Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/8UFA9b8hOZ2-5htBIx3HAHq1NLY.roa
File: 8UFA9b8hOZ2-5htBIx3HAHq1NLY.roa (raw, json)
Hash identifier: dkBU5HQjUWNXfQcupwxEJo9hBSlwnctIS8khtPNcLHE=
Subject key identifier: F1:41:40:F5:BF:21:39:9D:BE:E6:1B:41:23:1D:C7:00:7A:B5:34:B6
Certificate issuer: /CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Certificate serial: 0190DA135766356255FA98D0996547FC82B1
Authority key identifier: 4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/8UFA9b8hOZ2-5htBIx3HAHq1NLY.roa
Signing time: Mon 22 Jul 2024 10:53:38 +0000
ROA not before: Mon 22 Jul 2024 10:53:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6939
IP address blocks: 31.40.196.0/22 maxlen: 22
31.40.204.0/22 maxlen: 22
37.221.76.0/22 maxlen: 22
62.182.32.0/22 maxlen: 22
77.241.72.0/22 maxlen: 22
83.171.244.0/22 maxlen: 22
84.54.0.0/22 maxlen: 22
85.8.144.0/22 maxlen: 22
85.235.72.0/22 maxlen: 22
139.28.48.0/22 maxlen: 22
139.28.212.0/22 maxlen: 22
176.53.156.0/22 maxlen: 22
176.96.128.0/22 maxlen: 22
193.32.204.0/22 maxlen: 22
194.93.48.0/22 maxlen: 22
212.115.100.0/22 maxlen: 22
217.18.208.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 24 Jul 2024 10:10:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:da:13:57:66:35:62:55:fa:98:d0:99:65:47:fc:82:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Validity
Not Before: Jul 22 10:53:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f14140f5bf21399dbee61b41231dc7007ab534b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:8f:48:42:40:73:f9:12:3d:71:b8:bd:4f:37:
12:63:56:6e:09:61:d0:c8:66:5b:c9:57:0a:bc:b6:
5f:cd:db:97:45:0e:ba:12:e4:09:98:87:85:0a:cf:
21:65:3e:52:53:25:74:6b:d0:bd:69:46:4b:39:d4:
91:8e:ac:86:bf:09:ac:9f:3f:03:c5:ac:21:48:72:
53:3a:bb:bf:f7:1a:87:03:d0:48:ff:7a:84:30:50:
ec:8c:d3:ee:7e:6a:41:33:90:ea:c0:d0:46:f5:fa:
c2:42:2d:fa:d7:01:42:36:ef:8f:fb:77:99:1b:50:
49:d0:af:b6:84:f6:9d:ef:43:ef:27:32:5d:84:4b:
cc:35:3e:98:85:a4:bc:90:e5:e3:c0:f8:5d:05:91:
4a:e6:4a:02:d0:72:84:be:6c:07:08:a7:9c:8d:9d:
97:9b:ce:a7:51:24:8c:c5:59:a3:4a:1b:29:b7:22:
ba:31:f6:a0:b5:2f:92:dc:51:bd:f8:11:7f:42:fc:
63:d1:be:ee:3e:3c:9c:46:1c:e7:88:3d:91:2c:7d:
72:b7:a7:d1:82:e7:b2:ed:33:9b:b8:40:5f:7d:07:
8f:07:78:8d:23:09:d2:ef:f6:82:04:95:2f:25:38:
e3:a7:1d:84:07:ba:13:68:a8:6b:6e:d5:16:1e:4a:
33:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:41:40:F5:BF:21:39:9D:BE:E6:1B:41:23:1D:C7:00:7A:B5:34:B6
X509v3 Authority Key Identifier:
keyid:4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/8UFA9b8hOZ2-5htBIx3HAHq1NLY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.196.0/22
31.40.204.0/22
37.221.76.0/22
62.182.32.0/22
77.241.72.0/22
83.171.244.0/22
84.54.0.0/22
85.8.144.0/22
85.235.72.0/22
139.28.48.0/22
139.28.212.0/22
176.53.156.0/22
176.96.128.0/22
193.32.204.0/22
194.93.48.0/22
212.115.100.0/22
217.18.208.0/22
Signature Algorithm: sha256WithRSAEncryption
5c:11:6d:8b:24:80:d9:e8:ee:31:22:2d:1e:d0:b5:65:be:ae:
bf:5f:71:9d:df:ff:d0:fe:7f:7f:8d:2d:14:38:0d:9d:a1:26:
0d:16:ea:ab:42:5a:84:95:2e:13:9b:7a:99:10:56:2d:15:39:
60:dd:01:4b:ba:4f:b8:64:a3:c6:0f:29:c7:35:80:78:ab:1a:
f7:b9:54:78:9d:46:0a:fe:8e:77:bf:40:b6:df:1d:ef:6e:75:
fd:17:9e:4c:a4:7a:5f:6b:05:a9:a9:e4:76:08:db:12:b3:68:
d4:26:29:ff:cc:7f:a7:0d:6f:06:0d:92:17:b5:a9:4d:31:fb:
5f:4e:f9:58:ba:8a:50:a3:0a:28:b9:36:d6:48:1e:d0:bc:41:
b4:39:fe:6d:7d:94:94:93:74:9c:18:19:7e:8e:a7:d0:a0:51:
04:b2:a2:8c:08:1b:d9:99:04:e8:f6:0e:d0:1d:8d:12:c2:cd:
f9:28:bf:32:00:89:13:6b:e7:75:75:7c:b6:64:b0:ee:b5:3d:
2c:3d:3a:51:89:a3:44:06:a6:e7:52:3e:42:b8:9d:5c:c0:f6:
a8:97:b8:ac:34:a3:48:74:ee:88:a5:cc:9f:b7:05:e1:b1:ba:
2c:f0:33:aa:0a:40:64:f5:ab:e9:72:79:d2:0b:a9:1a:0c:78:
44:ae:c3:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 24 12:45:19 2024 by rpki-client on console-ams.rpki-client.org