Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/011ef2-7012-4a6e-8a1c-0e0e137e5591/1/KVjzHuwt9Bksgf5-5JyqPq4Djg8.roa
File: KVjzHuwt9Bksgf5-5JyqPq4Djg8.roa (raw, json)
Hash identifier: lEzAj9jUqoxa1wEkGP7eClu96LsIhXqj2Aja/+GoG+c=
Subject key identifier: 29:58:F3:1E:EC:2D:F4:19:2C:81:FE:7E:E4:9C:AA:3E:AE:03:8E:0F
Certificate issuer: /CN=e520446f79ffc2d7c3a9ef340ce9de25723a719a
Certificate serial: 0191AE356D201BD009033F944E47C9DEFA8A
Authority key identifier: E5:20:44:6F:79:FF:C2:D7:C3:A9:EF:34:0C:E9:DE:25:72:3A:71:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5SBEb3n_wtfDqe80DOneJXI6cZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/011ef2-7012-4a6e-8a1c-0e0e137e5591/1/KVjzHuwt9Bksgf5-5JyqPq4Djg8.roa
Signing time: Sun 01 Sep 2024 15:30:22 +0000
ROA not before: Sun 01 Sep 2024 15:30:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35539
IP address blocks: 31.134.192.0/21 maxlen: 21
46.160.192.0/18 maxlen: 19
46.160.192.0/21 maxlen: 21
46.160.200.0/21 maxlen: 21
46.160.208.0/21 maxlen: 21
46.160.216.0/21 maxlen: 21
46.160.224.0/21 maxlen: 21
46.160.232.0/21 maxlen: 21
46.160.240.0/21 maxlen: 21
46.160.248.0/21 maxlen: 21
93.95.160.0/21 maxlen: 21
93.95.160.0/22 maxlen: 22
93.95.164.0/22 maxlen: 22
93.123.128.0/17 maxlen: 17
93.123.128.0/18 maxlen: 18
93.123.192.0/18 maxlen: 18
95.131.208.0/21 maxlen: 21
95.131.208.0/22 maxlen: 22
95.131.212.0/22 maxlen: 22
217.194.240.0/20 maxlen: 20
217.194.240.0/21 maxlen: 21
217.194.248.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 02 Sep 2024 14:11:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:ae:35:6d:20:1b:d0:09:03:3f:94:4e:47:c9:de:fa:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e520446f79ffc2d7c3a9ef340ce9de25723a719a
Validity
Not Before: Sep 1 15:30:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2958f31eec2df4192c81fe7ee49caa3eae038e0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:4a:1b:73:14:97:03:24:0e:91:83:ec:d4:7f:
e9:9f:18:55:24:b7:1b:63:cb:46:f3:a4:d0:f8:fe:
ef:2c:0a:d5:1b:77:4f:5b:1e:81:68:fb:da:ed:0c:
bb:bd:3b:00:b9:81:ae:67:42:07:ff:55:77:ca:ca:
e6:66:bf:30:ba:f1:5c:da:32:bf:6e:57:e0:dd:3b:
42:72:1d:9d:f1:21:b0:a8:00:eb:a7:96:fb:89:76:
4b:a9:45:68:53:87:ef:f2:71:47:27:24:ca:c0:69:
8e:a3:0f:8a:1b:c8:b3:12:db:ce:65:da:fa:9c:57:
24:6f:57:e1:de:34:b5:ad:13:62:09:89:af:08:26:
dc:34:24:f1:ae:81:e3:01:36:da:10:d7:ab:13:1f:
da:46:4a:46:09:c7:22:d4:25:71:e5:80:df:39:e9:
13:34:2d:45:e1:2a:db:3b:f0:83:41:42:89:1c:b6:
44:13:c7:04:05:0d:67:19:b0:f5:dd:93:eb:39:4b:
d4:2e:ee:49:f0:38:59:6b:37:60:63:0b:c4:84:ea:
15:73:07:be:98:34:40:9d:36:bb:25:d3:d1:63:af:
4a:49:54:80:b6:25:d2:28:e5:0f:50:94:c1:a3:44:
27:83:14:ae:76:d6:8b:a5:b8:49:d1:a3:50:65:bb:
85:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:58:F3:1E:EC:2D:F4:19:2C:81:FE:7E:E4:9C:AA:3E:AE:03:8E:0F
X509v3 Authority Key Identifier:
keyid:E5:20:44:6F:79:FF:C2:D7:C3:A9:EF:34:0C:E9:DE:25:72:3A:71:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5SBEb3n_wtfDqe80DOneJXI6cZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/011ef2-7012-4a6e-8a1c-0e0e137e5591/1/KVjzHuwt9Bksgf5-5JyqPq4Djg8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/011ef2-7012-4a6e-8a1c-0e0e137e5591/1/5SBEb3n_wtfDqe80DOneJXI6cZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.134.192.0/21
46.160.192.0/18
93.95.160.0/21
93.123.128.0/17
95.131.208.0/21
217.194.240.0/20
Signature Algorithm: sha256WithRSAEncryption
86:0d:63:05:47:47:81:77:23:32:c1:3d:ae:59:14:7e:71:d1:
71:ad:4a:e1:11:48:a4:e9:8c:9d:a2:0b:97:f8:b8:d1:76:5a:
b5:d8:cb:13:cc:17:d7:a8:96:6d:0c:56:e2:5b:50:d9:0e:94:
ae:ac:57:e6:80:0b:ba:f8:06:09:af:7f:81:28:a2:f1:ec:cc:
d1:e3:fa:a7:af:f8:88:c5:ac:2b:90:3f:da:6e:e1:be:b5:88:
51:d4:d2:62:02:20:31:88:44:7c:6b:23:b5:5a:76:88:fa:78:
16:9e:41:f7:eb:5e:9c:25:fb:b1:c9:95:d7:55:55:30:5e:da:
6f:0d:fb:00:88:1a:47:c1:63:12:86:da:e5:7d:62:3e:86:76:
cb:c5:58:a1:7e:11:32:d5:84:01:5a:1b:13:88:a4:a4:f1:b4:
ee:3d:d8:ed:f1:87:ca:67:6a:85:71:20:60:9c:99:09:0c:a9:
c4:c3:dc:2e:c3:ec:13:a4:ad:bb:01:61:02:99:36:04:33:a1:
35:d5:42:c5:04:d3:aa:ff:44:74:e3:16:f6:4d:8a:5d:a0:38:
6f:34:8b:24:b7:63:5c:cd:22:cd:b9:7b:1e:d5:d3:cd:63:3b:
f8:de:c4:c0:25:9c:c9:ff:39:e1:42:20:28:a5:57:e7:95:55:
b6:bd:3b:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:53:47 2025 by rpki-client