Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/3cZYQvlTfBkMDd3aA_CwKn-f8zA.roa
File: 3cZYQvlTfBkMDd3aA_CwKn-f8zA.roa (raw, json)
Hash identifier: y9IR1LLFo3jDxrdKnQGxhACoAPBq/QCAoJhz2E5BCLg=
Subject key identifier: DD:C6:58:42:F9:53:7C:19:0C:0D:DD:DA:03:F0:B0:2A:7F:9F:F3:30
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 018BAE94EC4BA47D805E3249ED082418D191
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/3cZYQvlTfBkMDd3aA_CwKn-f8zA.roa
Signing time: Wed 08 Nov 2023 10:57:57 +0000
ROA not before: Wed 08 Nov 2023 10:57:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200845
IP address blocks: 194.31.104.0/22 maxlen: 22
185.28.51.0/24 maxlen: 24
185.231.186.0/24 maxlen: 24
185.231.187.0/24 maxlen: 24
31.15.4.0/24 maxlen: 24
31.15.7.0/24 maxlen: 24
31.15.6.0/24 maxlen: 24
31.15.5.0/24 maxlen: 24
89.190.152.0/24 maxlen: 24
185.225.244.0/22 maxlen: 22
89.190.152.0/22 maxlen: 22
185.225.246.0/24 maxlen: 24
185.225.245.0/24 maxlen: 24
185.225.244.0/24 maxlen: 24
89.190.154.0/24 maxlen: 24
89.190.153.0/24 maxlen: 24
89.190.155.0/24 maxlen: 24
185.225.247.0/24 maxlen: 24
185.246.12.0/23 maxlen: 23
185.246.15.0/24 maxlen: 24
185.246.14.0/24 maxlen: 24
185.246.13.0/24 maxlen: 24
185.246.12.0/24 maxlen: 24
178.19.40.0/22 maxlen: 22
45.137.12.0/23 maxlen: 23
185.244.231.0/24 maxlen: 24
185.244.230.0/24 maxlen: 24
185.244.229.0/24 maxlen: 24
185.244.228.0/24 maxlen: 24
185.244.228.0/23 maxlen: 23
185.229.216.0/22 maxlen: 22
194.32.112.0/24 maxlen: 24
194.32.112.0/22 maxlen: 22
194.32.115.0/24 maxlen: 24
194.32.114.0/24 maxlen: 24
194.32.113.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 Nov 2023 11:13:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ae:94:ec:4b:a4:7d:80:5e:32:49:ed:08:24:18:d1:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Nov 8 10:57:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ddc65842f9537c190c0dddda03f0b02a7f9ff330
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:69:60:1c:9d:67:97:82:33:e0:bb:14:9e:7a:
70:a4:81:f0:1e:74:74:e6:eb:e6:58:28:df:27:dc:
dd:95:88:92:44:a9:87:69:b5:3e:16:2f:af:1e:1f:
ae:aa:06:30:6d:cc:0b:66:33:24:af:a4:c2:63:b1:
ea:69:34:bd:a8:a6:fe:cd:da:ac:c7:98:42:3c:e0:
dc:72:51:87:e3:f1:69:c5:b9:75:6f:4e:9d:d9:3b:
ef:31:e9:f9:d2:c0:52:e6:60:cd:71:d1:50:8b:85:
58:09:80:5c:6c:ff:5f:ac:62:29:15:0b:86:d6:ce:
e5:c5:45:eb:eb:f6:cb:cf:75:a4:b8:91:f1:e6:80:
61:1f:68:58:51:67:7b:61:aa:f7:5c:fc:6c:3d:12:
ad:b4:62:48:f5:5b:08:d9:45:68:15:e3:bb:43:34:
44:d9:13:d0:84:de:ad:99:c8:e1:1c:32:f0:c7:48:
0e:d2:8e:98:fa:28:dc:0a:c3:df:87:21:24:9a:87:
48:31:55:c3:aa:16:56:54:6c:cf:a5:6e:1f:91:40:
31:a6:4f:a8:a3:65:77:80:dd:38:e5:5c:72:c3:f2:
33:08:08:6c:16:9f:69:79:16:a4:a0:ee:28:a3:4a:
4c:59:06:c6:f7:c6:e7:b7:c9:cb:79:7f:d3:37:05:
92:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:C6:58:42:F9:53:7C:19:0C:0D:DD:DA:03:F0:B0:2A:7F:9F:F3:30
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/3cZYQvlTfBkMDd3aA_CwKn-f8zA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.15.4.0/22
45.137.12.0/23
89.190.152.0/22
178.19.40.0/22
185.28.51.0/24
185.225.244.0/22
185.229.216.0/22
185.231.186.0/23
185.244.228.0/22
185.246.12.0/22
194.31.104.0/22
194.32.112.0/22
Signature Algorithm: sha256WithRSAEncryption
04:fb:87:0a:82:32:96:6e:a4:b3:92:27:8c:84:28:cb:a6:f1:
25:ab:b4:cf:80:c3:8e:ab:08:43:df:47:5a:79:3a:18:5b:15:
b5:8b:19:cc:48:b2:eb:1d:cb:61:3d:a7:ec:4b:ce:8d:e5:56:
66:56:a3:1f:8a:ce:68:a4:8a:a4:fa:45:8a:5f:5e:72:eb:2d:
d7:e2:9a:78:b7:aa:b2:55:76:66:8d:f3:94:48:8c:ab:18:54:
95:ac:f6:f3:80:fa:28:d4:2a:8e:77:e0:ca:16:53:55:9c:ee:
71:9d:1a:b1:ee:d4:3d:b2:97:33:3e:9b:dd:30:e2:30:61:c4:
c7:96:64:50:76:27:f8:55:a3:b2:62:2f:e6:4c:6d:fe:81:cc:
e5:0e:4d:b6:17:ae:7a:7d:af:d1:c9:3d:99:49:a8:67:f0:cd:
b5:09:76:99:7e:27:1f:1d:28:51:c8:34:3e:e7:90:8f:46:2d:
3f:7c:18:1a:3d:74:f3:a3:2e:de:4e:a2:26:78:23:78:0c:0a:
9e:a4:93:25:58:4a:96:47:d7:4a:4e:aa:c2:3f:cb:21:01:d9:
df:7c:5d:6d:16:b3:eb:5e:e2:52:96:56:db:87:a5:13:9b:c2:
ae:e4:9b:51:5c:bf:b7:0d:32:dc:75:41:44:c4:96:dc:66:f1:
92:66:8b:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:56 2024 by rpki-client on console-fra.rpki-client.org