Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/McBT57xDD4ZaGzzTKRxzjc2fNKE.roa
File: McBT57xDD4ZaGzzTKRxzjc2fNKE.roa (raw, json)
Hash identifier: dEi+kQiT5+nfKDAqkP+Fhu6c+5J1nnlRT3JQHu4cUIs=
Subject key identifier: 31:C0:53:E7:BC:43:0F:86:5A:1B:3C:D3:29:1C:73:8D:CD:9F:34:A1
Certificate issuer: /CN=940a10a256728f11a4bbaadc3204b7f0a35a5000
Certificate serial: 0189FEB558E1F2C19C692BC253F9BE3D7511
Authority key identifier: 94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/McBT57xDD4ZaGzzTKRxzjc2fNKE.roa
Signing time: Wed 16 Aug 2023 14:17:24 +0000
ROA not before: Wed 16 Aug 2023 14:17:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197216
IP address blocks: 185.55.230.0/24 maxlen: 24
185.55.229.0/24 maxlen: 24
185.55.228.0/24 maxlen: 24
185.239.124.0/24 maxlen: 24
185.55.231.0/24 maxlen: 24
185.239.126.0/24 maxlen: 24
185.199.38.0/24 maxlen: 24
185.199.37.0/24 maxlen: 24
185.199.36.0/22 maxlen: 22
195.189.80.0/22 maxlen: 22
79.98.105.0/24 maxlen: 24
185.228.24.0/22 maxlen: 22
79.98.104.0/24 maxlen: 24
79.98.108.0/24 maxlen: 24
79.98.107.0/24 maxlen: 24
79.98.106.0/24 maxlen: 24
79.98.111.0/24 maxlen: 24
79.98.110.0/24 maxlen: 24
79.98.109.0/24 maxlen: 24
185.52.205.0/24 maxlen: 24
185.52.204.0/22 maxlen: 24
185.52.204.0/24 maxlen: 24
185.52.206.0/24 maxlen: 24
2a02:80e0::/30 maxlen: 30
2a01:b6a0::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 04 Sep 2023 10:03:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:fe:b5:58:e1:f2:c1:9c:69:2b:c2:53:f9:be:3d:75:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=940a10a256728f11a4bbaadc3204b7f0a35a5000
Validity
Not Before: Aug 16 14:17:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=31c053e7bc430f865a1b3cd3291c738dcd9f34a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:3a:b9:63:56:73:f5:9e:99:18:59:4b:0b:07:
25:a9:bf:03:f1:1a:9c:0c:91:17:6f:bf:1a:87:a6:
b5:1c:01:ac:e7:fd:4e:2c:de:0e:97:58:08:a6:5d:
d3:39:28:b9:4f:43:6b:cc:4c:03:5b:db:12:59:92:
43:60:41:8c:3f:44:aa:3f:fd:95:08:d7:63:12:f1:
c6:f2:5d:88:6e:a9:9f:9f:76:5f:fe:35:4a:5f:c9:
51:f2:de:c6:e4:36:23:71:41:65:79:5f:17:8a:ea:
68:af:d4:6c:c0:c3:01:cf:0d:24:44:72:12:04:bc:
41:40:82:7c:16:4c:80:82:b0:23:13:a1:cb:b8:05:
ca:16:d5:9e:07:75:41:24:9b:26:a8:d9:93:6e:c7:
7c:84:5e:2a:87:89:dd:be:ba:02:a3:78:07:76:34:
bc:68:1e:ef:f9:bd:29:87:bd:1d:e8:f1:d8:a9:3c:
34:9c:29:66:5d:f3:f4:fa:43:28:f0:ab:2f:6b:f8:
31:c3:b0:0d:9f:42:6b:fa:cf:3d:fe:6f:a0:07:d5:
60:9c:6c:2c:c4:f2:cb:72:e9:d4:95:0f:3a:f8:65:
5b:c5:d1:5c:a3:5b:72:25:79:e4:79:a9:d0:ff:65:
2f:24:b5:d0:05:32:5c:fe:db:e2:8d:39:2c:d7:9c:
b5:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:C0:53:E7:BC:43:0F:86:5A:1B:3C:D3:29:1C:73:8D:CD:9F:34:A1
X509v3 Authority Key Identifier:
keyid:94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/McBT57xDD4ZaGzzTKRxzjc2fNKE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.98.104.0/21
185.52.204.0/22
185.55.228.0/22
185.199.36.0/22
185.228.24.0/22
185.239.124.0/24
185.239.126.0/24
195.189.80.0/22
IPv6:
2a01:b6a0::/32
2a02:80e0::/30
Signature Algorithm: sha256WithRSAEncryption
82:9c:01:2a:9e:4e:c3:a8:e2:41:03:67:59:47:8b:37:df:4a:
5f:43:a5:f7:48:8f:8c:71:4f:0f:83:0d:ce:07:32:68:29:c5:
ea:6c:8a:2b:d6:ca:cc:1e:b5:99:34:88:15:77:bf:4e:d1:d7:
57:6f:f8:9b:18:79:cd:be:f1:30:7d:d8:6c:be:e2:6a:9b:d8:
00:61:cc:02:f5:db:d8:74:ba:ac:f1:05:9f:0f:3e:a1:78:b9:
58:50:8c:0a:1a:b2:90:0f:7b:68:ca:88:e0:44:ea:68:49:76:
a4:6b:38:e3:4c:cc:bb:be:30:77:08:df:9f:e2:a8:00:79:3d:
a1:83:12:89:0e:b8:02:05:31:0b:54:21:96:be:c8:9c:2f:7e:
bd:0c:22:ad:9d:c1:1a:5e:83:09:e1:b9:ba:93:8f:53:0e:86:
c6:59:6c:60:d1:b4:37:5b:29:db:9d:a0:81:0a:92:e0:b8:f2:
90:e2:bb:6f:73:9d:fe:0a:e9:62:1f:bc:53:57:ac:ef:bd:20:
a2:5e:f0:0e:2a:22:d7:8a:d4:dc:7a:47:5c:6c:21:aa:9d:d2:
03:f0:ba:31:7b:66:31:cd:8a:c3:2a:82:92:c7:68:09:38:26:
c7:26:b2:f1:59:dc:c1:90:95:ae:83:eb:a2:6f:10:08:fd:d1:
ae:03:46:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:24 2024 by rpki-client on console-ams.rpki-client.org