Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/50f08f-f907-44de-be94-05764c7edaa7/1/MGYmlENfi0yzRcKrUhnc5_UHL3Q.roa
File: MGYmlENfi0yzRcKrUhnc5_UHL3Q.roa (raw, json)
Hash identifier: MdS3h3ozEt1rH7G7ak5b8kxIy/753I19+HhUbfKW8Xc=
Subject key identifier: 30:66:26:94:43:5F:8B:4C:B3:45:C2:AB:52:19:DC:E7:F5:07:2F:74
Certificate issuer: /CN=4ab6d7c468d092c921314d66473cfa53851cd686
Certificate serial: 01856E8B395B7CB8E835253AE872B5632AAF
Authority key identifier: 4A:B6:D7:C4:68:D0:92:C9:21:31:4D:66:47:3C:FA:53:85:1C:D6:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SrbXxGjQkskhMU1mRzz6U4Uc1oY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/50f08f-f907-44de-be94-05764c7edaa7/1/MGYmlENfi0yzRcKrUhnc5_UHL3Q.roa
Signing time: Sun 01 Jan 2023 18:14:56 +0000
ROA not before: Sun 01 Jan 2023 18:14:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35047
IP address blocks: 92.60.16.0/20 maxlen: 20
77.242.16.0/20 maxlen: 20
77.242.18.0/23 maxlen: 23
77.242.20.0/24 maxlen: 24
77.242.22.0/23 maxlen: 23
77.242.21.0/24 maxlen: 24
77.242.24.0/24 maxlen: 24
77.242.31.0/24 maxlen: 24
77.242.29.0/24 maxlen: 24
77.242.28.0/22 maxlen: 22
77.242.30.0/24 maxlen: 24
77.242.25.0/24 maxlen: 24
77.242.26.0/24 maxlen: 24
109.236.32.0/20 maxlen: 20
185.55.150.0/24 maxlen: 24
185.55.148.0/22 maxlen: 24
31.44.64.0/20 maxlen: 20
31.44.68.0/22 maxlen: 22
80.91.117.0/24 maxlen: 24
80.91.116.0/24 maxlen: 24
31.44.72.0/22 maxlen: 22
80.91.112.0/20 maxlen: 24
80.91.120.0/21 maxlen: 24
80.91.122.0/24 maxlen: 24
80.91.123.0/24 maxlen: 24
80.91.127.0/24 maxlen: 24
80.91.126.0/24 maxlen: 24
2a01:4f00:2233::/48 maxlen: 48
2a01:4f00::/32 maxlen: 32
2a01:4f00::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 27 Mar 2023 06:50:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:8b:39:5b:7c:b8:e8:35:25:3a:e8:72:b5:63:2a:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ab6d7c468d092c921314d66473cfa53851cd686
Validity
Not Before: Jan 1 18:14:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=30662694435f8b4cb345c2ab5219dce7f5072f74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d8:6a:dd:e1:29:cc:1b:c9:a4:4a:79:46:41:
2b:a1:ec:57:56:c7:f0:56:b8:0e:4b:5e:97:c0:0d:
18:f7:6e:bd:62:3f:ed:ea:ad:78:56:2c:c9:47:64:
ee:84:df:ae:58:ef:2f:cf:00:d4:a1:31:04:eb:73:
d7:56:ff:18:47:c4:43:c6:1e:98:65:a8:97:fd:e2:
4d:76:e8:56:cb:82:77:f5:c0:67:8d:aa:9f:cd:46:
bc:89:65:05:72:45:d6:76:7e:44:ac:16:67:ae:4e:
5e:18:6c:49:48:67:16:0c:f6:46:9a:46:05:e7:ba:
e5:1b:3b:f7:fe:db:82:cc:bf:fe:20:46:ad:13:2c:
ec:22:b4:bb:6b:c4:44:41:28:16:71:e9:26:5b:d6:
59:d4:dd:32:83:b3:e3:06:55:91:14:49:f4:1e:4b:
69:94:f3:fd:8c:64:51:e9:65:b2:eb:df:38:26:66:
4b:04:5f:ff:e7:47:2e:49:86:7c:25:1d:99:1c:b8:
54:9d:c3:b0:99:cc:26:81:88:cd:f2:44:4d:91:e4:
f4:e9:2b:15:82:96:a9:de:5b:e3:27:19:a8:ee:51:
9f:ef:6f:f9:f4:de:c6:1b:c0:63:fa:49:de:bc:5c:
31:10:76:16:f2:99:20:21:ef:a3:d5:95:5a:6d:1d:
58:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:66:26:94:43:5F:8B:4C:B3:45:C2:AB:52:19:DC:E7:F5:07:2F:74
X509v3 Authority Key Identifier:
