Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/k8ns8SP66ZwMo4kzk_q83LVWgnE.roa
File: k8ns8SP66ZwMo4kzk_q83LVWgnE.roa (raw, json)
Hash identifier: 5PC7xsFozBf/0FqIeCxbHNdW3fjMKgm5WgZaQnPjfOk=
Subject key identifier: 93:C9:EC:F1:23:FA:E9:9C:0C:A3:89:33:93:FA:BC:DC:B5:56:82:71
Certificate issuer: /CN=2f814adc1d5209e098f078adbc856bad83b749c2
Certificate serial: 018F5F6AA9464FCC1C4D684D8FF626CAC48F
Authority key identifier: 2F:81:4A:DC:1D:52:09:E0:98:F0:78:AD:BC:85:6B:AD:83:B7:49:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L4FK3B1SCeCY8HitvIVrrYO3ScI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/k8ns8SP66ZwMo4kzk_q83LVWgnE.roa
Signing time: Thu 09 May 2024 22:12:56 +0000
ROA not before: Thu 09 May 2024 22:12:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16322
IP address blocks: 31.214.132.0/23 maxlen: 23
31.214.146.0/23 maxlen: 23
31.214.146.0/24 maxlen: 24
31.214.147.0/24 maxlen: 24
31.214.154.0/24 maxlen: 24
31.214.168.0/21 maxlen: 21
31.214.168.0/23 maxlen: 23
31.214.170.0/23 maxlen: 23
31.214.172.0/22 maxlen: 22
31.214.200.0/23 maxlen: 23
31.214.228.0/22 maxlen: 22
31.214.248.0/21 maxlen: 21
37.10.64.0/22 maxlen: 22
37.10.109.0/24 maxlen: 24
37.10.117.0/24 maxlen: 24
37.228.131.0/24 maxlen: 24
37.228.133.0/24 maxlen: 24
37.228.135.0/24 maxlen: 24
37.228.136.0/22 maxlen: 22
46.41.192.0/18 maxlen: 18
46.41.192.0/19 maxlen: 19
46.41.192.0/20 maxlen: 20
46.41.224.0/19 maxlen: 19
46.41.224.0/20 maxlen: 20
46.251.224.0/24 maxlen: 24
46.251.226.0/24 maxlen: 24
46.251.237.0/24 maxlen: 24
82.99.192.0/18 maxlen: 18
82.99.192.0/19 maxlen: 22
82.99.192.0/24 maxlen: 24
82.99.193.0/24 maxlen: 24
82.99.195.0/24 maxlen: 24
82.99.196.0/24 maxlen: 24
82.99.198.0/24 maxlen: 24
82.99.201.0/24 maxlen: 24
82.99.204.0/24 maxlen: 24
82.99.205.0/24 maxlen: 24
82.99.206.0/24 maxlen: 24
82.99.209.0/24 maxlen: 24
82.99.210.0/24 maxlen: 24
82.99.212.0/24 maxlen: 24
82.99.216.0/22 maxlen: 22
82.99.224.0/19 maxlen: 19
82.99.225.0/24 maxlen: 24
82.99.228.0/24 maxlen: 24
82.99.230.0/24 maxlen: 24
82.99.231.0/24 maxlen: 24
82.99.232.0/24 maxlen: 24
82.99.233.0/24 maxlen: 24
82.99.235.0/24 maxlen: 24
82.99.240.0/24 maxlen: 24
82.99.249.0/24 maxlen: 24
82.99.250.0/24 maxlen: 24
82.99.251.0/24 maxlen: 24
95.156.222.0/23 maxlen: 23
95.156.233.0/24 maxlen: 24
95.156.234.0/23 maxlen: 23
95.156.236.0/23 maxlen: 23
95.156.248.0/23 maxlen: 23
109.230.192.0/23 maxlen: 23
109.230.200.0/24 maxlen: 24
109.230.204.0/22 maxlen: 22
109.230.221.0/24 maxlen: 24
109.230.223.0/24 maxlen: 24
109.230.242.0/24 maxlen: 24
109.230.246.0/23 maxlen: 23
109.230.246.0/24 maxlen: 24
109.230.247.0/24 maxlen: 24
109.230.251.0/24 maxlen: 24
134.255.196.0/23 maxlen: 23
134.255.200.0/21 maxlen: 21
134.255.245.0/24 maxlen: 24
134.255.246.0/24 maxlen: 24
134.255.249.0/24 maxlen: 24
185.10.71.0/24 maxlen: 24
185.13.228.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 21 May 2024 16:55:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:5f:6a:a9:46:4f:cc:1c:4d:68:4d:8f:f6:26:ca:c4:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f814adc1d5209e098f078adbc856bad83b749c2
