Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/M248kNttd_XEJidZMdNJsn2hOUM.roa
File: M248kNttd_XEJidZMdNJsn2hOUM.roa (raw, json)
Hash identifier: aZQ3DOc8MHezu4s8TXB/3BFnu3A6/WW59vgHAggD1pI=
Subject key identifier: 33:6E:3C:90:DB:6D:77:F5:C4:26:27:59:31:D3:49:B2:7D:A1:39:43
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 018CF72316420B80A2D7D44B9F227B46BA7A
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/M248kNttd_XEJidZMdNJsn2hOUM.roa
Signing time: Thu 11 Jan 2024 06:08:40 +0000
ROA not before: Thu 11 Jan 2024 06:08:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 91.186.214.0/23 maxlen: 24
178.253.12.0/23 maxlen: 24
83.147.216.0/23 maxlen: 24
83.147.217.0/24 maxlen: 24
178.253.31.0/24 maxlen: 24
83.147.232.0/22 maxlen: 24
178.253.52.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 Feb 2024 04:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f7:23:16:42:0b:80:a2:d7:d4:4b:9f:22:7b:46:ba:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jan 11 06:08:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=336e3c90db6d77f5c426275931d349b27da13943
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:94:c5:fe:7c:fc:6b:6b:aa:65:a6:ee:66:69:
fc:7e:57:ff:7d:b2:73:12:14:8b:99:8c:88:5c:3d:
04:55:4d:2b:a3:98:30:af:47:51:ea:90:2b:df:46:
1d:f5:c0:ef:45:29:5b:30:86:75:b2:e1:1e:73:a7:
b6:05:8e:7c:07:0f:c6:c9:bc:b1:87:b8:29:b9:01:
c3:26:5b:4b:26:f3:f1:5e:99:7e:97:41:59:83:db:
e0:6c:38:0d:1f:2a:db:ab:d1:00:8a:9d:c3:c2:2c:
08:e5:0e:13:d0:cc:18:5c:7b:f4:d2:6d:ee:18:7a:
e1:d9:74:d4:33:e6:22:70:45:d2:d3:92:26:f1:48:
b1:c2:64:20:7b:41:82:03:fb:63:89:62:aa:17:f8:
29:16:10:36:f3:28:9d:76:fa:9e:3f:27:b8:02:21:
11:ed:a2:b2:0c:d8:fd:d9:f2:92:d6:db:b0:3c:ac:
a4:22:12:7e:9a:6f:54:9e:e5:bc:c6:c0:5c:e7:22:
5d:45:05:1e:bd:d3:aa:94:b2:1c:e7:57:76:39:b9:
4c:3f:1d:38:d4:d3:8a:ab:05:67:42:e8:24:a2:00:
24:57:4e:a9:8f:9d:d2:fd:7c:e8:36:9f:52:81:ca:
c5:8c:e5:a1:49:6b:7b:14:28:6d:40:77:9c:2b:a0:
52:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:6E:3C:90:DB:6D:77:F5:C4:26:27:59:31:D3:49:B2:7D:A1:39:43
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/M248kNttd_XEJidZMdNJsn2hOUM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.216.0/23
83.147.232.0/22
91.186.214.0/23
178.253.12.0/23
178.253.31.0/24
178.253.52.0/23
Signature Algorithm: sha256WithRSAEncryption
43:4d:07:3e:75:2a:cd:92:2d:e6:6a:c0:6d:0e:50:49:2b:64:
b9:3a:a9:69:59:7e:b6:9f:43:a9:1c:9f:79:39:78:d5:46:5c:
a6:40:df:64:d1:9d:de:78:40:90:d9:56:98:2f:e2:9e:7e:04:
89:dc:20:83:db:dc:8d:e8:7c:8c:f9:51:56:43:57:fc:99:a8:
d8:52:34:fb:6c:da:47:fb:02:03:96:5e:2e:51:7d:89:ef:f1:
16:e8:c4:4b:67:0a:34:9f:da:17:51:08:a8:05:60:c8:d0:4a:
04:90:8e:8f:15:89:bc:13:01:98:da:dc:6e:15:3c:cd:96:8d:
de:ef:c4:06:b1:25:1d:d9:6b:ee:59:fd:c5:54:d0:a9:5c:92:
ab:a3:cd:88:d3:f2:c7:c1:1c:95:42:7d:8c:db:a7:f3:a3:be:
cf:fc:c0:ba:fe:83:97:5b:59:70:03:db:ff:de:99:b8:32:b9:
a3:b7:5d:ad:52:dc:ff:87:78:92:36:80:af:d6:01:9e:0c:9c:
42:ce:40:4c:80:1d:b3:9c:c6:1b:85:fe:a1:0a:d4:2f:49:81:
00:41:67:fc:f1:7c:aa:dc:57:5c:84:2d:8a:8c:46:46:0a:d7:
44:a1:b1:64:48:28:52:4c:40:6f:25:5d:f4:e7:06:c5:c5:6d:
13:ae:82:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:09 2024 by rpki-client on console-fra.rpki-client.org