Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/8cc506-7e71-4705-a289-b42364895083/1/MvDjmuDJ_P4rBrHNA-MI4-ChF04.roa
File: MvDjmuDJ_P4rBrHNA-MI4-ChF04.roa (raw, json)
Hash identifier: BGbIU7EYNSFX8Ai2aoGFE9hg+UKBGIVtNob2jWpaugE=
Subject key identifier: 32:F0:E3:9A:E0:C9:FC:FE:2B:06:B1:CD:03:E3:08:E3:E0:A1:17:4E
Certificate issuer: /CN=d6e2694652aa298511edafbe18d2b1cdbc792638
Certificate serial: 019169A89AE05A56CD07967B858884998485
Authority key identifier: D6:E2:69:46:52:AA:29:85:11:ED:AF:BE:18:D2:B1:CD:BC:79:26:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1uJpRlKqKYUR7a--GNKxzbx5Jjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/8cc506-7e71-4705-a289-b42364895083/1/MvDjmuDJ_P4rBrHNA-MI4-ChF04.roa
Signing time: Mon 19 Aug 2024 08:02:23 +0000
ROA not before: Mon 19 Aug 2024 08:02:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60423
IP address blocks: 5.145.113.0/24 maxlen: 24
5.145.114.0/24 maxlen: 24
5.145.117.0/24 maxlen: 24
5.145.118.0/24 maxlen: 24
5.145.119.0/24 maxlen: 24
185.24.252.0/24 maxlen: 24
185.24.253.0/24 maxlen: 24
185.24.255.0/24 maxlen: 24
2a04:2f00::/48 maxlen: 48
2a04:2f00:1::/48 maxlen: 48
2a04:2f00:3::/48 maxlen: 48
2a04:2f00:d::/48 maxlen: 48
2a04:2f00:e::/48 maxlen: 48
2a04:2f00:ff01::/48 maxlen: 48
2a04:2f00:ff02::/48 maxlen: 48
2a04:2f00:ff03::/48 maxlen: 48
2a04:2f00:ff06::/48 maxlen: 48
2a04:2f00:ff08::/48 maxlen: 48
2a04:2f00:ff09::/48 maxlen: 48
2a04:2f01:3::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 20 Aug 2024 05:30:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:69:a8:9a:e0:5a:56:cd:07:96:7b:85:88:84:99:84:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6e2694652aa298511edafbe18d2b1cdbc792638
Validity
Not Before: Aug 19 08:02:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=32f0e39ae0c9fcfe2b06b1cd03e308e3e0a1174e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:0a:b7:c4:33:11:51:d0:35:bd:b6:87:44:3b:
5a:c4:0f:6e:77:ba:b9:f5:9b:07:a4:84:7f:c5:da:
9a:e9:44:cb:0c:cf:aa:27:a3:8f:26:10:0f:c9:1e:
1c:66:e1:97:76:d6:7b:49:b1:d5:61:2f:f9:16:b1:
bd:31:42:d2:ec:3b:c1:f6:e4:5b:85:81:65:54:4c:
7f:25:17:78:80:e8:21:ed:a3:d7:d0:c1:af:4d:43:
30:6e:50:95:81:17:f5:6c:ff:74:0f:db:ca:73:a4:
17:9f:19:5d:40:a6:b8:2a:76:65:8b:f9:79:5f:18:
f2:a8:14:4b:9d:02:95:28:0d:c0:00:3b:c0:53:a2:
27:89:9e:38:34:1e:69:70:bc:39:95:93:c4:3a:84:
97:d8:f0:dd:69:e0:72:08:80:c0:6f:04:42:cf:fe:
f7:c5:58:b8:a6:53:91:f9:61:75:c8:78:4d:a3:c8:
df:87:22:2d:a1:ff:6a:e5:e5:23:ce:0b:c7:f3:70:
a9:06:29:83:bb:5b:90:35:21:b8:01:69:44:85:c7:
33:99:0d:c7:c8:5d:4c:34:2b:60:66:8d:dd:2d:41:
68:79:21:b8:90:fa:d3:2a:4b:8d:30:5c:a8:31:7c:
09:d8:90:5f:38:61:5a:fa:9f:e8:01:b1:a2:ed:f8:
59:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:F0:E3:9A:E0:C9:FC:FE:2B:06:B1:CD:03:E3:08:E3:E0:A1:17:4E
X509v3 Authority Key Identifier:
keyid:D6:E2:69:46:52:AA:29:85:11:ED:AF:BE:18:D2:B1:CD:BC:79:26:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1uJpRlKqKYUR7a--GNKxzbx5Jjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/8cc506-7e71-4705-a289-b42364895083/1/MvDjmuDJ_P4rBrHNA-MI4-ChF04.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/8cc506-7e71-4705-a289-b42364895083/1/1uJpRlKqKYUR7a--GNKxzbx5Jjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.145.113.0-5.145.114.255
