Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/9755d5-7f0b-427f-afe0-d712d4738046/1/MZZBWLKMI2k4QYov4Sp2ri4YeEU.roa
File: MZZBWLKMI2k4QYov4Sp2ri4YeEU.roa (raw, json)
Hash identifier: 67dd8o7nwSTdT0n8wbPypWdUlK/Mo4UWrKmLUHNtUAA=
Subject key identifier: 31:96:41:58:B2:8C:23:69:38:41:8A:2F:E1:2A:76:AE:2E:18:78:45
Certificate issuer: /CN=ca96218c20efd8fe53fca9990b725dd7963c885c
Certificate serial: 019426D9C1CE4797D687FFA195FFAFDF992C
Authority key identifier: CA:96:21:8C:20:EF:D8:FE:53:FC:A9:99:0B:72:5D:D7:96:3C:88:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ypYhjCDv2P5T_KmZC3Jd15Y8iFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/9755d5-7f0b-427f-afe0-d712d4738046/1/MZZBWLKMI2k4QYov4Sp2ri4YeEU.roa
Signing time: Thu 02 Jan 2025 11:49:52 +0000
ROA not before: Thu 02 Jan 2025 11:49:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9121
IP address blocks: 31.40.240.0/24 maxlen: 24
31.40.242.0/24 maxlen: 24
77.92.96.0/24 maxlen: 24
77.92.97.0/24 maxlen: 24
77.92.98.0/24 maxlen: 24
77.92.99.0/24 maxlen: 24
77.92.100.0/24 maxlen: 24
77.92.101.0/24 maxlen: 24
77.92.102.0/24 maxlen: 24
77.92.103.0/24 maxlen: 24
77.92.104.0/24 maxlen: 24
77.92.105.0/24 maxlen: 24
77.92.106.0/24 maxlen: 24
77.92.107.0/24 maxlen: 24
77.92.108.0/24 maxlen: 24
77.92.109.0/24 maxlen: 24
77.92.110.0/24 maxlen: 24
77.92.111.0/24 maxlen: 24
77.92.112.0/24 maxlen: 24
77.92.113.0/24 maxlen: 24
77.92.114.0/24 maxlen: 24
77.92.115.0/24 maxlen: 24
77.92.116.0/24 maxlen: 24
77.92.117.0/24 maxlen: 24
77.92.118.0/24 maxlen: 24
77.92.119.0/24 maxlen: 24
77.92.120.0/24 maxlen: 24
77.92.121.0/24 maxlen: 24
77.92.122.0/24 maxlen: 24
77.92.123.0/24 maxlen: 24
77.92.124.0/24 maxlen: 24
77.92.125.0/24 maxlen: 24
77.92.126.0/24 maxlen: 24
77.92.127.0/24 maxlen: 24
185.115.208.0/24 maxlen: 24
185.115.210.0/24 maxlen: 24
185.115.211.0/24 maxlen: 24
213.144.96.0/24 maxlen: 24
213.144.97.0/24 maxlen: 24
213.144.98.0/24 maxlen: 24
213.144.99.0/24 maxlen: 24
213.144.100.0/24 maxlen: 24
213.144.101.0/24 maxlen: 24
213.144.102.0/24 maxlen: 24
213.144.103.0/24 maxlen: 24
213.144.104.0/24 maxlen: 24
213.144.105.0/24 maxlen: 24
213.144.106.0/24 maxlen: 24
213.144.107.0/24 maxlen: 24
213.144.108.0/24 maxlen: 24
213.144.109.0/24 maxlen: 24
213.144.110.0/24 maxlen: 24
213.144.111.0/24 maxlen: 24
213.144.112.0/24 maxlen: 24
213.144.113.0/24 maxlen: 24
213.144.114.0/24 maxlen: 24
213.144.115.0/24 maxlen: 24
213.144.116.0/24 maxlen: 24
213.144.117.0/24 maxlen: 24
213.144.118.0/24 maxlen: 24
213.144.119.0/24 maxlen: 24
213.144.120.0/24 maxlen: 24
213.144.121.0/24 maxlen: 24
213.144.122.0/24 maxlen: 24
213.144.123.0/24 maxlen: 24
213.144.124.0/24 maxlen: 24
213.144.125.0/24 maxlen: 24
213.144.126.0/24 maxlen: 24
