Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/6fM2bNj-C8OCLKCB0__EPrlWW7Q.roa
File: 6fM2bNj-C8OCLKCB0__EPrlWW7Q.roa (raw, json)
Hash identifier: 7g44sEy5DDLQHvM1sD0ERa5AF6pZhw2mRPsMcCVvpSo=
Subject key identifier: E9:F3:36:6C:D8:FE:0B:C3:82:2C:A0:81:D3:FF:C4:3E:B9:56:5B:B4
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 018D1B89CC2BC465042ADD820838AAEDF7B8
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/6fM2bNj-C8OCLKCB0__EPrlWW7Q.roa
Signing time: Thu 18 Jan 2024 07:47:12 +0000
ROA not before: Thu 18 Jan 2024 07:47:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44208
IP address blocks: 31.170.48.0/20 maxlen: 24
37.49.145.0/24 maxlen: 24
37.49.146.0/24 maxlen: 24
37.49.147.0/24 maxlen: 24
94.74.128.0/18 maxlen: 24
94.74.136.0/24 maxlen: 24
94.74.137.0/24 maxlen: 24
94.74.147.0/24 maxlen: 24
94.74.165.0/24 maxlen: 24
94.74.166.0/23 maxlen: 23
94.74.168.0/24 maxlen: 24
94.74.187.0/24 maxlen: 24
94.74.190.0/24 maxlen: 24
109.203.161.0/24 maxlen: 24
109.203.164.0/24 maxlen: 24
176.46.129.0/24 maxlen: 24
176.46.130.0/24 maxlen: 24
176.46.134.0/24 maxlen: 24
176.46.135.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Jan 2024 16:54:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:1b:89:cc:2b:c4:65:04:2a:dd:82:08:38:aa:ed:f7:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: Jan 18 07:47:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e9f3366cd8fe0bc3822ca081d3ffc43eb9565bb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d5:5b:9a:a0:9a:f3:fd:da:f6:70:a8:50:4d:
ad:d9:44:91:49:3d:4f:c5:d0:e1:3f:ad:ff:26:9b:
b4:77:5e:59:32:85:b0:6d:c4:ff:42:af:bd:e7:f3:
2b:5e:7e:31:75:96:25:df:5a:9d:43:1c:2d:77:65:
20:e9:4f:a7:c4:d8:d5:e7:89:b9:f2:ba:4e:2b:99:
af:bf:63:24:ca:39:0c:df:6d:8c:8b:bc:43:c4:2d:
75:43:52:f8:9e:44:76:4e:0a:7d:b8:d0:df:ae:71:
c5:55:1d:7c:11:2d:2d:5f:3a:e2:ad:fe:45:be:b8:
4d:75:86:03:fe:ee:3f:44:1c:99:d0:e5:d3:9e:2b:
09:06:85:85:a9:3a:2d:2c:50:c2:bf:f5:a5:cb:6a:
72:62:be:f5:e2:d5:b4:6c:81:31:a7:31:66:c5:92:
43:bc:d4:10:28:69:e7:22:a2:09:aa:b5:9e:76:8d:
91:48:42:a6:54:8d:42:81:f2:fb:46:49:71:39:be:
b0:5c:8e:9b:4b:26:41:d6:43:45:1b:b3:55:47:b0:
ba:fd:2b:a1:b3:ff:27:f4:9a:7d:84:ea:6c:b0:6c:
69:5b:aa:6c:a3:8f:9d:08:6b:8f:26:a7:15:40:54:
5d:c8:4e:bf:4e:26:be:43:62:6c:3f:65:69:fe:f3:
e7:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:F3:36:6C:D8:FE:0B:C3:82:2C:A0:81:D3:FF:C4:3E:B9:56:5B:B4
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/6fM2bNj-C8OCLKCB0__EPrlWW7Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.170.48.0/20
37.49.145.0-37.49.147.255
94.74.128.0/18
109.203.161.0/24
109.203.164.0/24
176.46.129.0-176.46.130.255
176.46.134.0/23
Signature Algorithm: sha256WithRSAEncryption
96:5b:e5:95:74:c2:d5:cf:06:f6:bb:5a:a7:9d:5c:63:01:19:
3b:60:bb:fe:84:ab:7b:d6:f6:08:5c:fb:e4:9d:22:10:e4:28:
54:81:0d:34:90:62:3a:1f:d2:34:30:0d:ab:c9:2e:1b:5a:ec:
4e:5f:cf:8b:f0:e1:ab:33:3f:3a:d5:44:18:6b:74:41:9e:7b:
3f:f6:39:6c:f1:22:b3:63:0a:55:c7:bb:2a:21:17:ce:2a:c6:
cf:99:b2:e8:cc:e9:50:4d:70:97:6b:97:d5:53:21:5f:e2:86:
91:40:e8:79:af:9b:94:96:eb:75:83:c5:5e:4f:91:5f:69:68:
c1:97:cc:52:03:1f:e4:0e:9c:a7:2d:3d:28:00:0b:32:bb:9e:
38:86:c1:26:a6:3a:d6:65:e7:e1:af:bf:b2:63:7a:34:25:59:
51:c4:b9:a8:85:0a:70:41:62:e4:79:b6:96:b7:3c:9d:16:ea:
30:d4:16:86:63:c0:1f:87:56:84:f6:fd:af:60:5a:7e:7c:fe:
33:ef:d9:4f:7f:ca:19:b9:43:d1:31:6f:83:84:f9:6f:47:5a:
1f:3f:a3:92:27:b5:77:05:80:e8:92:b9:b6:9f:e1:93:68:5a:
68:b2:77:3e:3f:81:05:96:f8:89:96:c4:10:e2:ff:e5:ee:cd:
f6:76:7a:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:03:53 2025 by rpki-client