Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/bf8338-8752-4d55-9c31-0e1b8fea8913/1/MCdgeDTP3ucotv66hvoChIzYE_0.roa
File: MCdgeDTP3ucotv66hvoChIzYE_0.roa (raw, json)
Hash identifier: J99pGA/KW+m4pbsqhkyJ+D3dA7LOgu60heq8HIVvIaI=
Subject key identifier: 30:27:60:78:34:CF:DE:E7:28:B6:FE:BA:86:FA:02:84:8C:D8:13:FD
Certificate issuer: /CN=69507f066f2bb0389dd88436074e1426114f2d92
Certificate serial: 018CC649F4DCB4F440675146055ED0230EF1
Authority key identifier: 69:50:7F:06:6F:2B:B0:38:9D:D8:84:36:07:4E:14:26:11:4F:2D:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aVB_Bm8rsDid2IQ2B04UJhFPLZI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/bf8338-8752-4d55-9c31-0e1b8fea8913/1/MCdgeDTP3ucotv66hvoChIzYE_0.roa
Signing time: Mon 01 Jan 2024 18:29:44 +0000
ROA not before: Mon 01 Jan 2024 18:29:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210079
IP address blocks: 178.208.68.0/24 maxlen: 24
178.208.71.0/24 maxlen: 24
178.208.70.0/24 maxlen: 24
178.208.69.0/24 maxlen: 24
178.208.95.0/24 maxlen: 24
178.208.94.0/24 maxlen: 24
178.208.92.0/24 maxlen: 24
185.105.111.0/24 maxlen: 24
185.105.110.0/24 maxlen: 24
185.105.109.0/24 maxlen: 24
95.142.38.0/24 maxlen: 24
95.142.37.0/24 maxlen: 24
95.142.36.0/24 maxlen: 24
95.142.35.0/24 maxlen: 24
95.142.43.0/24 maxlen: 24
95.142.42.0/24 maxlen: 24
95.142.40.0/24 maxlen: 24
95.142.39.0/24 maxlen: 24
2.56.88.0/24 maxlen: 24
2a09:c140:3::/48 maxlen: 48
2a09:c140:db::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 10 Jan 2024 08:49:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:49:f4:dc:b4:f4:40:67:51:46:05:5e:d0:23:0e:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69507f066f2bb0389dd88436074e1426114f2d92
Validity
Not Before: Jan 1 18:29:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3027607834cfdee728b6feba86fa02848cd813fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:9f:92:4d:ce:98:53:07:61:32:cc:4d:7c:93:
75:21:e2:26:db:ad:03:34:45:ad:4a:4f:07:98:37:
2e:0e:7f:71:be:05:08:46:71:87:2f:8a:32:ee:2a:
94:85:d6:80:b3:a3:1e:84:30:a9:70:00:8a:15:37:
69:7e:32:f6:2d:73:6a:ef:37:22:bb:8f:9b:4b:c0:
9c:82:92:1b:c0:ba:cf:94:41:f1:cb:c6:98:42:72:
4a:f7:f9:ae:bb:8f:14:5f:ed:65:cf:d8:47:44:a4:
d2:aa:57:65:3d:48:29:bb:2e:c6:cd:b9:9e:4a:5d:
03:ce:3f:bd:48:c8:78:0e:92:05:b5:d6:b5:bb:64:
f3:8c:12:f6:16:c7:d8:1a:4c:b9:d5:7b:93:42:f9:
10:e5:df:b5:56:22:2d:86:21:f9:0f:fb:52:1e:12:
8a:88:a1:8e:ed:23:a0:d7:bb:09:b5:b2:e5:b9:bc:
80:5c:ba:ba:86:3b:0a:01:08:46:b6:2f:f6:e7:68:
2a:81:f8:f7:4e:e4:75:cd:63:9b:9d:c3:37:1b:64:
f1:b2:ef:48:96:6b:48:cb:85:76:b3:2d:d2:b3:bc:
55:ab:60:e8:57:1e:43:03:2d:45:d3:36:02:4c:32:
0f:8d:ce:f4:97:6c:ab:45:e8:6c:ea:d9:1d:97:fa:
3d:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:27:60:78:34:CF:DE:E7:28:B6:FE:BA:86:FA:02:84:8C:D8:13:FD
X509v3 Authority Key Identifier:
keyid:69:50:7F:06:6F:2B:B0:38:9D:D8:84:36:07:4E:14:26:11:4F:2D:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aVB_Bm8rsDid2IQ2B04UJhFPLZI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/bf8338-8752-4d55-9c31-0e1b8fea8913/1/MCdgeDTP3ucotv66hvoChIzYE_0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/bf8338-8752-4d55-9c31-0e1b8fea8913/1/aVB_Bm8rsDid2IQ2B04UJhFPLZI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.88.0/24
95.142.35.0-95.142.40.255
95.142.42.0/23
178.208.68.0/22
178.208.92.0/24
178.208.94.0/23
185.105.109.0-185.105.111.255
IPv6:
2a09:c140:3::/48
2a09:c140:db::/48
Signature Algorithm: sha256WithRSAEncryption
69:e4:d3:f3:76:59:49:eb:f1:20:f9:53:b3:1b:3d:3a:4e:e1:
cf:25:c0:25:3f:1a:0b:97:59:03:9f:d6:b7:2b:f6:9b:7a:93:
a3:88:8b:fd:72:3f:3b:15:0b:8e:87:33:bd:0b:12:e8:d4:75:
b4:fb:cd:49:bd:46:5f:45:e8:9b:87:d5:0a:b9:8a:e4:c3:26:
41:02:68:8f:cc:1e:a6:f2:a4:1c:f9:15:c8:70:7a:2d:ac:21:
65:5f:b2:2e:fb:fb:a8:56:f5:d2:aa:1e:02:38:07:78:cf:d7:
a8:57:5d:50:2e:92:13:e7:c5:a0:5c:38:76:da:c1:05:a9:75:
8d:47:29:4a:ad:e6:5d:86:2e:5d:b4:e4:79:22:28:b8:79:5a:
6f:f1:3f:75:72:5f:ec:98:75:3f:d7:9c:19:fe:7e:8b:a8:d5:
ef:15:60:23:6d:2c:64:8c:ee:85:3a:ee:d6:51:4f:01:8a:ec:
2b:36:96:f4:96:fe:51:f9:0c:33:33:d4:ba:7d:4d:8f:e2:e9:
da:b1:9c:da:03:24:c8:30:1d:06:b3:18:e5:66:af:83:05:e4:
f7:3b:fb:af:80:bb:f3:df:6b:1d:cc:75:8e:da:e5:b2:29:08:
08:6c:93:da:4a:d4:a5:d2:b9:c6:8d:e5:b9:24:74:8b:cd:8d:
b1:13:5c:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:20 2024 by rpki-client on console-fra.rpki-client.org