213.144.127.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 07 Jan 2025 08:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:c1:ce:47:97:d6:87:ff:a1:95:ff:af:df:99:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca96218c20efd8fe53fca9990b725dd7963c885c
Validity
Not Before: Jan 2 11:49:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=31964158b28c236938418a2fe12a76ae2e187845
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ff:02:cb:43:c4:a8:d5:c3:96:72:3f:e6:c7:
5c:b9:78:1a:0c:d7:d9:47:10:15:54:57:64:f6:82:
ec:c0:d6:c9:01:3f:7d:76:1c:f6:5a:0a:43:33:0b:
5b:ef:5b:39:bb:43:ca:02:55:b9:13:18:63:c5:5e:
06:92:60:b9:95:34:1d:77:f3:f3:bc:f0:a8:af:3e:
fc:8f:0e:b7:c4:80:9b:40:0e:82:ef:6e:ee:a4:e6:
e8:5e:b2:0c:30:ad:65:47:cb:2f:a5:70:4a:64:8f:
ed:f5:d0:24:7e:7a:d9:a6:b4:6d:b5:bb:59:21:09:
e0:a2:17:c3:15:03:c5:0b:ae:6e:e7:57:18:9b:5e:
e2:55:47:88:20:1b:c1:55:f3:62:23:9b:20:a0:99:
d7:05:3c:83:3c:4c:3f:47:3e:d8:c6:7a:21:ab:c9:
5c:47:51:82:8e:87:4d:ab:42:70:50:e1:43:00:03:
62:f9:9a:95:19:df:ae:c9:5f:fd:6c:ab:f5:4a:a8:
cd:50:da:1c:9b:e7:13:fc:c2:f1:df:73:a9:b8:43:
3c:aa:bf:75:1c:ce:4d:72:ed:98:2c:04:40:c8:9a:
4e:ee:cb:6a:1f:ee:f4:b2:53:85:c7:17:af:56:78:
97:f2:50:be:6b:e5:11:01:1f:1a:f4:3b:27:8b:6c:
34:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:96:41:58:B2:8C:23:69:38:41:8A:2F:E1:2A:76:AE:2E:18:78:45
X509v3 Authority Key Identifier:
keyid:CA:96:21:8C:20:EF:D8:FE:53:FC:A9:99:0B:72:5D:D7:96:3C:88:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ypYhjCDv2P5T_KmZC3Jd15Y8iFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/9755d5-7f0b-427f-afe0-d712d4738046/1/MZZBWLKMI2k4QYov4Sp2ri4YeEU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/9755d5-7f0b-427f-afe0-d712d4738046/1/ypYhjCDv2P5T_KmZC3Jd15Y8iFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.240.0/24
31.40.242.0/24
77.92.96.0/19
185.115.208.0/24
185.115.210.0/23
213.144.96.0/19
Signature Algorithm: sha256WithRSAEncryption
58:a6:b0:48:0e:f8:1e:4f:cb:da:14:20:62:66:58:1c:62:65:
a1:34:f1:0d:e5:ce:bc:54:45:4a:43:62:df:f6:77:ef:55:95:
81:2b:52:d2:7f:1e:79:82:8f:dd:11:fc:16:00:5e:0d:8d:c2:
f8:4b:25:0f:80:e3:81:99:72:73:13:10:f5:dc:df:9b:df:1a:
4e:e3:eb:38:a8:c9:fd:81:3d:a7:f3:f3:c3:d0:b7:62:4f:e6:
70:82:c7:4e:70:c4:f9:8b:18:da:9b:db:73:af:be:2f:f6:43:
00:ca:9a:53:e1:a5:54:f0:1f:f4:c1:ba:3c:6c:5a:01:24:08:
15:96:96:79:0c:e5:ca:da:cd:e9:e2:b7:09:ac:92:fe:cb:02:
c3:59:f1:3f:b3:47:e4:e4:3f:c7:ee:ac:2b:84:bf:45:a0:e5:
ef:02:0a:c1:af:9c:db:77:6d:e7:8b:9a:8b:14:f3:ac:9d:72:
65:1f:28:fb:4f:40:6c:1c:05:89:b8:52:56:ea:4e:56:04:18:
8b:10:48:0f:a7:96:e3:21:88:2e:2b:05:26:48:4c:7e:2d:1d:
98:9a:7c:bb:cf:30:a3:83:a5:6c:3c:4b:8b:4a:11:14:e1:4d:
d7:32:7b:85:22:17:2d:ae:e8:c7:c9:31:65:4f:be:91:78:6e:
31:84:76:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 00:06:02 2025 by rpki-client