Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/N6_BIMwyghvwjFxwevYea5CHJpU.roa
File: N6_BIMwyghvwjFxwevYea5CHJpU.roa (raw, json)
Hash identifier: MBvxFlwnF65OiW3PzK/oZ5zgdR2s8BPbFfiHmuf/IB0=
Subject key identifier: 37:AF:C1:20:CC:32:82:1B:F0:8C:5C:70:7A:F6:1E:6B:90:87:26:95
Certificate issuer: /CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Certificate serial: 018CC56DF51A134EC2AAB725859FEFCD3088
Authority key identifier: 05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/N6_BIMwyghvwjFxwevYea5CHJpU.roa
Signing time: Mon 01 Jan 2024 14:29:26 +0000
ROA not before: Mon 01 Jan 2024 14:29:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41789
IP address blocks: 31.129.17.0/24 maxlen: 24
31.129.16.0/24 maxlen: 24
31.129.18.0/24 maxlen: 24
31.129.20.0/24 maxlen: 24
31.129.19.0/24 maxlen: 24
31.129.24.0/24 maxlen: 24
31.129.23.0/24 maxlen: 24
31.129.29.0/24 maxlen: 24
31.129.28.0/24 maxlen: 24
31.129.27.0/24 maxlen: 24
31.129.26.0/24 maxlen: 24
31.129.31.0/24 maxlen: 24
31.129.25.0/24 maxlen: 24
141.98.234.0/24 maxlen: 24
185.166.196.0/23 maxlen: 24
94.198.216.0/22 maxlen: 24
81.200.144.0/21 maxlen: 24
31.129.0.0/20 maxlen: 24
81.200.152.0/22 maxlen: 24
81.200.156.0/23 maxlen: 24
46.19.64.0/22 maxlen: 24
37.220.80.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 29 Jan 2024 11:08:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6d:f5:1a:13:4e:c2:aa:b7:25:85:9f:ef:cd:30:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Validity
Not Before: Jan 1 14:29:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=37afc120cc32821bf08c5c707af61e6b90872695
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:e3:3f:ad:35:0f:e4:66:d4:4e:a8:d4:a9:b7:
f7:6d:c8:75:fb:5b:2f:7a:3c:c9:2c:de:2a:89:23:
86:57:99:02:c3:92:7f:f5:73:16:11:9d:70:6c:cf:
b3:30:a7:f2:ea:ea:60:ac:79:58:d5:d7:28:26:ab:
9f:f1:ef:8a:55:71:8e:fd:c7:2f:b3:16:e1:f2:f4:
b4:7c:db:18:9e:f9:1f:48:cd:f5:3b:9a:45:67:94:
e5:29:36:8d:30:cb:f2:b6:e0:d6:61:58:30:d2:03:
d5:c6:b2:45:a9:10:81:14:c7:01:2f:72:d0:14:03:
8e:de:18:26:c4:b9:bb:7e:21:33:fb:48:01:0a:60:
92:71:22:2d:58:b3:00:14:d9:24:ab:b9:ea:f4:1f:
e2:a4:c3:b6:b8:1a:0e:5a:77:bd:bf:fb:9f:e2:eb:
fd:d4:99:45:c9:87:da:9e:a3:9b:c9:25:02:20:ce:
d2:61:27:c9:37:6e:e7:82:7e:36:aa:c9:e0:57:0a:
72:5a:c3:22:a0:eb:0a:b7:20:bf:fe:83:82:28:a7:
cd:50:11:92:1f:78:f5:84:03:11:db:28:d0:18:cf:
20:6f:da:17:3f:f4:63:48:d6:5e:fd:27:da:9b:9a:
60:55:24:cc:61:f4:5c:26:0b:88:0a:71:af:9f:f7:
e3:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:AF:C1:20:CC:32:82:1B:F0:8C:5C:70:7A:F6:1E:6B:90:87:26:95
X509v3 Authority Key Identifier:
keyid:05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/N6_BIMwyghvwjFxwevYea5CHJpU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.129.0.0-31.129.20.255
31.129.23.0-31.129.29.255
31.129.31.0/24
37.220.80.0/22
46.19.64.0/22
81.200.144.0-81.200.157.255
94.198.216.0/22
141.98.234.0/24
185.166.196.0/23
Signature Algorithm: sha256WithRSAEncryption
8a:6b:c2:4d:e1:0d:fc:31:ee:a1:04:54:79:dc:24:d4:6a:d1:
73:01:51:75:8e:c3:ed:63:0b:c0:14:e8:88:cc:86:34:39:bc:
0a:af:9e:61:56:a6:3c:ce:f7:b7:27:5d:93:54:93:59:48:bf:
8d:e0:bf:c5:7c:e9:1d:f8:d0:f7:3c:91:ce:ca:09:18:39:0b:
21:2a:e5:df:ac:44:90:3f:f5:c7:ba:a9:c2:25:c0:3c:cd:9a:
9f:4a:41:d4:36:63:19:db:b9:82:a8:93:74:13:57:56:36:98:
84:2b:60:33:a7:5a:05:35:3d:fb:0e:af:63:0c:74:76:b7:ca:
65:c9:0f:3a:cf:ed:c7:e5:86:9f:7d:a5:91:66:c1:b3:3c:34:
14:43:fc:eb:32:4f:b0:93:50:0d:55:89:ab:9f:46:cd:0e:3c:
91:e4:83:34:0d:85:21:39:04:dd:de:b9:09:9a:18:67:1d:f0:
10:43:92:73:34:38:d6:81:40:34:5d:47:60:1f:86:1b:58:b3:
60:84:47:c6:02:39:33:78:01:14:2e:4d:b4:8d:68:cd:32:8b:
75:3e:b0:36:71:95:db:61:06:27:a5:63:39:7e:51:ac:79:c1:
f1:38:5d:fa:cf:9f:63:3f:74:cc:af:b7:af:18:8e:ba:45:37:
0a:aa:eb:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 29 13:56:24 2024 by rpki-client on console-ams.rpki-client.org