5.145.117.0-5.145.119.255
185.24.252.0/23
185.24.255.0/24
IPv6:
2a04:2f00::/47
2a04:2f00:3::/48
2a04:2f00:d::-2a04:2f00:e:ffff:ffff:ffff:ffff:ffff
2a04:2f00:ff01::-2a04:2f00:ff03:ffff:ffff:ffff:ffff:ffff
2a04:2f00:ff06::/48
2a04:2f00:ff08::/47
2a04:2f01:3::/48
Signature Algorithm: sha256WithRSAEncryption
09:40:40:54:b2:0a:3f:ba:32:4c:de:01:4d:47:28:ff:df:c0:
09:0a:66:cd:90:c1:54:d7:d3:86:38:ae:e1:b6:2d:fc:8d:41:
c4:98:2b:9a:12:f2:42:d0:16:f3:8b:f9:c4:3a:40:ef:4e:e4:
45:78:21:cb:5e:98:25:e3:e3:cc:fd:81:9f:5a:d2:65:17:a3:
85:48:1e:12:a5:16:1e:5d:af:1f:42:96:31:06:ef:f8:b7:32:
65:19:12:81:0f:5a:6a:3e:d1:48:70:16:ea:d8:2b:26:83:a0:
8d:b2:75:be:80:52:84:59:d5:09:41:c0:2d:06:a9:30:9c:6d:
be:b0:25:1a:25:58:0d:8f:43:5b:e6:77:ef:36:13:74:87:53:
4d:16:e9:45:33:29:f9:c5:6d:fc:9b:d2:7f:b5:4a:52:85:20:
36:2d:20:ff:5e:99:fc:53:90:04:07:8a:01:c5:ca:08:65:5c:
7c:c5:09:a5:21:02:82:f0:d9:a2:8f:65:80:df:46:ad:01:b4:
cc:b1:17:c2:76:d1:ab:d4:0c:44:b7:e2:d8:18:11:99:04:d3:
1f:f6:25:90:32:3a:25:3c:76:15:af:f7:4e:49:6d:39:07:9e:
30:bc:4b:38:87:dd:12:0b:a7:31:2e:5a:a3:f5:63:6f:48:bd:
8d:5c:4d:d9
-----BEGIN CERTIFICATE-----
MIIFfzCCBGegAwIBAgISAZFpqJrgWlbNB5Z7hYiEmYSFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ2ZTI2OTQ2NTJhYTI5ODUxMWVkYWZiZTE4ZDJiMWNkYmM3
OTI2MzgwHhcNMjQwODE5MDgwMjIzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMmYwZTM5YWUwYzlmY2ZlMmIwNmIxY2QwM2UzMDhlM2UwYTExNzRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5Aq3xDMRUdA1vbaHRDtaxA9ud7q5
9ZsHpIR/xdqa6UTLDM+qJ6OPJhAPyR4cZuGXdtZ7SbHVYS/5FrG9MULS7DvB9uRb
hYFlVEx/JRd4gOgh7aPX0MGvTUMwblCVgRf1bP90D9vKc6QXnxldQKa4KnZli/l5
XxjyqBRLnQKVKA3AADvAU6IniZ44NB5pcLw5lZPEOoSX2PDdaeByCIDAbwRCz/73
xVi4plOR+WF1yHhNo8jfhyItof9q5eUjzgvH83CpBimDu1uQNSG4AWlEhcczmQ3H
yF1MNCtgZo3dLUFoeSG4kPrTKkuNMFyoMXwJ2JBfOGFa+p/oAbGi7fhZywIDAQAB
o4ICizCCAocwHQYDVR0OBBYEFDLw45rgyfz+KwaxzQPjCOPgoRdOMB8GA1UdIwQY
MBaAFNbiaUZSqimFEe2vvhjSsc28eSY4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMXVKcFJsS3FLWVVSN2EtLUdOS3h6Yng1SmpnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC84Y2M1MDYtN2U3MS00NzA1LWEyODkt
YjQyMzY0ODk1MDgzLzEvTXZEam11REpfUDRyQnJITkEtTUk0LUNoRjA0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC84Y2M1MDYtN2U3MS00NzA1LWEyODktYjQyMzY0ODk1MDgz
LzEvMXVKcFJsS3FLWVVSN2EtLUdOS3h6Yng1SmpnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGgBggrBgEFBQcBBwEB/wSBkDCBjTAuBAIAATAoMAwDBAAF
kXEDBAAFkXIwDAMEAAWRdQMEAwWRcAMEAbkY/AMEALkY/zBbBAIAAjBVAwcBKgQv
AAAAAwcAKgQvAAADMBIDBwAqBC8AAA0DBwAqBC8AAA4wEgMHACoELwD/AQMHAioE
LwD/AAMHACoELwD/BgMHASoELwD/CAMHACoELwEAAzANBgkqhkiG9w0BAQsFAAOC
AQEACUBAVLIKP7oyTN4BTUco/9/ACQpmzZDBVNfThjiu4bYt/I1BxJgrmhLyQtAW
84v5xDpA707kRXghy16YJePjzP2Bn1rSZRejhUgeEqUWHl2vH0KWMQbv+LcyZRkS
gQ9aaj7RSHAW6tgrJoOgjbJ1voBShFnVCUHALQapMJxtvrAlGiVYDY9DW+Z37zYT
dIdTTRbpRTMp+cVt/JvSf7VKUoUgNi0g/16Z/FOQBAeKAcXKCGVcfMUJpSECgvDZ
oo9lgN9GrQG0zLEXwnbRq9QMRLfi2BgRmQTTH/YlkDI6JTx2Fa/3TkltOQeeMLxL
OIfdEgunMS5ao/Vjb0i9jVxN2Q==
-----END CERTIFICATE-----
Generated at Tue Aug 20 08:01:56 2024 by rpki-client on console-ams.rpki-client.org