Validity
Not Before: May 9 22:12:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=93c9ecf123fae99c0ca3893393fabcdcb5568271
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a7:4b:40:b6:07:9a:23:c7:98:64:49:06:2a:
16:a1:85:ed:4c:3e:d5:eb:c8:da:9d:43:15:8c:0e:
a7:b2:b6:90:7e:34:48:f9:e3:b6:f3:c6:19:b9:44:
99:02:04:86:78:7c:1f:23:b2:a1:4e:48:85:4b:df:
93:ba:42:45:6b:d6:a9:e1:b4:d2:f8:da:04:3e:f9:
55:fb:97:35:3e:69:ef:9c:87:85:6f:0b:31:41:0d:
43:ea:fb:a9:e4:6e:c6:6e:f3:40:cc:e4:72:1b:55:
65:37:f8:28:ad:7d:5c:de:a5:5c:c7:a5:a7:05:b7:
3c:d6:76:60:ba:55:2b:9b:f5:9f:e5:bb:49:a2:61:
56:3f:c8:4d:02:da:67:17:5f:48:95:51:4e:a8:ce:
93:1c:12:6c:63:c5:9a:67:77:e3:7b:c1:64:02:ab:
30:13:eb:87:4a:22:af:d1:1f:d5:4c:5c:8f:0d:85:
56:2b:0f:18:31:62:02:4c:f0:1d:a3:83:f6:39:dc:
6b:93:34:a0:7b:e1:6e:62:dc:29:3c:6b:a6:15:53:
a1:97:5d:05:78:11:a9:f0:9d:1f:94:fe:94:03:e5:
48:d1:f5:19:f5:8d:55:9d:7a:06:67:23:0c:c7:36:
67:a1:9d:94:5d:c2:9e:7b:50:8e:c7:5a:d9:9f:94:
9a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:C9:EC:F1:23:FA:E9:9C:0C:A3:89:33:93:FA:BC:DC:B5:56:82:71
X509v3 Authority Key Identifier:
keyid:2F:81:4A:DC:1D:52:09:E0:98:F0:78:AD:BC:85:6B:AD:83:B7:49:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L4FK3B1SCeCY8HitvIVrrYO3ScI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/k8ns8SP66ZwMo4kzk_q83LVWgnE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/L4FK3B1SCeCY8HitvIVrrYO3ScI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.214.132.0/23
31.214.146.0/23
31.214.154.0/24
31.214.168.0/21
31.214.200.0/23
31.214.228.0/22
31.214.248.0/21
37.10.64.0/22
37.10.109.0/24
37.10.117.0/24
37.228.131.0/24
37.228.133.0/24
37.228.135.0-37.228.139.255
46.41.192.0/18
46.251.224.0/24
46.251.226.0/24
46.251.237.0/24
82.99.192.0/18
95.156.222.0/23
95.156.233.0-95.156.237.255
95.156.248.0/23
109.230.192.0/23
109.230.200.0/24
109.230.204.0/22
109.230.221.0/24
109.230.223.0/24
109.230.242.0/24
109.230.246.0/23
109.230.251.0/24
134.255.196.0/23
134.255.200.0/21
134.255.245.0-134.255.246.255
134.255.249.0/24
185.10.71.0/24
185.13.228.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:fb:53:cf:03:76:7e:1b:95:9b:f5:8f:0b:d1:5b:b6:51:b5:
f8:fb:af:ed:d1:a4:46:c5:2b:de:cc:ce:a3:05:bf:30:4d:4a:
87:70:a7:85:6d:0e:51:c0:d9:7f:9f:72:19:53:f4:3a:bf:ca:
eb:13:dd:c3:1f:04:7b:4f:e6:6f:9e:1f:db:08:a4:4d:72:9c:
aa:77:01:ad:25:4c:88:ef:a1:5d:7c:66:3a:eb:9f:8b:ce:30:
39:0b:50:65:f7:d2:7e:57:a1:00:5b:47:9c:f6:64:ca:1e:ad:
7b:10:4d:1b:01:cf:98:f1:0e:5f:22:6a:02:c3:7b:74:d0:0c:
80:0c:b5:34:8a:82:5d:c6:61:c4:dc:26:13:3f:4a:76:93:84:
ef:80:58:7a:b5:f4:d1:e1:0c:cb:43:16:13:58:a1:9e:c0:a6:
d3:66:81:7a:2e:00:17:b2:0a:d2:5f:75:15:11:9e:4f:e3:dd:
c9:9e:aa:48:98:36:fe:c4:a8:df:01:01:75:29:c8:e3:3e:25:
f2:3b:5b:c5:55:35:3c:8d:a9:63:34:a9:51:61:6b:f5:90:e2:
23:27:ae:b1:4b:7a:41:b9:ba:0b:1c:11:fc:7a:67:f2:a4:fb:
6c:f9:90:cd:f7:9b:2a:7e:3f:3d:f5:99:f1:00:ee:8e:fd:6b:
aa:1b:06:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 20:12:58 2024 by rpki-client on console-fra.rpki-client.org