Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/6eXWwXGJFOaV-5mLfCJFKGR4fDo.roa
File: 6eXWwXGJFOaV-5mLfCJFKGR4fDo.roa (raw, json)
Hash identifier: rugHJT8xd0Be8XZwBOOZ9em4Hd8d8Cyry6/Pm7/ImTs=
Subject key identifier: E9:E5:D6:C1:71:89:14:E6:95:FB:99:8B:7C:22:45:28:64:78:7C:3A
Certificate issuer: /CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Certificate serial: 018BB8F04A003771A06365EC914A24DC9CDC
Authority key identifier: 05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/6eXWwXGJFOaV-5mLfCJFKGR4fDo.roa
Signing time: Fri 10 Nov 2023 11:13:57 +0000
ROA not before: Fri 10 Nov 2023 11:13:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41789
IP address blocks: 31.129.17.0/24 maxlen: 24
31.129.16.0/24 maxlen: 24
31.129.18.0/24 maxlen: 24
31.129.20.0/24 maxlen: 24
31.129.19.0/24 maxlen: 24
31.129.24.0/24 maxlen: 24
31.129.23.0/24 maxlen: 24
31.129.29.0/24 maxlen: 24
31.129.28.0/24 maxlen: 24
31.129.27.0/24 maxlen: 24
31.129.26.0/24 maxlen: 24
31.129.31.0/24 maxlen: 24
31.129.25.0/24 maxlen: 24
141.98.234.0/24 maxlen: 24
185.166.196.0/23 maxlen: 24
94.198.216.0/22 maxlen: 24
81.200.144.0/21 maxlen: 24
31.129.0.0/20 maxlen: 24
81.200.152.0/22 maxlen: 24
81.200.156.0/23 maxlen: 24
46.19.64.0/22 maxlen: 24
37.220.80.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b8:f0:4a:00:37:71:a0:63:65:ec:91:4a:24:dc:9c:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Validity
Not Before: Nov 10 11:13:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e9e5d6c1718914e695fb998b7c22452864787c3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:67:52:f5:7d:5a:91:37:7f:6c:84:32:5f:9c:
1f:7f:c6:3f:a9:4c:30:e7:a8:2b:dd:a6:f1:4d:3b:
ac:be:1c:72:46:6c:61:ca:28:2a:a1:2c:ac:45:df:
20:d8:11:64:c7:5b:82:ee:13:cf:19:bd:d4:50:6c:
fa:95:3a:19:c0:81:d6:c6:d2:30:3c:41:88:04:64:
8b:c7:2b:79:09:ee:32:04:81:2b:9a:97:98:81:37:
f6:14:d8:97:1a:8c:fd:c8:28:b3:f6:81:39:f6:1b:
32:84:68:36:3a:7c:9f:60:9a:0c:fd:14:d5:0a:9b:
63:4a:4f:53:95:30:3c:fb:82:8c:f4:37:9e:bc:93:
e9:6e:12:ad:8c:9e:c7:0e:58:a1:f1:38:05:cf:3e:
d4:e3:2c:52:25:b0:5b:91:82:e2:56:b0:43:cb:92:
f7:e7:60:b5:ae:9b:57:40:bb:cc:14:a2:67:d3:ed:
86:61:ee:dc:bd:1e:11:97:fe:d2:c0:09:3b:da:de:
55:85:2f:2a:92:e5:e7:74:23:18:cc:1d:a5:35:c8:
69:19:39:a2:07:d0:a7:6d:37:cc:87:27:7e:2d:7f:
14:bf:9b:6f:6e:70:9d:6c:f9:f1:68:d5:93:c8:fd:
8f:52:b5:bc:5d:bc:cf:d2:4f:de:cc:78:6c:94:a8:
17:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:E5:D6:C1:71:89:14:E6:95:FB:99:8B:7C:22:45:28:64:78:7C:3A
X509v3 Authority Key Identifier:
keyid:05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/6eXWwXGJFOaV-5mLfCJFKGR4fDo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.129.0.0-31.129.20.255
31.129.23.0-31.129.29.255
31.129.31.0/24
37.220.80.0/22
46.19.64.0/22
81.200.144.0-81.200.157.255
94.198.216.0/22
141.98.234.0/24
185.166.196.0/23
Signature Algorithm: sha256WithRSAEncryption
a5:87:21:4a:af:29:5a:d5:71:97:4a:bf:20:09:d0:3c:79:b3:
69:cf:da:68:24:13:b6:33:25:ea:1a:f6:f7:75:78:d8:66:27:
d6:9a:88:b4:e5:89:9a:fd:8e:9e:bb:a5:a4:83:57:b5:3a:c0:
4f:79:58:89:08:cf:34:52:73:9d:a0:01:9b:7a:e5:7b:ec:23:
5c:71:30:2f:db:19:32:bd:3c:1c:5a:e1:31:da:12:bd:2f:58:
5c:b7:c8:d9:09:6d:70:00:89:92:b1:25:a7:40:1c:54:be:19:
59:de:d7:80:b9:c9:9a:85:cb:45:ac:a6:bc:44:2b:cd:e8:3a:
1b:86:94:70:ec:d3:65:bf:6d:e4:81:72:3a:4d:23:a1:b0:5c:
87:b9:17:fe:ba:ce:5d:3d:3b:a2:ae:f0:2f:49:fb:f7:72:96:
92:b2:b4:a8:f0:d9:31:78:d5:b2:69:d4:f3:5c:49:73:5d:e8:
f8:50:2d:cd:85:a6:71:5e:d0:03:9e:0d:ca:93:1a:4a:af:37:
88:d0:ec:bf:44:e8:02:31:6f:7e:57:91:bf:2e:3f:ec:1f:bc:
32:8a:5a:6b:10:b6:47:1a:4f:54:f3:a8:0c:fb:d4:fa:7a:2c:
0d:47:50:c3:32:fa:bd:ea:5a:44:44:25:57:f0:76:40:42:04:
48:a5:eb:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:26:15 2024 by rpki-client on console-fra.rpki-client.org