Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/264f9a-13ea-4c50-a6a9-712d5e17a6f6/1/MFDLMZvI74TijmKRLjxHi03CPCA.roa
File: MFDLMZvI74TijmKRLjxHi03CPCA.roa (raw, json)
Hash identifier: nx4370UJOb37cIQTpsl5wMLAOfJSc9fxH26eQR6SNNk=
Subject key identifier: 30:50:CB:31:9B:C8:EF:84:E2:8E:62:91:2E:3C:47:8B:4D:C2:3C:20
Certificate issuer: /CN=95e88359b95a3964ae6f9a0cdaae07f579f98c35
Certificate serial: 01946F732CBF104D281B352BBD63B5A12781
Authority key identifier: 95:E8:83:59:B9:5A:39:64:AE:6F:9A:0C:DA:AE:07:F5:79:F9:8C:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/leiDWblaOWSub5oM2q4H9Xn5jDU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/264f9a-13ea-4c50-a6a9-712d5e17a6f6/1/MFDLMZvI74TijmKRLjxHi03CPCA.roa
Signing time: Thu 16 Jan 2025 14:10:06 +0000
ROA not before: Thu 16 Jan 2025 14:10:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213815
IP address blocks: 193.18.248.0/24 maxlen: 24
193.18.249.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 20 Jan 2025 15:31:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:6f:73:2c:bf:10:4d:28:1b:35:2b:bd:63:b5:a1:27:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95e88359b95a3964ae6f9a0cdaae07f579f98c35
Validity
Not Before: Jan 16 14:10:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3050cb319bc8ef84e28e62912e3c478b4dc23c20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:59:67:39:28:a5:c8:a3:22:02:d9:ed:ad:a4:
44:d7:24:bd:0b:d6:7c:8c:4f:10:38:13:04:57:b4:
62:76:1e:cb:ab:f6:6f:e7:a0:77:a6:28:34:1f:21:
cd:5f:bd:e3:a0:24:19:3d:c9:fc:f4:7c:8a:fb:7b:
38:99:33:63:ce:ac:fe:b0:e6:da:b9:b5:aa:78:42:
80:33:cb:7a:e6:57:4c:e2:08:41:53:19:36:c7:15:
1b:18:2e:ec:a6:ba:a2:63:ed:08:59:2f:b7:1e:49:
00:5a:b9:75:18:5c:c6:96:19:56:bb:c8:26:42:a3:
76:0b:11:04:6f:bf:7b:b0:e6:12:06:c4:b7:9d:ef:
1c:63:d8:a4:2b:6c:9c:e5:a5:95:3b:e9:02:b8:f6:
7b:c1:99:5d:44:93:91:cc:a4:32:08:1d:60:01:57:
6f:42:9f:de:cc:b8:7d:f1:a2:6e:8c:a2:23:fb:60:
6f:ae:07:d6:0a:7a:cb:18:62:79:b1:cc:db:49:c5:
0f:ad:8c:e4:b1:a4:5e:6e:d4:6f:a7:c8:fd:56:ff:
8f:de:65:d3:6c:e3:81:f9:fa:de:2e:47:3f:ee:7f:
14:45:8b:9b:e5:e6:de:0e:83:fc:b5:3e:57:01:29:
c5:e8:e2:23:d6:90:ed:0e:ae:59:58:18:79:ae:76:
05:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:50:CB:31:9B:C8:EF:84:E2:8E:62:91:2E:3C:47:8B:4D:C2:3C:20
X509v3 Authority Key Identifier:
keyid:95:E8:83:59:B9:5A:39:64:AE:6F:9A:0C:DA:AE:07:F5:79:F9:8C:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/leiDWblaOWSub5oM2q4H9Xn5jDU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/264f9a-13ea-4c50-a6a9-712d5e17a6f6/1/MFDLMZvI74TijmKRLjxHi03CPCA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/264f9a-13ea-4c50-a6a9-712d5e17a6f6/1/leiDWblaOWSub5oM2q4H9Xn5jDU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.18.248.0/23
Signature Algorithm: sha256WithRSAEncryption
2e:9e:41:2c:cf:a2:98:65:1e:e0:57:8f:51:cc:13:74:55:fa:
ca:c1:89:6d:4b:dd:be:19:df:9a:32:d7:48:56:66:b3:55:37:
ac:cd:76:aa:0c:93:f7:7a:59:a9:8a:cc:ee:37:ba:87:a4:20:
01:05:87:e8:1b:c9:c5:15:c7:cb:22:91:79:fe:91:8f:ee:c3:
8a:af:70:c9:77:46:14:c9:f2:45:c2:34:81:29:6d:5b:6e:02:
0d:d5:40:89:d7:01:d7:dc:ea:f5:9f:a3:93:20:a2:6a:8f:c3:
50:52:54:82:ae:da:fa:2b:2b:1c:ba:b5:30:94:77:7c:fe:6f:
25:86:98:55:49:c5:a2:0c:6b:f9:44:c5:5e:4b:23:8e:3c:d1:
0e:b6:de:9e:23:14:02:73:bd:40:4b:01:73:f6:5c:79:dc:81:
05:a2:2d:68:ab:ea:73:f8:e9:77:c4:45:bc:d4:4f:56:c9:c2:
3a:41:a4:53:0e:6c:0c:71:68:af:88:d3:cb:98:89:94:64:3e:
31:06:fd:48:47:03:91:cf:39:68:c6:8b:b4:46:27:4c:15:01:
da:b7:31:92:0c:d3:eb:4e:28:ed:71:a6:b2:f3:a2:80:e8:6a:
fb:9b:53:9d:8c:28:48:cf:f6:b6:9f:af:1f:78:8d:3e:cd:95:
18:06:a5:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 20 19:38:51 2025 by rpki-client on console.sobornost.net