtw/RVztgl5gIgkFH+VjLp9iqg+/m1nNg49YF
7Cg+cY65aMYsDVRBI6CfRoXcO1Qt2K/W1zYtZSL+Efg3Pu022tpbmWFvte0vGEUA
Q5w+C/1MtubA/jlYuhYiN2QaCO5cJcT2lbPBg1WOLi2kPi2no2roo5R1Op6IEFKG
YbUchrCx0/OQyYg+c/xcWhOFD7Of8erhoaTn5UavUV9kSy72EpFcr3iohQIDAQAB
o4ICcjCCAm4wHQYDVR0OBBYEFJjHCI80vV5GU7qdYNi1yAfA8j4jMB8GA1UdIwQY
MBaAFIkFb6liW2yHQEJnxtwhmSSsFgBFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVFWdnFXSmJiSWRBUW1mRzNDR1pKS3dXQUVVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi85OWFlMmYtMzljYy00M2YzLTk0MWQt
NTE5MjAzNzMzNTNjLzEvbU1jSWp6UzlYa1pUdXAxZzJMWElCOER5UGlNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi85OWFlMmYtMzljYy00M2YzLTk0MWQtNTE5MjAzNzMzNTNj
LzEvaVFWdnFXSmJiSWRBUW1mRzNDR1pKS3dXQUVVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGHBggrBgEFBQcBBwEB/wR4MHYwHgQCAAEwGAMEAG1omQME
AZNOAAMEALl+7wMEALnVFzBUBAIAAjBOMBIDBwAqEQhAAAcDBwAqEQhAAAgwEgMH
BCoRCEAAEAMHACoRCEAAFDASAwcAKhEIQAAXAwcBKhEIQAAYAwcBKhEIQABAAwcA
KhEIQABHMA0GCSqGSIb3DQEBCwUAA4IBAQABga+RPvbQT5s+GcagW1OYNVi8sMAt
RORetCJ77yCcC42ynFEx0CdUIadnxtP9/56vVeAPxTYkz569LGD8Yglhh4Ljsoof
8QLgRTJOwlwkWG6IRuPcwuzOadoTvFvHY0hfSobqmpPJ9Lgyt3PhQX6tqeu3L3rb
6nwPVjyqxeOlPNrGG/EoPLn1DisTO0Aa8QyyAXqU2+Wap55/4RhrL1wgc38psvcv
jNJd6GqM5ENdeyR0sEBDl++6MCqrz6J3C8VjNlYWjNa2Q+Bbjhllwy9eJWe9glYE
Elhkmcthf/M+JZWPVai2psvD/VUzvTg+pJJ/Bl7JidkuxqwD0rynnPS1
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:20 2024 by rpki-client on console-fra.rpki-client.org