Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/fjWBDBgwj9zqolQbpKJNd5mZh0M.roa
File: fjWBDBgwj9zqolQbpKJNd5mZh0M.roa (raw, json)
Hash identifier: PGdgOQEOvpEumaSIBFatdLsGSnLNip7BUj5dmCkWEwk=
Subject key identifier: 7E:35:81:0C:18:30:8F:DC:EA:A2:54:1B:A4:A2:4D:77:99:99:87:43
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 019246BC27F154F5AE501535D3C2C7715976
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/fjWBDBgwj9zqolQbpKJNd5mZh0M.roa
Signing time: Tue 01 Oct 2024 06:19:49 +0000
ROA not before: Tue 01 Oct 2024 06:19:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 174
IP address blocks: 31.13.193.0/24 maxlen: 24
31.13.225.0/24 maxlen: 24
37.60.141.0/24 maxlen: 24
87.120.107.0/24 maxlen: 24
87.120.186.0/23 maxlen: 24
87.120.191.0/24 maxlen: 24
87.121.32.0/24 maxlen: 24
87.121.70.0/23 maxlen: 24
87.121.88.0/23 maxlen: 24
87.121.144.0/23 maxlen: 24
93.123.45.0/24 maxlen: 24
93.123.46.0/24 maxlen: 24
93.123.47.0/24 maxlen: 24
94.156.11.0/24 maxlen: 24
94.156.61.0/24 maxlen: 24
94.156.92.0/24 maxlen: 24
94.156.162.0/23 maxlen: 24
94.156.164.0/23 maxlen: 24
94.156.170.0/24 maxlen: 24
94.156.253.0/24 maxlen: 24
141.98.1.0/24 maxlen: 24
212.73.149.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 02 Oct 2024 00:06:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:46:bc:27:f1:54:f5:ae:50:15:35:d3:c2:c7:71:59:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Oct 1 06:19:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7e35810c18308fdceaa2541ba4a24d7799998743
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:0e:fd:66:88:24:da:8d:91:31:5e:cd:43:36:
d7:51:e6:0a:8e:98:ce:9c:d3:8f:fb:c1:ab:d8:5d:
2b:36:38:01:97:4e:75:7a:65:7e:27:c3:4a:be:fb:
06:13:ac:6a:a9:31:cb:c1:ea:71:74:dd:a1:71:02:
54:cd:f4:f6:45:48:b8:5e:f0:b8:25:47:2e:e4:39:
eb:e9:22:5e:b0:f9:4f:31:f3:5b:a0:97:3a:7e:18:
7d:49:45:aa:de:2d:f8:fe:7d:c6:d2:1c:1b:b4:71:
a4:74:18:cf:8b:e0:64:15:75:83:51:67:c5:25:15:
fd:5e:e4:aa:fb:94:44:1b:34:73:59:49:c4:22:2c:
26:13:8c:17:fe:91:16:26:30:25:57:fb:a7:e0:11:
be:50:bb:75:3f:fb:d0:20:1c:9f:7b:80:bd:ab:eb:
3b:cf:fa:38:a8:a6:18:d8:ce:aa:97:04:c6:36:00:
c6:88:ec:a1:f0:8c:8b:d9:f6:0c:f6:c9:34:ac:a9:
ce:dd:a7:72:44:d9:9e:ae:e5:43:1c:3f:c1:7d:aa:
2b:aa:3f:06:d4:53:c2:df:ce:26:ff:29:1e:0d:d1:
10:05:a6:f3:b8:7b:a0:7a:dc:df:37:b2:92:a5:71:
be:5c:b4:66:62:56:60:37:64:a1:e8:16:81:13:6a:
4c:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:35:81:0C:18:30:8F:DC:EA:A2:54:1B:A4:A2:4D:77:99:99:87:43
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/fjWBDBgwj9zqolQbpKJNd5mZh0M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.13.193.0/24
31.13.225.0/24
37.60.141.0/24
87.120.107.0/24
87.120.186.0/23
87.120.191.0/24
87.121.32.0/24
87.121.70.0/23
87.121.88.0/23
87.121.144.0/23
93.123.45.0-93.123.47.255
94.156.11.0/24
94.156.61.0/24
94.156.92.0/24
94.156.162.0-94.156.165.255
94.156.170.0/24
94.156.253.0/24
141.98.1.0/24
212.73.149.0/24
Signature Algorithm: sha256WithRSAEncryption
69:90:af:40:cd:ad:b1:7e:63:ff:fa:fc:e3:9e:d3:6e:3e:b2:
03:a5:49:da:72:e8:79:e9:d5:7a:40:38:b2:96:38:84:c9:32:
3c:77:bf:2b:6d:1e:7b:91:26:b5:70:3a:d9:59:1d:21:e8:6e:
6c:20:8e:cf:9f:5c:1d:ce:e0:e0:36:94:67:6c:2b:ff:85:41:
c8:6e:02:24:65:fa:03:8e:0d:b6:b6:43:f4:c8:bd:bb:0b:5f:
2f:78:1e:6d:18:6f:28:aa:f3:4e:00:87:87:38:85:de:86:48:
4b:39:a8:8e:57:9b:7c:8d:52:8c:50:32:f9:0b:3d:d5:92:19:
b1:13:10:8b:02:a4:9a:1c:10:9e:b2:ae:f8:7c:b2:ea:a3:ee:
2a:26:0c:ed:47:05:0c:c2:68:e7:cb:17:ce:c9:6b:18:a2:7b:
76:aa:21:74:11:ae:19:c0:57:17:00:c1:69:d9:39:7a:6f:f6:
e8:d4:f7:5f:a0:9e:d2:62:4f:70:66:e6:f9:9e:4a:ad:b3:e3:
3c:32:a3:15:05:1e:a4:2e:c0:60:7f:35:9b:f7:7b:58:f2:db:
9f:4e:95:bb:59:70:f6:f9:5f:3d:b1:df:a1:fc:86:78:fe:36:
88:42:b1:29:f1:27:e8:74:31:ba:aa:1f:d8:5a:81:2a:7f:ea:
36:ee:c0:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 2 01:45:52 2024 by rpki-client on console-fra.rpki-client.org