Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/MUmG_dA-aavv2uK-xKa6CJUhGHk.roa
File: MUmG_dA-aavv2uK-xKa6CJUhGHk.roa (raw, json)
Hash identifier: gB3RuvGfHULN6avqDd4ZJHMpP+q3GnxO/a7iNGMS9kA=
Subject key identifier: 31:49:86:FD:D0:3E:69:AB:EF:DA:E2:BE:C4:A6:BA:08:95:21:18:79
Certificate issuer: /CN=081b7a22e51cfb9cf84205e4449998ad55d8f065
Certificate serial: 018CC64B295B2ED3712CAF2FDE2AC880FC6A
Authority key identifier: 08:1B:7A:22:E5:1C:FB:9C:F8:42:05:E4:44:99:98:AD:55:D8:F0:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CBt6IuUc-5z4QgXkRJmYrVXY8GU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/MUmG_dA-aavv2uK-xKa6CJUhGHk.roa
Signing time: Mon 01 Jan 2024 18:31:03 +0000
ROA not before: Mon 01 Jan 2024 18:31:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56466
IP address blocks: 185.141.105.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 21:47:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:29:5b:2e:d3:71:2c:af:2f:de:2a:c8:80:fc:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=081b7a22e51cfb9cf84205e4449998ad55d8f065
Validity
Not Before: Jan 1 18:31:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=314986fdd03e69abefdae2bec4a6ba0895211879
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ef:ab:bf:fc:17:a7:65:67:2c:3b:7a:73:b6:
5d:89:83:78:62:1d:5b:28:37:0c:28:e5:40:19:8b:
54:f4:5d:6a:35:8b:55:2f:21:b4:64:13:e8:16:b9:
ac:1e:fc:36:97:8a:25:a1:dd:dc:23:53:ad:94:3c:
8d:fc:b8:e6:7b:95:90:b0:2a:c9:df:aa:ed:de:a8:
95:45:3a:81:16:34:0a:60:d6:45:be:b7:6b:2a:b4:
b1:9b:96:87:fd:84:d5:fa:55:24:09:89:7e:9d:d3:
f2:73:d4:03:87:b2:75:75:7b:d8:2d:11:2c:10:cf:
54:a2:3a:b5:1d:80:a7:c1:7e:29:00:9d:07:e0:1f:
0a:22:9e:1d:aa:a6:4a:98:de:50:e0:f9:b9:04:43:
a2:54:dc:2f:b0:e1:11:48:92:d8:d5:a9:14:38:e5:
7f:ed:e9:a4:83:91:aa:c0:22:cd:7d:84:85:d4:51:
cf:71:b8:96:b4:12:bd:d3:1f:46:14:ef:b7:d2:04:
b9:72:a8:18:37:b6:ca:5c:93:48:e2:3b:50:06:fe:
84:38:71:8e:c3:f6:04:b8:fa:5b:45:64:bd:2f:67:
72:5a:df:09:8d:46:a9:e9:a5:14:7d:c3:0b:e1:29:
37:f0:f5:45:28:6b:c8:40:33:1e:f5:de:53:7e:29:
f0:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:49:86:FD:D0:3E:69:AB:EF:DA:E2:BE:C4:A6:BA:08:95:21:18:79
X509v3 Authority Key Identifier:
keyid:08:1B:7A:22:E5:1C:FB:9C:F8:42:05:E4:44:99:98:AD:55:D8:F0:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CBt6IuUc-5z4QgXkRJmYrVXY8GU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/MUmG_dA-aavv2uK-xKa6CJUhGHk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/CBt6IuUc-5z4QgXkRJmYrVXY8GU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.141.105.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:5f:dd:29:47:00:6c:94:b0:59:7f:bf:96:bb:05:67:c5:a1:
c6:70:73:c0:9b:3a:64:ab:60:39:4e:13:55:5c:27:8f:7d:94:
1e:41:29:bc:6e:1f:d7:7c:09:8a:7d:2f:c9:6a:0e:ce:a1:80:
cf:9b:36:95:9d:3e:33:87:7d:c2:11:a3:16:0d:94:09:0a:85:
4d:ed:89:f5:97:37:7e:7e:8e:08:34:13:8c:d6:d4:5e:13:0a:
80:96:d8:30:3f:35:b4:31:9f:df:40:aa:73:dc:0d:a2:56:48:
b4:ec:6a:74:9a:4a:38:ca:54:0c:4c:a8:f4:3b:a4:75:b7:ab:
dd:66:95:60:1e:f6:cf:d1:28:ed:ac:24:e3:a0:00:05:29:0f:
e6:71:a9:15:12:4b:a0:e9:d0:c4:53:86:24:86:c2:1b:41:4b:
36:4a:b9:dc:5b:23:09:e6:10:f6:5b:9e:35:17:7c:0b:cc:1e:
09:47:d0:e1:79:8e:13:3a:5c:58:74:6e:61:f4:9b:ef:7c:63:
d3:02:32:99:51:34:b9:b4:4b:d1:b7:9e:60:41:ff:a9:d3:8e:
4d:88:2f:e8:41:49:1d:b3:76:58:a7:b7:1c:d5:3c:4d:67:ed:
5c:d0:b5:33:93:dd:1d:82:ea:0d:1b:94:c8:3e:bf:5e:e1:8b:
81:09:86:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:17:57 2025 by rpki-client