Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/2rXOdlr_dXMzr_wOZJ5QqtH5G4g.roa
File: 2rXOdlr_dXMzr_wOZJ5QqtH5G4g.roa (raw, json)
Hash identifier: lNCeRoddeg4A4LTC9nCMjk3SQXTvN3OMuNtoHrR8wkY=
Subject key identifier: DA:B5:CE:76:5A:FF:75:73:33:AF:FC:0E:64:9E:50:AA:D1:F9:1B:88
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01924A8D0688741E29F6FA9B45D1E03336D7
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/2rXOdlr_dXMzr_wOZJ5QqtH5G4g.roa
Signing time: Wed 02 Oct 2024 00:06:49 +0000
ROA not before: Wed 02 Oct 2024 00:06:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 174
IP address blocks: 31.13.193.0/24 maxlen: 24
31.13.225.0/24 maxlen: 24
37.60.141.0/24 maxlen: 24
87.120.107.0/24 maxlen: 24
87.120.186.0/23 maxlen: 24
87.120.191.0/24 maxlen: 24
87.121.32.0/24 maxlen: 24
87.121.70.0/23 maxlen: 24
87.121.88.0/23 maxlen: 24
87.121.144.0/23 maxlen: 24
93.123.45.0/24 maxlen: 24
93.123.46.0/24 maxlen: 24
93.123.47.0/24 maxlen: 24
94.156.11.0/24 maxlen: 24
94.156.61.0/24 maxlen: 24
94.156.92.0/24 maxlen: 24
94.156.162.0/23 maxlen: 24
94.156.164.0/23 maxlen: 24
94.156.170.0/24 maxlen: 24
141.98.1.0/24 maxlen: 24
212.73.149.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Nov 2024 11:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:4a:8d:06:88:74:1e:29:f6:fa:9b:45:d1:e0:33:36:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Oct 2 00:06:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dab5ce765aff757333affc0e649e50aad1f91b88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ce:95:b2:67:3a:9a:16:f9:6f:63:2d:59:4a:
cf:a2:1a:5c:3b:d3:ae:31:af:07:35:5b:85:37:88:
93:c7:e3:49:0f:1f:62:12:2e:a1:eb:c5:e4:62:43:
38:43:79:cc:1b:95:9c:5e:68:ea:ac:17:ee:40:c1:
ad:bc:1c:f5:47:43:23:70:23:75:f0:38:fc:36:be:
3d:07:d9:28:2f:ed:8f:46:de:42:93:eb:de:cc:d5:
67:e5:51:dd:6e:28:90:14:67:84:6c:24:11:d7:65:
e8:26:73:e2:dc:37:32:49:45:4f:d4:cf:37:8f:6f:
19:07:4e:97:21:19:18:c6:12:f4:01:a8:56:89:cc:
cd:c8:0e:09:22:a1:d2:53:04:4e:b7:ec:fd:47:44:
71:19:9e:1d:25:93:f6:a4:30:e0:96:2f:f6:bf:24:
16:61:89:f7:0a:82:e4:d8:4a:59:bc:5a:08:98:ea:
50:f9:88:66:58:eb:31:29:5a:3f:09:ec:c9:cb:75:
85:45:27:c8:df:b5:a3:d9:2d:c8:a9:46:9d:b3:3c:
e9:bf:40:3a:f4:ef:58:e1:fb:c2:ac:0f:2b:6b:92:
fe:6e:74:05:94:e4:9a:cd:e8:87:67:10:dc:a6:31:
7c:f3:d7:36:27:04:d4:ba:d0:ae:95:c4:28:ec:d4:
ca:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:B5:CE:76:5A:FF:75:73:33:AF:FC:0E:64:9E:50:AA:D1:F9:1B:88
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/2rXOdlr_dXMzr_wOZJ5QqtH5G4g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.13.193.0/24
31.13.225.0/24
37.60.141.0/24
87.120.107.0/24
87.120.186.0/23
87.120.191.0/24
87.121.32.0/24
87.121.70.0/23
87.121.88.0/23
87.121.144.0/23
93.123.45.0-93.123.47.255
94.156.11.0/24
94.156.61.0/24
94.156.92.0/24
94.156.162.0-94.156.165.255
94.156.170.0/24
141.98.1.0/24
212.73.149.0/24
Signature Algorithm: sha256WithRSAEncryption
16:94:14:64:4d:a3:8c:06:3a:d7:37:73:57:8d:70:65:2f:28:
0e:2d:a3:f9:6a:c4:e8:1a:c8:19:0f:f1:ba:79:c2:2d:84:00:
f3:6f:fa:b2:13:f5:2c:a3:a6:8a:81:c5:ba:b3:56:db:ef:19:
4e:28:2f:e4:de:4a:ab:72:86:c4:eb:f8:b3:af:01:3b:6f:af:
46:f5:1c:3f:19:74:0d:4d:60:6e:c4:ee:4b:fc:13:0a:c8:03:
97:f9:88:34:e3:57:a3:38:49:72:82:59:15:5f:f7:e8:3e:49:
6a:e6:15:b3:21:35:d4:d4:b2:fc:c4:d2:a4:35:fd:17:20:e8:
d1:05:6f:0f:27:6e:70:ee:19:2c:17:0b:29:95:63:87:e2:f0:
c4:ba:b5:23:94:0d:c7:3f:12:b2:ee:38:f7:7c:10:6e:b7:f0:
62:a3:6b:e4:57:6e:ea:8f:4c:0f:c7:8b:bf:65:51:e7:91:04:
71:d4:9c:27:15:8e:aa:f5:ec:4c:82:ca:ef:6f:d6:8b:22:e3:
fa:cf:49:6f:c9:8b:64:47:ab:43:82:04:b6:97:52:75:b7:12:
91:a5:77:e4:72:5e:ed:91:6f:9d:da:5f:88:49:2f:f1:98:d2:
69:97:e4:dc:9c:1f:7b:f1:7a:44:d7:3a:12:15:15:a4:43:28:
31:8a:be:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 6 17:42:04 2024 by rpki-client on console-ams.rpki-client.org