Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/a9352e-9a3a-49aa-ad77-7be6eb6bce87/1/LzGdjGkXpv8FLQHKj2mp9JQBiHc.roa
File: LzGdjGkXpv8FLQHKj2mp9JQBiHc.roa (raw, json)
Hash identifier: COoDggh250Cxvt9ycIpPZ6uIdUb4pZ9tiC5dWoboSOw=
Subject key identifier: 2F:31:9D:8C:69:17:A6:FF:05:2D:01:CA:8F:69:A9:F4:94:01:88:77
Certificate issuer: /CN=9e95a119d9c1a5d6e3f3e21f6fa863d87a2e4b0d
Certificate serial: 0190BFA2C745B9FCC97C3A06DA8D675D0535
Authority key identifier: 9E:95:A1:19:D9:C1:A5:D6:E3:F3:E2:1F:6F:A8:63:D8:7A:2E:4B:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWhGdnBpdbj8-Ifb6hj2HouSw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/a9352e-9a3a-49aa-ad77-7be6eb6bce87/1/LzGdjGkXpv8FLQHKj2mp9JQBiHc.roa
Signing time: Wed 17 Jul 2024 07:40:34 +0000
ROA not before: Wed 17 Jul 2024 07:40:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56478
IP address blocks: 31.14.248.0/22 maxlen: 22
37.156.72.0/22 maxlen: 22
89.32.120.0/22 maxlen: 22
89.34.164.0/22 maxlen: 22
89.35.196.0/22 maxlen: 22
89.36.64.0/21 maxlen: 21
89.39.136.0/21 maxlen: 21
89.44.40.0/22 maxlen: 22
93.115.192.0/22 maxlen: 22
141.0.144.0/21 maxlen: 21
141.0.152.0/21 maxlen: 21
185.24.120.0/22 maxlen: 22
188.172.144.0/20 maxlen: 20
188.210.208.0/21 maxlen: 21
188.210.208.0/22 maxlen: 22
188.211.160.0/22 maxlen: 22
188.213.136.0/22 maxlen: 22
188.214.8.0/21 maxlen: 21
Validation: Failed, certificate revoked on Wed 17 Jul 2024 09:20:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:bf:a2:c7:45:b9:fc:c9:7c:3a:06:da:8d:67:5d:05:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a119d9c1a5d6e3f3e21f6fa863d87a2e4b0d
Validity
Not Before: Jul 17 07:40:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2f319d8c6917a6ff052d01ca8f69a9f494018877
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:a8:c4:06:ae:c4:e3:30:43:2b:bb:b0:a5:16:
d7:18:86:2f:8a:3a:f6:8c:b3:cd:57:96:63:ad:31:
5f:97:8a:e3:4b:1a:c1:d6:87:9e:02:3c:a8:8d:51:
dc:27:d1:dc:66:d7:9c:02:eb:40:1f:22:7c:9c:80:
e6:16:1a:c8:b9:58:3f:b7:ac:a8:ca:1c:17:78:82:
0a:8c:19:a4:b0:5c:dc:73:f4:39:07:46:2f:fe:4e:
c1:5c:aa:29:cb:06:92:75:09:c6:b8:21:1a:68:15:
e5:77:18:e2:ac:c8:6d:a3:75:e9:a2:5e:9b:c3:3a:
bb:0e:e3:ad:67:c1:c0:6d:b4:f2:e6:17:0a:7a:f0:
ac:9d:0b:c9:47:d9:91:06:28:f4:e4:c6:64:d2:fc:
07:ac:9f:ca:16:c4:d0:7c:f7:4b:b9:af:b6:e9:15:
19:28:fc:4e:b8:e7:f1:49:44:2a:e8:4e:f8:83:9a:
ab:55:e8:00:d3:05:e4:09:89:2c:bb:96:c8:ed:e4:
57:87:3a:79:82:d8:6a:3d:f2:10:e9:46:19:53:43:
27:56:db:bf:41:ef:f9:13:00:72:73:2d:7d:7d:cb:
19:3f:8f:99:de:8f:17:48:ce:b4:78:d3:15:4f:00:
ed:7f:ad:43:a9:b6:cd:9b:b6:cc:29:ac:78:f8:2a:
79:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:31:9D:8C:69:17:A6:FF:05:2D:01:CA:8F:69:A9:F4:94:01:88:77
X509v3 Authority Key Identifier:
keyid:9E:95:A1:19:D9:C1:A5:D6:E3:F3:E2:1F:6F:A8:63:D8:7A:2E:4B:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWhGdnBpdbj8-Ifb6hj2HouSw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/a9352e-9a3a-49aa-ad77-7be6eb6bce87/1/LzGdjGkXpv8FLQHKj2mp9JQBiHc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/a9352e-9a3a-49aa-ad77-7be6eb6bce87/1/npWhGdnBpdbj8-Ifb6hj2HouSw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.248.0/22
37.156.72.0/22
89.32.120.0/22
89.34.164.0/22
89.35.196.0/22
89.36.64.0/21
89.39.136.0/21
89.44.40.0/22
93.115.192.0/22
141.0.144.0/20
185.24.120.0/22
188.172.144.0/20
188.210.208.0/21
188.211.160.0/22
188.213.136.0/22
188.214.8.0/21
Signature Algorithm: sha256WithRSAEncryption
3b:65:78:c8:d2:d3:24:d8:2a:9c:39:b2:ae:ca:99:17:a7:d1:
fe:27:04:30:81:ab:13:ba:14:7c:8d:57:eb:18:83:cc:42:20:
ca:68:14:dc:bd:86:5e:e7:c6:c4:bc:6d:18:86:46:cf:77:51:
b8:cc:8e:71:ca:20:83:37:61:98:9f:f5:59:21:29:6e:dd:90:
8d:26:28:78:b7:13:91:17:8e:8d:37:72:5e:92:74:ab:94:9c:
75:2a:da:dc:e2:4b:8a:9f:fc:c4:a3:26:74:81:82:67:1f:b2:
5e:4b:40:a4:cf:cd:c1:ca:a2:64:75:60:86:48:d0:96:5e:74:
8a:d5:83:d3:5c:bb:dc:c6:4a:07:58:57:20:38:65:94:21:40:
f8:d0:52:81:13:fe:03:6b:77:14:d6:11:17:4c:1f:fd:fa:d2:
94:b1:bd:ae:f9:0b:93:b7:42:14:bb:50:c7:df:d6:de:ca:02:
74:52:33:32:13:c3:59:f7:07:5d:4f:2a:ae:0a:10:6f:2c:2b:
29:00:2e:d9:3e:6b:a9:0f:76:c6:83:ba:cd:17:98:f8:86:8a:
e5:ba:db:6a:7c:bf:47:0d:28:98:bb:c6:0a:fa:26:e5:c9:76:
f9:0d:9d:c9:7b:8c:d2:dd:ca:21:7c:f0:a8:51:3b:4d:c6:3a:
ae:24:7a:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 05:12:19 2025 by rpki-client