Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/35064b-7a5a-4c74-8743-fd8660c4fd6e/1/WyxF4u7BMfL0YprSkAiTzSQzhP8.roa
File: WyxF4u7BMfL0YprSkAiTzSQzhP8.roa (raw, json)
Hash identifier: xc3QveADCXJSY0TaG0AxjDQVh7gs+UBJGTI7ue0N/c8=
Subject key identifier: 5B:2C:45:E2:EE:C1:31:F2:F4:62:9A:D2:90:08:93:CD:24:33:84:FF
Certificate issuer: /CN=83bce35561f541bda97e777e6879a1d704e7b42f
Certificate serial: 018CC34908743630D64A47B63127E0490A0E
Authority key identifier: 83:BC:E3:55:61:F5:41:BD:A9:7E:77:7E:68:79:A1:D7:04:E7:B4:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g7zjVWH1Qb2pfnd-aHmh1wTntC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/35064b-7a5a-4c74-8743-fd8660c4fd6e/1/WyxF4u7BMfL0YprSkAiTzSQzhP8.roa
Signing time: Mon 01 Jan 2024 04:29:52 +0000
ROA not before: Mon 01 Jan 2024 04:29:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3259
IP address blocks: 31.44.217.0/24 maxlen: 24
31.44.218.0/24 maxlen: 24
31.44.216.0/24 maxlen: 24
31.44.219.0/24 maxlen: 24
31.44.220.0/22 maxlen: 22
31.44.212.0/24 maxlen: 24
31.44.213.0/24 maxlen: 24
31.44.210.0/24 maxlen: 24
31.44.208.0/24 maxlen: 24
31.44.209.0/24 maxlen: 24
45.156.132.0/22 maxlen: 22
194.5.112.0/24 maxlen: 24
194.5.108.0/24 maxlen: 24
194.5.108.0/22 maxlen: 24
194.5.111.0/24 maxlen: 24
194.5.109.0/24 maxlen: 24
194.5.110.0/24 maxlen: 24
194.5.114.0/24 maxlen: 24
194.5.115.0/24 maxlen: 24
194.5.113.0/24 maxlen: 24
194.5.118.0/24 maxlen: 24
194.5.116.0/24 maxlen: 24
194.5.117.0/24 maxlen: 24
194.5.121.0/24 maxlen: 24
194.5.122.0/24 maxlen: 24
194.5.119.0/24 maxlen: 24
194.5.120.0/24 maxlen: 24
194.5.125.0/24 maxlen: 24
194.5.123.0/24 maxlen: 24
194.5.124.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 09:49:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:49:08:74:36:30:d6:4a:47:b6:31:27:e0:49:0a:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83bce35561f541bda97e777e6879a1d704e7b42f
Validity
Not Before: Jan 1 04:29:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5b2c45e2eec131f2f4629ad2900893cd243384ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:86:0f:f6:54:66:d2:14:51:2c:7e:0e:02:38:
3e:59:44:70:4c:b5:26:74:0e:8e:12:96:44:d9:ba:
41:b9:9f:a1:ef:08:89:c6:6d:14:e4:79:ce:cf:27:
a1:2f:c4:55:b6:40:ea:78:9c:eb:ee:e9:89:82:67:
c1:ab:d1:74:c9:33:ab:e1:3f:7c:92:20:a9:0c:8d:
5c:3f:b6:d1:8d:33:76:29:aa:45:fd:69:3e:5d:22:
20:41:47:4a:80:be:21:bd:19:60:89:20:47:ac:97:
1a:27:9f:29:68:dc:ef:74:dd:9b:95:19:48:d6:af:
64:9a:8f:71:01:98:2d:07:5e:d9:f3:1c:2c:14:f3:
5d:d8:b0:4b:03:af:d4:b3:2b:47:8b:12:75:78:0b:
28:2d:89:23:1a:04:a5:12:2d:1a:30:27:64:40:6c:
23:21:10:95:7f:ce:bc:f0:88:15:55:f8:c9:bf:bc:
aa:01:79:c2:09:1d:17:aa:3b:38:ba:15:f5:95:23:
be:a7:20:d7:83:74:18:ac:b9:89:08:8e:30:dd:1a:
e8:d8:71:09:f9:a6:80:41:e6:46:5a:f3:23:e5:b6:
31:5e:11:86:3f:bc:a1:07:73:57:48:0a:1c:31:cf:
83:be:f8:5f:f1:44:87:d4:83:c5:0b:31:43:ff:18:
18:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:2C:45:E2:EE:C1:31:F2:F4:62:9A:D2:90:08:93:CD:24:33:84:FF
X509v3 Authority Key Identifier:
keyid:83:BC:E3:55:61:F5:41:BD:A9:7E:77:7E:68:79:A1:D7:04:E7:B4:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g7zjVWH1Qb2pfnd-aHmh1wTntC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/35064b-7a5a-4c74-8743-fd8660c4fd6e/1/WyxF4u7BMfL0YprSkAiTzSQzhP8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/35064b-7a5a-4c74-8743-fd8660c4fd6e/1/g7zjVWH1Qb2pfnd-aHmh1wTntC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.44.208.0-31.44.210.255
31.44.212.0/23
31.44.216.0/21
45.156.132.0/22
194.5.108.0-194.5.125.255
Signature Algorithm: sha256WithRSAEncryption
67:48:5c:86:55:e4:35:0a:f5:9a:bb:f5:30:95:12:57:b7:df:
d1:1d:68:66:9d:b0:bf:e7:fb:bb:7e:76:de:92:b9:bd:ce:95:
d0:5c:ba:1f:be:28:4a:59:3d:9e:88:f3:77:3b:73:ad:56:e2:
08:2e:6d:90:df:9d:67:af:f5:6f:d2:c9:fe:42:4f:cb:fc:27:
40:68:75:ef:12:c5:b1:52:18:bf:48:ca:d6:de:27:bf:43:57:
2f:79:06:83:d7:c0:25:ff:52:d7:37:7b:c7:9c:6b:3a:8b:66:
72:25:77:f1:b5:94:f7:9c:05:ca:ca:95:c4:da:ae:cd:61:97:
24:64:0f:76:e6:c2:4b:7a:c7:35:19:e4:5a:27:9c:1e:1d:46:
e9:c0:84:73:6e:95:a6:92:1c:80:93:a3:3b:dd:03:6e:10:72:
7f:69:72:79:64:fa:bd:da:44:96:2c:01:d1:6b:a6:87:51:3c:
6c:cc:a3:5d:a8:f9:52:37:b0:43:e9:3f:69:43:bb:23:98:11:
a3:76:08:61:62:a5:7c:31:93:96:c2:9c:be:4e:8c:3c:9b:f5:
80:fb:c4:21:b6:41:18:d8:21:47:fc:77:56:24:82:a4:d4:f1:
4a:dd:52:75:ba:b9:07:1b:a0:0e:57:e1:d5:b5:6e:f7:e5:dd:
58:94:31:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:49:23 2025 by rpki-client