Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/011ef2-7012-4a6e-8a1c-0e0e137e5591/1/phoWghqs5SVBqVgR5VtFH44CHmY.roa
File: phoWghqs5SVBqVgR5VtFH44CHmY.roa (raw, json)
Hash identifier: Y6dabZarkYB2YFONooRv6XcuKAV/birZlx7LmMiVNRo=
Subject key identifier: A6:1A:16:82:1A:AC:E5:25:41:A9:58:11:E5:5B:45:1F:8E:02:1E:66
Certificate issuer: /CN=e520446f79ffc2d7c3a9ef340ce9de25723a719a
Certificate serial: 018F934C6F48AA82E8AF7E39C31A8B986CA6
Authority key identifier: E5:20:44:6F:79:FF:C2:D7:C3:A9:EF:34:0C:E9:DE:25:72:3A:71:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5SBEb3n_wtfDqe80DOneJXI6cZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/011ef2-7012-4a6e-8a1c-0e0e137e5591/1/phoWghqs5SVBqVgR5VtFH44CHmY.roa
Signing time: Mon 20 May 2024 00:00:10 +0000
ROA not before: Mon 20 May 2024 00:00:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35539
IP address blocks: 31.134.192.0/21 maxlen: 21
46.160.192.0/21 maxlen: 21
46.160.200.0/21 maxlen: 21
46.160.208.0/21 maxlen: 21
46.160.216.0/21 maxlen: 21
46.160.224.0/21 maxlen: 21
46.160.232.0/21 maxlen: 21
46.160.240.0/21 maxlen: 21
46.160.248.0/21 maxlen: 21
93.95.160.0/21 maxlen: 21
93.95.160.0/22 maxlen: 22
93.95.164.0/22 maxlen: 22
93.123.128.0/17 maxlen: 17
93.123.128.0/18 maxlen: 18
93.123.192.0/18 maxlen: 18
95.131.208.0/21 maxlen: 21
95.131.208.0/22 maxlen: 22
95.131.212.0/22 maxlen: 22
217.194.240.0/20 maxlen: 20
217.194.240.0/21 maxlen: 21
217.194.248.0/21 maxlen: 21
Validation: Failed, certificate revoked on Sun 01 Sep 2024 15:30:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:93:4c:6f:48:aa:82:e8:af:7e:39:c3:1a:8b:98:6c:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e520446f79ffc2d7c3a9ef340ce9de25723a719a
Validity
Not Before: May 20 00:00:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a61a16821aace52541a95811e55b451f8e021e66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:33:f1:8a:df:29:25:01:b8:f4:0c:bb:59:82:
5e:d9:d5:b9:30:2f:10:11:29:d7:38:13:7a:78:5b:
5c:42:03:4b:67:24:2a:3c:c3:8b:af:98:db:e7:9d:
a7:95:a1:07:04:00:3f:f5:44:b4:38:33:86:77:97:
96:a7:02:ad:c1:bf:82:38:f6:5a:00:d6:28:de:b1:
86:2e:4d:e9:00:c1:89:6a:1d:fc:0e:06:cd:34:89:
db:6d:19:00:9d:0d:c2:81:de:45:3a:64:b6:bd:b6:
08:5d:64:5b:54:98:3b:0d:5c:8e:df:ad:b2:02:1b:
fd:76:a9:30:67:52:fc:4f:02:df:b2:10:6e:02:25:
2d:66:37:12:7c:87:a6:7b:a1:11:6c:7b:21:be:31:
57:9b:d6:3f:a6:24:c6:b2:35:38:6f:23:37:b6:15:
30:00:88:fe:30:bf:79:fb:a7:12:37:40:23:58:53:
57:30:98:6e:b7:c1:97:18:77:5d:df:b8:b5:77:b5:
1c:a5:4d:6b:d5:f4:55:9a:52:50:3a:25:f8:91:20:
23:fd:61:23:79:ed:47:6e:0d:01:e4:40:94:71:25:
0a:41:b2:ed:2b:f7:b5:51:8a:2f:72:df:76:f1:22:
ba:59:4c:97:53:c1:c6:5b:99:ff:61:f6:2e:fd:7e:
bd:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:1A:16:82:1A:AC:E5:25:41:A9:58:11:E5:5B:45:1F:8E:02:1E:66
X509v3 Authority Key Identifier:
keyid:E5:20:44:6F:79:FF:C2:D7:C3:A9:EF:34:0C:E9:DE:25:72:3A:71:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5SBEb3n_wtfDqe80DOneJXI6cZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/011ef2-7012-4a6e-8a1c-0e0e137e5591/1/phoWghqs5SVBqVgR5VtFH44CHmY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/011ef2-7012-4a6e-8a1c-0e0e137e5591/1/5SBEb3n_wtfDqe80DOneJXI6cZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.134.192.0/21
46.160.192.0/18
93.95.160.0/21
93.123.128.0/17
95.131.208.0/21
217.194.240.0/20
Signature Algorithm: sha256WithRSAEncryption
46:1d:29:f2:cf:7b:65:ea:cd:72:2a:54:db:cc:91:2c:7f:28:
d4:ef:db:17:91:75:81:cb:9f:0b:6a:b5:cc:a3:74:1f:07:f3:
6b:fa:bd:20:44:38:e6:44:71:f3:34:a5:49:53:eb:08:3c:9d:
61:0b:13:49:ab:42:31:7e:6f:14:ab:20:4b:53:dd:4b:b8:0e:
60:d9:e5:4b:0a:c3:eb:84:85:54:fd:83:d1:58:d4:a7:d8:df:
b5:61:c4:56:47:26:54:fa:c0:30:18:ec:0a:96:bf:f6:0b:4c:
6e:0f:15:50:01:52:36:52:e2:42:0e:86:01:e1:d8:5e:f2:61:
4f:4a:d4:f1:82:52:de:61:86:04:ea:52:28:62:d2:85:41:42:
9a:a1:55:13:85:90:22:5b:cb:6a:06:79:e4:4f:6f:6c:35:e7:
cf:49:23:6b:fa:7e:65:22:51:f7:c7:d5:46:77:dd:0f:a0:31:
6f:a7:bb:14:58:8b:78:07:8c:0b:44:5e:4c:73:8f:ad:9d:1c:
49:76:72:ed:79:6c:3a:27:86:7a:72:08:c5:20:34:51:d4:0d:
44:98:54:db:8e:df:78:c3:e0:ac:b2:61:32:f0:97:3f:71:7b:
64:1a:3b:6b:01:37:16:05:6b:04:16:da:c2:9f:d4:b4:42:48:
d3:7e:a1:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 1 18:08:13 2024 by rpki-client on console-ams.rpki-client.org