Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/0Mag9umRq9Od51zjk6n0k89F_pY.roa
File: 0Mag9umRq9Od51zjk6n0k89F_pY.roa (raw, json)
Hash identifier: 0bejZLOgfUmhFz5rZWutat3P3NTod+QVBql4AH/Kpgw=
Subject key identifier: D0:C6:A0:F6:E9:91:AB:D3:9D:E7:5C:E3:93:A9:F4:93:CF:45:FE:96
Certificate issuer: /CN=ad9681f144db1430ac315c8306e1c14730c5fec2
Certificate serial: 01856F54AD570295D1AD14B6E5D7E5ED1A49
Authority key identifier: AD:96:81:F1:44:DB:14:30:AC:31:5C:83:06:E1:C1:47:30:C5:FE:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rZaB8UTbFDCsMVyDBuHBRzDF_sI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/0Mag9umRq9Od51zjk6n0k89F_pY.roa
Signing time: Sun 01 Jan 2023 21:54:58 +0000
ROA not before: Sun 01 Jan 2023 21:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62442
IP address blocks: 89.221.84.0/22 maxlen: 22
89.221.88.0/21 maxlen: 21
78.157.37.0/24 maxlen: 24
78.157.35.0/24 maxlen: 24
78.157.36.0/24 maxlen: 24
78.157.34.0/24 maxlen: 24
78.157.32.0/19 maxlen: 19
78.157.32.0/24 maxlen: 24
78.157.38.0/24 maxlen: 24
78.157.44.0/24 maxlen: 24
78.157.42.0/24 maxlen: 24
78.157.43.0/24 maxlen: 24
78.157.40.0/24 maxlen: 24
78.157.41.0/24 maxlen: 24
78.157.39.0/24 maxlen: 24
78.157.51.0/24 maxlen: 24
78.157.49.0/24 maxlen: 24
78.157.50.0/24 maxlen: 24
78.157.47.0/24 maxlen: 24
78.157.48.0/24 maxlen: 24
78.157.48.0/21 maxlen: 21
78.157.45.0/24 maxlen: 24
78.157.46.0/24 maxlen: 24
78.157.56.0/21 maxlen: 21
78.157.58.0/24 maxlen: 24
78.157.56.0/24 maxlen: 24
78.157.57.0/24 maxlen: 24
78.157.54.0/24 maxlen: 24
78.157.55.0/24 maxlen: 24
78.157.52.0/24 maxlen: 24
78.157.53.0/24 maxlen: 24
78.157.63.0/24 maxlen: 24
78.157.61.0/24 maxlen: 24
78.157.62.0/24 maxlen: 24
78.157.59.0/24 maxlen: 24
78.157.60.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:54:ad:57:02:95:d1:ad:14:b6:e5:d7:e5:ed:1a:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad9681f144db1430ac315c8306e1c14730c5fec2
Validity
Not Before: Jan 1 21:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d0c6a0f6e991abd39de75ce393a9f493cf45fe96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:1f:e7:b0:b7:a7:d3:1d:07:7c:64:ba:b2:1b:
fd:d2:41:28:f7:d4:83:07:f3:3a:1d:02:90:64:af:
14:a6:2c:46:0b:fd:bf:e6:46:04:72:b2:6b:2b:ff:
25:3b:e9:31:6b:f9:35:aa:47:fd:ec:8a:03:28:e7:
00:28:88:40:e5:c6:14:96:1a:09:be:f3:02:ef:fe:
0e:a3:47:46:89:f8:76:d9:59:b1:63:99:1a:e8:fe:
93:77:28:ad:49:f7:a1:8c:77:58:6a:2b:bd:b7:87:
21:36:7f:1d:f9:3a:42:27:92:0b:47:c8:c3:b4:23:
b8:8d:91:0d:5b:d0:43:6d:67:17:54:cd:28:c0:0b:
bf:21:13:31:3d:05:e2:81:b3:c9:67:ab:3c:50:d5:
35:43:91:5d:15:33:17:be:e2:bb:4f:a3:35:d6:fa:
a9:9a:8b:c4:5a:09:7d:1f:d7:df:55:d6:28:94:6e:
cc:ab:21:5b:c1:1a:ef:41:55:8f:79:34:42:80:49:
04:91:53:33:07:f0:f2:0d:56:03:9b:13:61:3d:ee:
9b:30:bb:8a:3d:d2:03:8a:02:77:32:96:29:71:3d:
3f:b4:ac:49:97:2a:d8:02:aa:84:3a:f3:9d:f8:04:
db:0b:21:b3:30:ad:ce:27:32:39:16:47:44:43:27:
aa:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:C6:A0:F6:E9:91:AB:D3:9D:E7:5C:E3:93:A9:F4:93:CF:45:FE:96
X509v3 Authority Key Identifier:
keyid:AD:96:81:F1:44:DB:14:30:AC:31:5C:83:06:E1:C1:47:30:C5:FE:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rZaB8UTbFDCsMVyDBuHBRzDF_sI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/0Mag9umRq9Od51zjk6n0k89F_pY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/rZaB8UTbFDCsMVyDBuHBRzDF_sI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.157.32.0/19
89.221.84.0-89.221.95.255
Signature Algorithm: sha256WithRSAEncryption
11:6d:2d:26:be:17:51:01:0d:6e:5f:16:e1:eb:23:18:7a:31:
a6:69:5e:a5:60:4c:0e:38:51:af:77:54:c1:78:3e:11:91:9a:
80:49:df:80:7c:34:e7:f7:f2:7b:59:3d:c7:0f:00:12:1a:ce:
62:4e:b1:06:36:06:30:b7:15:e9:10:c7:2d:b7:0e:b7:f7:3a:
2b:4d:68:c0:f6:fa:b0:f4:b4:a8:a8:ac:41:fd:1d:76:4c:67:
13:b7:9c:94:c7:eb:71:0f:43:a1:8b:bc:c4:c8:8a:f7:8c:83:
00:b7:d5:11:31:b1:16:33:12:7b:e0:0b:c4:76:4e:fd:f7:63:
60:80:f7:6e:3e:b9:8d:1d:24:54:92:94:af:d9:fa:2b:4f:3c:
18:a4:46:cc:74:bf:b5:d4:30:85:c2:81:0e:14:48:24:cc:a2:
cf:2f:10:13:15:e4:56:01:70:82:38:13:1c:49:c0:52:f6:85:
15:f3:ed:dc:32:79:8f:4c:0d:52:45:00:06:7b:07:0f:f5:72:
53:ae:03:d4:4a:e0:83:aa:ae:dc:b7:24:97:01:cf:aa:6d:94:
df:13:58:6d:e0:ab:fa:98:e5:f7:2c:9a:3c:b2:c2:ec:b3:65:
10:48:87:69:1a:9b:9a:13:7c:56:aa:1e:c3:ab:67:9e:81:1e:
ce:b3:b0:f1
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:07 2024 by rpki-client on console-fra.rpki-client.org