Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/mp4016q5-g0c--TNNsUS4DpPe8Y.roa
File: mp4016q5-g0c--TNNsUS4DpPe8Y.roa (raw, json)
Hash identifier: r7sMc9zwEAhIKkOnr1pg2Q2W/fohAEyrMGF3/f2OI2w=
Subject key identifier: 9A:9E:34:D7:AA:B9:FA:0D:1C:FB:E4:CD:36:C5:12:E0:3A:4F:7B:C6
Certificate issuer: /CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Certificate serial: 018CC9BCBB88B40B1767C9B9E6BDF069F60C
Authority key identifier: 30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/mp4016q5-g0c--TNNsUS4DpPe8Y.roa
Signing time: Tue 02 Jan 2024 10:33:58 +0000
ROA not before: Tue 02 Jan 2024 10:33:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50816
IP address blocks: 195.76.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 23:48:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:bb:88:b4:0b:17:67:c9:b9:e6:bd:f0:69:f6:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Validity
Not Before: Jan 2 10:33:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9a9e34d7aab9fa0d1cfbe4cd36c512e03a4f7bc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:5b:30:60:ec:f0:05:1c:c7:67:e7:cb:b9:1b:
30:52:2c:cb:a1:b8:59:9f:64:8d:a8:11:f3:59:6c:
ee:07:92:2e:93:04:19:ff:cd:22:94:ac:9c:45:f2:
ec:25:05:bd:a0:9e:cd:b9:37:11:9c:03:3a:a9:e5:
71:a6:42:99:e4:3f:97:38:84:80:06:8b:4b:13:97:
21:73:53:bf:b1:49:ec:5a:00:a5:8d:92:be:59:a5:
78:58:63:85:5e:c6:d7:32:34:a2:b1:24:17:04:5f:
0e:02:ac:01:45:22:60:a4:3b:22:97:f4:bb:a4:6b:
2b:dc:2b:0c:e3:3b:03:f8:e2:9c:0c:3b:1c:6e:75:
a7:85:40:6e:ae:58:6b:ec:23:f8:eb:ae:6b:7e:18:
be:cd:e6:db:1b:ca:60:75:ee:2d:42:18:cd:a6:83:
99:49:a7:29:98:0b:58:f0:d3:ca:0a:e0:12:4f:88:
27:71:5b:9c:93:13:18:2c:dc:0e:14:be:c9:bb:a6:
70:be:fc:a0:5c:b6:3e:20:2b:14:03:3c:3b:45:28:
64:09:c4:28:c0:8c:0b:63:18:87:41:b1:02:23:8e:
62:34:de:c0:f0:36:65:ca:89:49:47:2f:b5:ca:92:
d4:cd:e4:d8:e2:be:7c:c6:83:2a:03:b0:ba:a3:fa:
d5:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:9E:34:D7:AA:B9:FA:0D:1C:FB:E4:CD:36:C5:12:E0:3A:4F:7B:C6
X509v3 Authority Key Identifier:
keyid:30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/mp4016q5-g0c--TNNsUS4DpPe8Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.76.31.0/24
Signature Algorithm: sha256WithRSAEncryption
59:86:55:70:82:1f:3e:e6:fd:0c:17:86:ac:29:cf:fe:88:51:
59:4f:2c:67:13:f0:6e:02:f6:1e:bd:31:38:c7:80:84:4d:2d:
c9:fc:b6:88:f4:41:e0:0a:63:ab:5e:d2:b8:1e:a5:3a:98:05:
27:5d:a6:eb:41:57:0a:8b:06:62:89:ef:e4:fd:8a:70:df:46:
e4:aa:c1:98:52:a7:88:0c:97:b2:ff:b5:f5:1d:49:41:51:38:
cb:de:5a:86:45:9a:18:56:d9:13:9e:0a:04:7e:bf:59:28:af:
31:20:92:a5:12:b7:e0:48:8c:4d:c0:c7:72:b6:6f:95:c1:8b:
13:f4:4c:04:bc:9b:90:6e:59:1e:ad:89:4c:1b:ca:39:72:be:
5f:b7:d3:dc:0e:79:08:58:5f:06:2d:7d:bf:ab:c9:e3:7d:e6:
83:a1:ca:f1:07:8b:5a:3b:bd:37:bd:84:f8:9c:0c:30:c2:01:
28:da:49:88:81:31:be:65:b5:2b:3f:52:f0:05:72:cb:ec:46:
6e:06:bb:77:a0:80:45:a2:e5:1e:33:47:a8:d1:6f:70:b9:c6:
60:31:7a:5c:26:61:d3:6a:56:68:41:aa:97:a6:0b:02:f2:11:
29:6a:3d:f3:9c:0d:b8:5a:d9:38:36:9c:d1:8c:ad:9a:a7:f4:
5b:70:17:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:47:34 2025 by rpki-client