Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/owwRpG2r1dhIz6HDrpbGXmC_vy8.roa
File: owwRpG2r1dhIz6HDrpbGXmC_vy8.roa (raw, json)
Hash identifier: rBWPWRqySF+bZPlKtPE4BjoicoLAyTSBL2I7wt1ruTo=
Subject key identifier: A3:0C:11:A4:6D:AB:D5:D8:48:CF:A1:C3:AE:96:C6:5E:60:BF:BF:2F
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0193B6A4A384D0035AE77164726B63A80DF4
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/owwRpG2r1dhIz6HDrpbGXmC_vy8.roa
Signing time: Wed 11 Dec 2024 16:54:23 +0000
ROA not before: Wed 11 Dec 2024 16:54:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215439
IP address blocks: 31.13.208.0/24 maxlen: 24
45.66.228.0/24 maxlen: 24
45.133.251.0/24 maxlen: 24
83.143.112.0/24 maxlen: 24
84.21.173.0/24 maxlen: 24
87.120.165.0/24 maxlen: 24
87.120.166.0/24 maxlen: 24
87.120.186.0/24 maxlen: 24
93.123.84.0/24 maxlen: 24
94.156.179.0/24 maxlen: 24
171.22.31.0/24 maxlen: 24
185.246.223.0/24 maxlen: 24
193.35.17.0/24 maxlen: 24
193.58.121.0/24 maxlen: 24
193.58.122.0/24 maxlen: 24
193.222.99.0/24 maxlen: 24
194.31.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 20 Dec 2024 07:43:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:b6:a4:a3:84:d0:03:5a:e7:71:64:72:6b:63:a8:0d:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Dec 11 16:54:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a30c11a46dabd5d848cfa1c3ae96c65e60bfbf2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:09:f7:89:3b:fe:6c:db:b1:6d:68:9a:07:3d:
de:59:8a:ab:a0:84:8c:f8:95:fe:60:7e:3d:03:0b:
61:78:db:ab:64:be:ab:ed:30:b7:df:04:b2:e3:ab:
67:42:c2:ac:13:3c:87:0b:ad:52:1a:cc:cc:1c:fc:
5b:66:27:61:dd:ab:87:5f:ab:5e:30:9f:0c:c3:a0:
d2:e7:a1:8e:d9:4e:b9:94:e5:42:95:5c:2b:bc:f4:
1c:97:35:22:3c:40:cb:70:d5:dc:d9:7b:2f:34:aa:
0b:1f:8e:2d:27:b3:50:a1:89:74:5a:2f:25:e7:ce:
db:5d:6f:53:6a:9c:20:08:d8:68:6f:c3:a5:2b:b2:
f7:10:54:8c:87:dc:2b:57:29:3e:93:a6:28:72:f0:
03:bd:68:b8:d8:8b:8a:0b:b1:ed:73:e2:74:fe:c2:
2d:ce:5f:55:db:aa:c7:89:64:26:86:64:53:63:29:
fb:eb:57:18:ee:45:c0:7b:c3:7c:6e:70:d4:26:22:
66:89:9d:ed:70:77:37:01:ee:97:0b:e2:85:dc:92:
c7:95:61:54:1f:b2:53:06:c0:d0:21:28:26:75:d0:
ef:b6:cd:51:ee:b7:ee:5c:87:f6:4f:53:56:f7:49:
2a:a9:9b:05:c0:ca:6a:6f:c1:7b:2f:2d:23:9f:68:
98:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:0C:11:A4:6D:AB:D5:D8:48:CF:A1:C3:AE:96:C6:5E:60:BF:BF:2F
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/owwRpG2r1dhIz6HDrpbGXmC_vy8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.13.208.0/24
45.66.228.0/24
45.133.251.0/24
83.143.112.0/24
84.21.173.0/24
87.120.165.0-87.120.166.255
87.120.186.0/24
93.123.84.0/24
94.156.179.0/24
171.22.31.0/24
185.246.223.0/24
193.35.17.0/24
193.58.121.0-193.58.122.255
193.222.99.0/24
194.31.223.0/24
Signature Algorithm: sha256WithRSAEncryption
85:6e:6b:dd:e1:30:90:5f:2c:25:15:b9:c8:de:8b:73:80:65:
28:34:3f:1b:50:77:88:d2:f2:e4:69:e8:c1:02:a2:b8:b6:9c:
72:5b:24:a8:39:c5:89:31:7f:da:dd:18:66:81:cd:6c:47:fc:
03:1d:98:29:77:a7:dc:62:47:1d:ee:2f:ff:24:e6:6d:17:a9:
fc:76:d6:d2:2d:75:01:a1:61:14:a0:f9:42:14:e6:bc:60:76:
12:b8:16:85:33:df:08:03:d1:38:63:f8:39:d1:1d:35:5f:6e:
87:30:2f:4d:ba:c1:e2:e9:36:3f:8d:01:c0:5b:17:7a:02:dc:
5a:ba:cf:50:f1:f9:fa:0c:e6:56:44:c5:35:e9:06:74:fe:49:
41:e8:c0:2d:a4:07:85:10:99:3d:b5:99:da:6c:bd:3f:9b:db:
22:06:da:d8:53:0a:72:29:8b:0d:7f:af:ce:8c:42:5a:d8:ab:
2b:b0:0c:bf:04:a9:c0:1f:d6:91:96:7a:6e:47:d1:49:b0:e3:
78:24:97:73:17:1a:16:e3:f2:ee:98:a5:4d:98:41:05:83:b1:
9b:b8:d3:e9:2d:b3:cc:62:6f:f4:d1:c0:c1:e3:59:c7:48:2d:
59:97:cc:2f:c7:37:2c:f7:f6:17:9e:1a:3e:ae:72:79:e4:fe:
7a:4f:27:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 09:42:23 2025 by rpki-client