keyid:4A:B6:D7:C4:68:D0:92:C9:21:31:4D:66:47:3C:FA:53:85:1C:D6:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SrbXxGjQkskhMU1mRzz6U4Uc1oY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/50f08f-f907-44de-be94-05764c7edaa7/1/MGYmlENfi0yzRcKrUhnc5_UHL3Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/50f08f-f907-44de-be94-05764c7edaa7/1/SrbXxGjQkskhMU1mRzz6U4Uc1oY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.44.64.0/20
77.242.16.0/20
80.91.112.0/20
92.60.16.0/20
109.236.32.0/20
185.55.148.0/22
IPv6:
2a01:4f00::/32
Signature Algorithm: sha256WithRSAEncryption
30:29:05:19:d8:56:b2:76:b0:ff:e8:9e:90:e8:fb:1b:8f:5d:
6c:04:be:48:c8:d5:1d:52:b4:a1:1c:16:4b:21:4b:55:8e:62:
41:d7:f8:23:c2:89:c0:cc:0b:ab:5e:3d:95:d3:69:b8:b8:da:
06:ec:29:55:f2:aa:a9:34:bc:04:d7:a8:3b:d9:c9:7f:66:d4:
7b:a3:b8:97:5c:3b:d9:ec:15:2b:77:46:54:5f:e3:de:0b:43:
a7:7d:c6:cc:02:73:b4:fd:6e:fe:df:49:40:67:c4:b8:13:89:
ca:4e:5f:d2:5a:ae:7b:33:1a:ca:a7:a7:d0:d4:61:e2:05:06:
06:cc:ba:80:5a:fd:f0:e5:85:e1:35:62:e6:9f:63:2e:d2:67:
a1:92:70:87:d7:47:af:b1:35:6c:23:a8:bc:34:66:d1:eb:13:
c2:5f:77:65:56:2b:55:ca:a8:f4:4f:36:17:75:be:f8:77:af:
37:83:1d:7e:5d:e3:f2:b0:43:06:63:7e:79:ad:66:a4:c0:10:
c2:f2:34:e2:49:26:23:c2:cc:62:9c:52:f8:20:3e:dc:48:a7:
e5:79:b7:39:5e:1b:78:c8:27:60:45:17:de:56:1a:38:62:59:
d1:ef:cc:1c:98:ed:11:3f:bd:fa:d5:c2:97:1d:1e:be:89:1c:
e1:42:19:1d
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgISAYVuizlbfLjoNSU66HK1YyqvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhYjZkN2M0NjhkMDkyYzkyMTMxNGQ2NjQ3M2NmYTUzODUx
Y2Q2ODYwHhcNMjMwMTAxMTgxNDU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMDY2MjY5NDQzNWY4YjRjYjM0NWMyYWI1MjE5ZGNlN2Y1MDcyZjc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvthq3eEpzBvJpEp5RkEroexXVsfw
VrgOS16XwA0Y9269Yj/t6q14VizJR2TuhN+uWO8vzwDUoTEE63PXVv8YR8RDxh6Y
ZaiX/eJNduhWy4J39cBnjaqfzUa8iWUFckXWdn5ErBZnrk5eGGxJSGcWDPZGmkYF
57rlGzv3/tuCzL/+IEatEyzsIrS7a8REQSgWcekmW9ZZ1N0yg7PjBlWRFEn0Hktp
lPP9jGRR6WWy6984JmZLBF//50cuSYZ8JR2ZHLhUncOwmcwmgYjN8kRNkeT06SsV
gpap3lvjJxmo7lGf72/59N7GG8Bj+knevFwxEHYW8pkgIe+j1ZVabR1YKwIDAQAB
o4ICNjCCAjIwHQYDVR0OBBYEFDBmJpRDX4tMs0XCq1IZ3Of1By90MB8GA1UdIwQY
MBaAFEq218Ro0JLJITFNZkc8+lOFHNaGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU3JiWHhHalFrc2toTVUxbVJ6ejZVNFVjMW9ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy81MGYwOGYtZjkwNy00NGRlLWJlOTQt
MDU3NjRjN2VkYWE3LzEvTUdZbWxFTmZpMHl6UmNLclVobmM1X1VITDNRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMy81MGYwOGYtZjkwNy00NGRlLWJlOTQtMDU3NjRjN2VkYWE3
LzEvU3JiWHhHalFrc2toTVUxbVJ6ejZVNFVjMW9ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEwGCCsGAQUFBwEHAQH/BD0wOzAqBAIAATAkAwQEHyxAAwQE
TfIQAwQEUFtwAwQEXDwQAwQEbewgAwQCuTeUMA0EAgACMAcDBQAqAU8AMA0GCSqG
SIb3DQEBCwUAA4IBAQAwKQUZ2FaydrD/6J6Q6Psbj11sBL5IyNUdUrShHBZLIUtV
jmJB1/gjwonAzAurXj2V02m4uNoG7ClV8qqpNLwE16g72cl/ZtR7o7iXXDvZ7BUr
d0ZUX+PeC0OnfcbMAnO0/W7+30lAZ8S4E4nKTl/SWq57MxrKp6fQ1GHiBQYGzLqA
Wv3w5YXhNWLmn2Mu0mehknCH10evsTVsI6i8NGbR6xPCX3dlVitVyqj0TzYXdb74
d683gx1+XePysEMGY355rWakwBDC8jTiSSYjwsxinFL4ID7cSKflebc5Xht4yCdg
RRfeVho4YlnR78wcmO0RP7361cKXHR6+iRzhQhkd
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:16 2024 by rpki-client on console-ams.rpki-client.org