Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/K2xwO7-sPU453LaJh9QGkOVmNAY.roa
File: K2xwO7-sPU453LaJh9QGkOVmNAY.roa (raw, json)
Hash identifier: 1TXAwPM8rxfNbNT+1BTdtSQqDADY4VxYXLJTR/v/ZIg=
Subject key identifier: 2B:6C:70:3B:BF:AC:3D:4E:39:DC:B6:89:87:D4:06:90:E5:66:34:06
Certificate issuer: /CN=4444c7c3ad34b6977fa18a2237ca306b9bee08e0
Certificate serial: 01874E004A8E4B8B28C0277D536FDBD7E9CC
Authority key identifier: 44:44:C7:C3:AD:34:B6:97:7F:A1:8A:22:37:CA:30:6B:9B:EE:08:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RETHw600tpd_oYoiN8owa5vuCOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/K2xwO7-sPU453LaJh9QGkOVmNAY.roa
Signing time: Tue 04 Apr 2023 20:40:54 +0000
ROA not before: Tue 04 Apr 2023 20:40:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50130
IP address blocks: 31.129.227.0/24 maxlen: 24
31.129.234.0/24 maxlen: 24
31.129.240.0/23 maxlen: 23
31.129.242.0/23 maxlen: 23
31.129.252.0/22 maxlen: 22
31.129.252.0/23 maxlen: 23
31.129.252.0/24 maxlen: 24
31.129.253.0/24 maxlen: 24
31.129.254.0/24 maxlen: 24
31.129.254.0/23 maxlen: 23
31.129.255.0/24 maxlen: 24
31.129.224.0/22 maxlen: 22
31.129.224.0/24 maxlen: 24
31.129.224.0/23 maxlen: 23
31.129.225.0/24 maxlen: 24
31.129.226.0/23 maxlen: 23
31.129.226.0/24 maxlen: 24
213.5.192.0/24 maxlen: 24
213.5.194.0/24 maxlen: 24
213.5.193.0/24 maxlen: 24
213.5.195.0/24 maxlen: 24
213.5.196.0/23 maxlen: 23
213.5.196.0/24 maxlen: 24
213.5.197.0/24 maxlen: 24
213.5.198.0/24 maxlen: 24
213.5.198.0/23 maxlen: 23
213.5.199.0/24 maxlen: 24
213.5.196.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:4e:00:4a:8e:4b:8b:28:c0:27:7d:53:6f:db:d7:e9:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4444c7c3ad34b6977fa18a2237ca306b9bee08e0
Validity
Not Before: Apr 4 20:40:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2b6c703bbfac3d4e39dcb68987d40690e5663406
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e3:cf:39:da:85:34:29:f5:f0:08:45:ea:1e:
ef:d4:c9:f4:48:c0:ca:d9:39:83:94:ce:be:df:3e:
86:81:5a:c0:ca:7f:c1:56:95:44:8b:e2:ce:d4:44:
9b:08:9f:c8:b3:59:a0:b0:00:27:f0:41:5c:7c:91:
68:70:ce:09:71:8d:57:09:84:d2:79:ed:42:af:30:
8c:eb:99:3d:06:38:e4:e9:a1:09:b7:1b:93:6e:8b:
f0:e8:4d:8e:a9:8c:18:12:ff:1b:00:62:ba:65:72:
7f:cd:8a:1b:20:6a:d4:94:0b:01:c7:20:a8:d9:51:
a0:41:1f:71:ea:19:b2:a5:40:ab:e2:66:63:f4:84:
82:c8:c1:8a:bb:19:67:27:ff:86:ee:58:92:fd:c1:
53:c6:92:3d:98:de:b0:11:32:25:76:cd:53:1e:2d:
2f:64:8a:86:8f:15:9e:17:37:e9:fa:8b:dc:93:e6:
15:3e:8e:2b:8f:9a:45:c9:99:d9:3d:b3:e3:bb:7a:
c3:c3:f5:01:97:ff:d4:1e:ea:ca:a3:ba:bd:9d:7a:
36:9b:3f:6e:29:72:e7:bc:d1:9a:fe:6f:ff:4f:7e:
38:99:e1:4d:3b:4a:57:22:fe:ff:72:5f:77:a2:c9:
73:6f:25:3c:ac:a3:6a:47:42:f5:e0:92:1c:54:8c:
03:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:6C:70:3B:BF:AC:3D:4E:39:DC:B6:89:87:D4:06:90:E5:66:34:06
X509v3 Authority Key Identifier:
keyid:44:44:C7:C3:AD:34:B6:97:7F:A1:8A:22:37:CA:30:6B:9B:EE:08:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RETHw600tpd_oYoiN8owa5vuCOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/K2xwO7-sPU453LaJh9QGkOVmNAY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/RETHw600tpd_oYoiN8owa5vuCOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.129.224.0/22
31.129.234.0/24
31.129.240.0/22
31.129.252.0/22
213.5.192.0/21
Signature Algorithm: sha256WithRSAEncryption
2d:c1:db:bf:58:1d:cb:99:24:f2:2e:6d:bd:92:d7:31:cf:ca:
27:cb:33:e8:d3:68:63:c3:0f:78:6e:c4:33:de:24:b6:22:ac:
39:2c:a2:b6:a4:0c:8a:9a:cb:83:9a:52:fd:10:d5:da:9d:41:
93:b8:32:4d:d9:65:c3:e3:0b:d2:da:f0:d3:65:a6:c1:40:2f:
60:96:92:0a:1d:ac:22:3c:cd:64:23:ee:23:54:87:d9:5b:1c:
d9:e4:b4:2f:75:63:c8:16:b2:9e:87:79:30:d5:89:15:c8:0c:
fc:57:a3:70:4d:ca:f3:d2:e1:44:a6:9e:e2:b6:01:39:d6:7a:
7d:21:ab:f9:ab:c1:d6:e9:de:1c:98:74:cb:95:ba:e8:c0:94:
95:50:ff:e7:d9:80:e9:7a:8f:aa:b5:36:dd:4d:7a:65:41:33:
b1:c7:c2:de:2e:70:16:92:3a:df:b2:07:70:34:1e:31:ec:2a:
0c:1b:fb:07:98:1d:80:16:7b:a9:3f:8d:f0:af:e4:0e:be:f1:
48:22:c7:4b:5b:10:2a:d4:dc:e3:0d:cb:4b:a6:06:26:ed:cf:
48:95:e1:86:d6:e1:41:77:e2:be:e0:98:b4:2d:53:08:88:28:
e8:ba:f6:98:ab:9e:01:14:41:88:de:ba:53:91:f5:6d:62:2d:
ce:a3:02:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:57 2024 by rpki-client on console-ams.rpki-client.org