Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/30282c-3c82-4730-b95e-e745948983ed/1/MjcClAUYxMSYI9RgR0OwwD3gkoA.roa
File: MjcClAUYxMSYI9RgR0OwwD3gkoA.roa (raw, json)
Hash identifier: j8BS6zaNlEZXRyxliKszoehZFjmQLrrLiJfE10j54Eo=
Subject key identifier: 32:37:02:94:05:18:C4:C4:98:23:D4:60:47:43:B0:C0:3D:E0:92:80
Certificate issuer: /CN=09e5518e68467b4290c3509268b6d6d664962c86
Certificate serial: 018B243726AE6276F72414B010B66EAE5608
Authority key identifier: 09:E5:51:8E:68:46:7B:42:90:C3:50:92:68:B6:D6:D6:64:96:2C:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CeVRjmhGe0KQw1CSaLbW1mSWLIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/30282c-3c82-4730-b95e-e745948983ed/1/MjcClAUYxMSYI9RgR0OwwD3gkoA.roa
Signing time: Thu 12 Oct 2023 14:07:55 +0000
ROA not before: Thu 12 Oct 2023 14:07:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31515
IP address blocks: 161.30.169.0/24 maxlen: 24
161.30.130.0/24 maxlen: 24
161.30.129.0/24 maxlen: 24
161.30.28.0/24 maxlen: 24
161.30.33.0/24 maxlen: 24
161.30.42.0/23 maxlen: 24
161.30.40.0/23 maxlen: 23
161.30.44.0/23 maxlen: 24
161.30.203.0/24 maxlen: 24
161.30.8.0/24 maxlen: 24
161.30.9.0/24 maxlen: 24
161.30.7.0/24 maxlen: 24
161.30.5.0/24 maxlen: 24
161.30.16.0/22 maxlen: 22
161.30.12.0/22 maxlen: 22
161.30.22.0/23 maxlen: 23
161.30.237.0/24 maxlen: 24
161.30.238.0/24 maxlen: 24
161.30.236.0/22 maxlen: 24
161.30.240.0/24 maxlen: 24
2a11:ae00::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:24:37:26:ae:62:76:f7:24:14:b0:10:b6:6e:ae:56:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09e5518e68467b4290c3509268b6d6d664962c86
Validity
Not Before: Oct 12 14:07:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=323702940518c4c49823d4604743b0c03de09280
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:59:a2:f0:82:5a:02:06:40:e4:8b:d6:9a:bd:
be:50:e1:70:07:91:81:38:cf:aa:2b:b6:fd:5c:0b:
aa:8d:5a:4c:ce:2a:6c:0d:77:6a:0e:2d:47:57:64:
b0:4d:14:60:20:31:a2:5e:43:7c:ed:6f:6c:c7:ef:
f6:8d:89:57:a1:76:5b:d1:ef:6a:ad:79:99:03:8c:
85:04:cd:5e:3f:89:2d:35:c6:2f:83:64:ac:52:56:
5f:15:77:78:c7:45:d0:54:e0:1c:e1:b6:d1:51:d1:
71:09:96:2f:78:75:99:00:5b:b8:c4:12:23:37:0e:
fa:3f:99:33:4c:38:4c:a4:84:c7:58:ef:72:65:37:
9d:28:6e:d6:f5:40:c5:0f:ab:dc:ba:a6:6e:06:2f:
63:3c:fc:24:6b:63:74:b2:91:df:4d:5a:5f:54:07:
49:4a:a5:5d:91:78:88:66:1f:d5:84:be:6d:06:cf:
e3:87:bc:36:ef:5d:7a:0d:cb:59:4c:05:80:97:8f:
fd:ef:8e:c8:c5:53:1c:37:af:07:4c:55:32:d3:ae:
c5:f2:10:67:c4:1b:1a:e1:44:5d:3b:ef:1f:c4:38:
bc:26:71:5b:6f:17:1c:27:de:dc:7d:83:fa:05:3a:
10:ef:c1:d7:d9:c2:a3:d0:d6:ba:ca:f2:d6:2b:df:
01:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:37:02:94:05:18:C4:C4:98:23:D4:60:47:43:B0:C0:3D:E0:92:80
X509v3 Authority Key Identifier:
keyid:09:E5:51:8E:68:46:7B:42:90:C3:50:92:68:B6:D6:D6:64:96:2C:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CeVRjmhGe0KQw1CSaLbW1mSWLIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/30282c-3c82-4730-b95e-e745948983ed/1/MjcClAUYxMSYI9RgR0OwwD3gkoA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/30282c-3c82-4730-b95e-e745948983ed/1/CeVRjmhGe0KQw1CSaLbW1mSWLIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
161.30.5.0/24
161.30.7.0-161.30.9.255
161.30.12.0-161.30.19.255
161.30.22.0/23
161.30.28.0/24
161.30.33.0/24
161.30.40.0-161.30.45.255
161.30.129.0-161.30.130.255
161.30.169.0/24
161.30.203.0/24
161.30.236.0-161.30.240.255
IPv6:
2a11:ae00::/32
Signature Algorithm: sha256WithRSAEncryption
95:04:46:1a:f2:54:e5:b3:f3:f0:ee:91:11:4e:9e:de:89:85:
23:af:6d:20:be:6a:12:d9:cf:47:21:71:e6:ad:7f:91:46:e1:
0d:70:59:da:1e:11:11:62:a0:90:5d:c7:7c:23:d5:6a:be:00:
95:5e:0d:48:17:a6:96:2e:4c:82:83:ad:19:3b:44:88:b1:9d:
29:4d:ed:a2:58:45:cb:2d:32:6b:af:ab:e8:1a:ed:ce:f7:e0:
4b:94:02:a0:04:76:71:0a:ce:69:18:7e:01:ad:56:8d:94:de:
43:78:8c:5b:e7:21:c3:09:57:f6:00:41:3d:6d:6c:f8:ad:61:
ed:ad:bc:0b:39:99:3f:10:91:77:1e:9a:ad:80:7f:75:1a:e2:
2c:cb:f4:77:9b:96:9d:db:78:11:ef:76:3b:4b:c3:b6:50:73:
b7:68:e1:3b:5d:d9:6b:93:99:fc:5f:b3:7a:10:98:01:e6:02:
75:bd:93:3a:43:e1:e2:b6:12:e2:5d:49:d7:2f:42:f6:0f:5a:
e9:90:58:0b:66:00:90:a0:77:52:68:aa:85:b1:4c:5b:15:47:
be:35:1c:ce:3e:5e:03:41:86:92:ea:ff:16:b7:79:e3:cc:fc:
eb:1c:7e:6e:7e:7b:a2:21:40:bb:92:98:35:13:b6:46:73:7d:
e4:b5:ba:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:25 2024 by rpki-client on console-fra.rpki-client.org