Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/Pe1MK3QyII_nDocJTyyeyMoCjLM.roa
File: Pe1MK3QyII_nDocJTyyeyMoCjLM.roa (raw, json)
Hash identifier: FCWGGcEWhoaUMOoV7JztrCFdhmZAo26phCH4ZEWKJ2c=
Subject key identifier: 3D:ED:4C:2B:74:32:20:8F:E7:0E:87:09:4F:2C:9E:C8:CA:02:8C:B3
Certificate issuer: /CN=2f814adc1d5209e098f078adbc856bad83b749c2
Certificate serial: 0190FD1C3D7C35C15F3292800F7C3C277589
Authority key identifier: 2F:81:4A:DC:1D:52:09:E0:98:F0:78:AD:BC:85:6B:AD:83:B7:49:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L4FK3B1SCeCY8HitvIVrrYO3ScI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/Pe1MK3QyII_nDocJTyyeyMoCjLM.roa
Signing time: Mon 29 Jul 2024 06:10:04 +0000
ROA not before: Mon 29 Jul 2024 06:10:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60976
IP address blocks: 31.214.168.0/21 maxlen: 21
31.214.168.0/24 maxlen: 24
31.214.169.0/24 maxlen: 24
31.214.170.0/24 maxlen: 24
31.214.171.0/24 maxlen: 24
31.214.172.0/24 maxlen: 24
31.214.173.0/24 maxlen: 24
31.214.174.0/24 maxlen: 24
31.214.175.0/24 maxlen: 24
31.214.248.0/21 maxlen: 21
31.214.248.0/24 maxlen: 24
31.214.249.0/24 maxlen: 24
31.214.250.0/24 maxlen: 24
31.214.251.0/24 maxlen: 24
31.214.252.0/24 maxlen: 24
31.214.253.0/24 maxlen: 24
31.214.254.0/24 maxlen: 24
31.214.255.0/24 maxlen: 24
37.10.64.0/22 maxlen: 22
37.10.109.0/24 maxlen: 24
37.228.136.0/22 maxlen: 22
37.228.136.0/24 maxlen: 24
37.228.137.0/24 maxlen: 24
37.228.138.0/24 maxlen: 24
37.228.139.0/24 maxlen: 24
82.99.215.0/24 maxlen: 24
82.99.216.0/22 maxlen: 22
82.99.216.0/24 maxlen: 24
82.99.217.0/24 maxlen: 24
82.99.218.0/24 maxlen: 24
82.99.219.0/24 maxlen: 24
82.99.238.0/24 maxlen: 24
82.99.242.0/24 maxlen: 24
82.99.243.0/24 maxlen: 24
82.99.244.0/24 maxlen: 24
95.156.236.0/24 maxlen: 24
95.156.237.0/24 maxlen: 24
95.156.252.0/22 maxlen: 22
95.156.252.0/24 maxlen: 24
95.156.253.0/24 maxlen: 24
95.156.254.0/24 maxlen: 24
95.156.255.0/24 maxlen: 24
109.230.200.0/24 maxlen: 24
109.230.204.0/22 maxlen: 22
109.230.204.0/24 maxlen: 24
109.230.205.0/24 maxlen: 24
109.230.206.0/24 maxlen: 24
109.230.207.0/24 maxlen: 24
109.230.221.0/24 maxlen: 24
109.230.223.0/24 maxlen: 24
109.230.242.0/24 maxlen: 24
109.230.251.0/24 maxlen: 24
134.255.200.0/21 maxlen: 21
134.255.200.0/24 maxlen: 24
134.255.201.0/24 maxlen: 24
134.255.202.0/24 maxlen: 24
134.255.203.0/24 maxlen: 24
134.255.204.0/24 maxlen: 24
134.255.205.0/24 maxlen: 24
134.255.206.0/24 maxlen: 24
134.255.207.0/24 maxlen: 24
