Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/MFpJCk0rXJgPsQTL2I6p6W_Xi5M.roa
File: MFpJCk0rXJgPsQTL2I6p6W_Xi5M.roa (raw, json)
Hash identifier: 0rsm+VGJb23hfEEtwOSlZaED2BnOv0Gm799keXx6I84=
Subject key identifier: 30:5A:49:0A:4D:2B:5C:98:0F:B1:04:CB:D8:8E:A9:E9:6F:D7:8B:93
Certificate issuer: /CN=0e75fb4f52a829d136e29a9a025c636d19ae328e
Certificate serial: 01872378ECB6FC11CF4BE11690459DA5AFE1
Authority key identifier: 0E:75:FB:4F:52:A8:29:D1:36:E2:9A:9A:02:5C:63:6D:19:AE:32:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DnX7T1KoKdE24pqaAlxjbRmuMo4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/MFpJCk0rXJgPsQTL2I6p6W_Xi5M.roa
Signing time: Mon 27 Mar 2023 14:29:00 +0000
ROA not before: Mon 27 Mar 2023 14:29:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 33852
IP address blocks: 83.139.39.0/24 maxlen: 24
83.139.0.0/24 maxlen: 24
83.139.1.0/24 maxlen: 24
83.139.2.0/24 maxlen: 24
83.139.11.0/24 maxlen: 24
83.139.9.0/24 maxlen: 24
83.139.10.0/24 maxlen: 24
83.139.8.0/24 maxlen: 24
83.139.8.0/21 maxlen: 21
83.139.5.0/24 maxlen: 24
83.139.6.0/23 maxlen: 23
83.139.14.0/24 maxlen: 24
83.139.15.0/24 maxlen: 24
83.139.12.0/24 maxlen: 24
83.139.13.0/24 maxlen: 24
83.139.17.0/24 maxlen: 24
83.139.16.0/24 maxlen: 24
83.139.18.0/24 maxlen: 24
83.139.23.0/24 maxlen: 24
83.139.32.0/21 maxlen: 21
83.139.35.0/24 maxlen: 24
83.139.33.0/24 maxlen: 24
2a01:4000::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 03 Apr 2023 06:46:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:23:78:ec:b6:fc:11:cf:4b:e1:16:90:45:9d:a5:af:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e75fb4f52a829d136e29a9a025c636d19ae328e
Validity
Not Before: Mar 27 14:29:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=305a490a4d2b5c980fb104cbd88ea9e96fd78b93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:92:56:8c:ce:11:2a:a7:21:34:a5:a9:5e:12:
5c:c5:d5:a0:b0:bb:0b:85:c2:c4:28:66:69:5d:43:
64:b2:7f:7f:27:12:df:06:6c:d7:d1:7b:b9:e0:af:
92:64:11:e6:66:f7:a2:24:49:6c:d3:ea:76:d2:c4:
5a:62:ec:b6:6f:4f:c8:8e:c6:0c:dd:db:51:78:76:
e5:75:7a:cf:a1:fa:13:d6:8f:aa:6a:4e:f0:18:12:
d7:31:80:48:54:70:4e:fa:e2:8c:9d:12:c4:df:8c:
95:45:ca:c9:61:c8:48:fe:cc:0a:29:78:ea:a7:5d:
f8:91:3d:d8:b0:08:b7:b9:7c:16:e5:f4:ab:c2:9c:
d0:cf:1d:6e:d7:d0:d6:54:7b:11:09:a8:27:7a:51:
e6:d5:8f:23:5f:7e:73:93:1c:12:50:e1:51:e2:70:
4c:a4:20:cb:08:da:11:52:d6:69:c8:04:1d:72:83:
6e:54:40:40:17:0e:7d:4d:85:91:6e:53:e2:19:47:
41:05:3d:8b:27:6d:60:86:48:e4:11:f1:d0:0c:c8:
ed:8d:39:59:56:91:84:9b:4d:55:2b:47:e4:33:da:
ab:df:df:4b:81:70:87:24:ce:d4:8e:fe:0b:13:77:
2e:06:3e:86:55:98:db:d6:a5:bf:e5:67:7c:72:de:
a7:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:5A:49:0A:4D:2B:5C:98:0F:B1:04:CB:D8:8E:A9:E9:6F:D7:8B:93
X509v3 Authority Key Identifier:
keyid:0E:75:FB:4F:52:A8:29:D1:36:E2:9A:9A:02:5C:63:6D:19:AE:32:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DnX7T1KoKdE24pqaAlxjbRmuMo4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/MFpJCk0rXJgPsQTL2I6p6W_Xi5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/DnX7T1KoKdE24pqaAlxjbRmuMo4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.139.0.0-83.139.2.255
83.139.5.0-83.139.18.255
83.139.23.0/24
83.139.32.0/21
IPv6:
2a01:4000::/32
Signature Algorithm: sha256WithRSAEncryption
11:3e:6b:fe:a1:cf:71:1c:75:65:04:27:72:7e:64:e4:66:df:
38:1d:47:65:61:dd:93:db:1a:8e:e1:c0:8c:24:8c:9d:86:f3:
1c:9a:66:a2:07:1c:91:8d:d6:d2:18:14:2a:27:30:20:d2:f4:
32:15:1f:62:e3:c2:61:ad:11:74:35:73:cc:13:f1:f8:dd:83:
c7:02:a0:05:f8:4c:f2:89:27:88:a1:50:60:8d:c8:7e:1c:4b:
7f:24:25:c0:f7:a7:29:7b:2a:95:91:30:51:1a:ba:b9:72:35:
27:d0:73:19:9d:4b:40:fa:92:e8:70:28:71:a0:b0:7d:a6:1a:
03:bf:81:7b:60:e2:1c:41:60:ab:e9:1d:59:90:6c:4e:a3:c9:
6d:22:71:61:55:3c:a7:4b:f6:90:40:eb:51:26:b4:df:3d:14:
a3:88:eb:39:1d:37:a7:de:ac:7c:bc:5a:1b:ea:f6:20:85:2b:
46:45:61:0f:22:71:f7:65:2e:28:07:3d:56:8f:0b:42:b2:f5:
e4:83:9d:29:16:6f:7a:33:f3:c4:d0:dd:ea:a6:ad:69:0e:ce:
c7:b6:f3:4b:44:3a:61:88:a0:4a:45:8d:3b:fe:b3:32:c5:ff:
94:61:ce:dc:82:20:08:cb:83:b8:a2:36:07:1b:81:4c:0f:31:
5b:c9:87:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:32 2024 by rpki-client on console-fra.rpki-client.org