185.10.71.0/24 maxlen: 24
185.13.228.0/22 maxlen: 22
185.13.228.0/24 maxlen: 24
185.13.229.0/24 maxlen: 24
185.13.230.0/24 maxlen: 24
185.13.231.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 29 Jul 2024 06:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:fd:1c:3d:7c:35:c1:5f:32:92:80:0f:7c:3c:27:75:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f814adc1d5209e098f078adbc856bad83b749c2
Validity
Not Before: Jul 29 06:10:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3ded4c2b7432208fe70e87094f2c9ec8ca028cb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ff:f1:af:74:51:c6:4d:04:c3:60:ef:3e:ba:
b0:46:f1:4f:7c:44:a7:04:7c:fb:24:88:ca:da:32:
0a:8b:1b:63:8a:ca:4d:c7:78:65:9d:13:ed:e3:f7:
92:28:cf:8f:2e:ca:df:c5:1a:48:05:22:61:0c:75:
43:da:f4:5a:2f:3d:73:18:29:85:c1:9a:af:ee:b1:
39:93:31:a8:8b:e2:40:07:0e:65:16:89:ca:cb:37:
9b:41:6b:75:07:84:89:bb:79:5d:3b:58:b9:81:69:
c9:db:58:70:56:b8:58:7b:0d:ec:1a:17:e1:d1:59:
22:85:f6:4c:ae:54:86:da:a8:7b:e9:40:2a:86:bb:
ca:56:08:b2:37:2d:0f:eb:93:46:c8:05:51:78:6a:
a0:eb:a8:01:63:d2:c6:f4:e2:a2:72:8e:e5:9c:ec:
bd:ac:ec:e6:fb:f1:fb:06:dd:a3:95:63:60:a4:e3:
3e:83:39:82:d8:cb:e2:2b:66:5e:ea:09:79:2f:d8:
8c:78:c5:60:f4:c0:04:6c:7e:53:bf:da:f0:10:f4:
f9:ae:8a:a7:a8:a4:5e:08:1b:37:51:78:07:50:54:
fa:90:c4:2f:e3:95:b2:06:82:20:05:7d:e8:0a:89:
50:8c:3f:45:5d:6c:ab:a8:31:8f:f3:25:33:54:c1:
1f:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:ED:4C:2B:74:32:20:8F:E7:0E:87:09:4F:2C:9E:C8:CA:02:8C:B3
X509v3 Authority Key Identifier:
keyid:2F:81:4A:DC:1D:52:09:E0:98:F0:78:AD:BC:85:6B:AD:83:B7:49:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L4FK3B1SCeCY8HitvIVrrYO3ScI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/Pe1MK3QyII_nDocJTyyeyMoCjLM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/L4FK3B1SCeCY8HitvIVrrYO3ScI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.214.168.0/21
31.214.248.0/21
37.10.64.0/22
37.10.109.0/24
37.228.136.0/22
82.99.215.0-82.99.219.255
82.99.238.0/24
82.99.242.0-82.99.244.255
95.156.236.0/23
95.156.252.0/22
109.230.200.0/24
109.230.204.0/22
109.230.221.0/24
109.230.223.0/24
109.230.242.0/24
109.230.251.0/24
134.255.200.0/21
185.10.71.0/24
185.13.228.0/22
Signature Algorithm: sha256WithRSAEncryption
53:d7:0d:2e:4c:c1:d4:43:ef:d5:31:2e:b1:4a:15:13:33:89:
67:48:61:09:b6:d0:aa:4f:d3:87:7a:b8:77:75:c7:ba:7b:73:
a7:57:2b:d6:55:0f:cc:7b:54:f1:3d:7f:ce:24:18:18:e4:2d:
00:92:35:c6:83:57:3f:7e:75:80:23:dd:0a:e8:d4:d6:42:93:
5a:39:78:01:6b:6d:08:a5:69:11:1f:cf:70:83:4d:ac:69:fb:
69:db:b6:f4:87:df:0f:eb:ad:04:2c:5a:31:25:20:e8:e1:10:
1f:eb:8b:c1:d9:f4:e7:3c:0f:be:dd:47:50:5b:3b:de:8d:63:
1e:84:4c:fb:4e:ba:9c:29:92:fb:25:64:1c:6b:7d:4d:22:71:
46:87:6d:d3:af:c1:d4:8e:97:bf:1e:a0:42:f7:ff:02:ec:0c:
ea:8e:83:92:17:13:6a:da:bd:80:f5:d4:43:db:0b:e0:f3:24:
6f:13:9c:71:f6:ed:0a:4e:57:d2:29:66:4d:4b:f4:dd:9d:c6:
1f:b4:98:8d:a6:ca:8b:0a:b4:ea:ff:ce:d3:d0:1d:cf:44:af:
42:2d:84:fd:f4:9c:70:75:71:87:3e:41:8d:e7:02:a8:b2:7c:
1d:e3:94:4a:6e:79:bd:2d:04:88:65:f6:44:43:65:0a:9b:f0:
2d:8e:c6:7b
-----BEGIN CERTIFICATE-----
MIIFfjCCBGagAwIBAgISAZD9HD18NcFfMpKAD3w8J3WJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJmODE0YWRjMWQ1MjA5ZTA5OGYwNzhhZGJjODU2YmFkODNi
NzQ5YzIwHhcNMjQwNzI5MDYxMDA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZGVkNGMyYjc0MzIyMDhmZTcwZTg3MDk0ZjJjOWVjOGNhMDI4Y2IzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsv/xr3RRxk0Ew2DvPrqwRvFPfESn
BHz7JIjK2jIKixtjispNx3hlnRPt4/eSKM+PLsrfxRpIBSJhDHVD2vRaLz1zGCmF
wZqv7rE5kzGoi+JABw5lFonKyzebQWt1B4SJu3ldO1i5gWnJ21hwVrhYew3sGhfh
0VkihfZMrlSG2qh76UAqhrvKVgiyNy0P65NGyAVReGqg66gBY9LG9OKico7lnOy9
rOzm+/H7Bt2jlWNgpOM+gzmC2MviK2Ze6gl5L9iMeMVg9MAEbH5Tv9rwEPT5roqn
qKReCBs3UXgHUFT6kMQv45WyBoIgBX3oColQjD9FXWyrqDGP8yUzVMEf2wIDAQAB
o4ICijCCAoYwHQYDVR0OBBYEFD3tTCt0MiCP5w6HCU8snsjKAoyzMB8GA1UdIwQY
MBaAFC+BStwdUgngmPB4rbyFa62Dt0nCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTDRGSzNCMVNDZUNZOEhpdHZJVnJyWU8zU2NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi8xM2UxMmEtMmJhYy00NzUyLTk5N2Qt
ZGY4NmI2ZGQ5OTdjLzEvUGUxTUszUXlJSV9uRG9jSlR5eWV5TW9DakxNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi8xM2UxMmEtMmJhYy00NzUyLTk5N2QtZGY4NmI2ZGQ5OTdj
LzEvTDRGSzNCMVNDZUNZOEhpdHZJVnJyWU8zU2NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGfBggrBgEFBQcBBwEB/wSBjzCBjDCBiQQCAAEwgYIDBAMf
1qgDBAMf1vgDBAIlCkADBAAlCm0DBAIl5IgwDAMEAFJj1wMEAlJj2AMEAFJj7jAM
AwQBUmPyAwQAUmP0AwQBX5zsAwQCX5z8AwQAbebIAwQCbebMAwQAbebdAwQAbebf
AwQAbebyAwQAbeb7AwQDhv/IAwQAuQpHAwQCuQ3kMA0GCSqGSIb3DQEBCwUAA4IB
AQBT1w0uTMHUQ+/VMS6xShUTM4lnSGEJttCqT9OHerh3dce6e3OnVyvWVQ/Me1Tx
PX/OJBgY5C0AkjXGg1c/fnWAI90K6NTWQpNaOXgBa20IpWkRH89wg02saftp27b0
h98P660ELFoxJSDo4RAf64vB2fTnPA++3UdQWzvejWMehEz7TrqcKZL7JWQca31N
InFGh23Tr8HUjpe/HqBC9/8C7AzqjoOSFxNq2r2A9dRD2wvg8yRvE5xx9u0KTlfS
KWZNS/TdncYftJiNpsqLCrTq/87T0B3PRK9CLYT99JxwdXGHPkGN5wKosnwd45RK
bnm9LQSIZfZEQ2UKm/AtjsZ7
-----END CERTIFICATE-----
Generated at Mon Jul 29 09:31:53 2024 by rpki-client on console-ams.rpki-client.org