Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/86jAuXSjLi9psE-BUfuh1k5ZiU8.roa
File: 86jAuXSjLi9psE-BUfuh1k5ZiU8.roa (raw, json)
Hash identifier: ux7uUGFJ9IVnMc9Rp3B2pMhk490GpdCHO0UOwHPGzbc=
Subject key identifier: F3:A8:C0:B9:74:A3:2E:2F:69:B0:4F:81:51:FB:A1:D6:4E:59:89:4F
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 018FBF62A00CF41EA0FB639A18B80E845765
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/86jAuXSjLi9psE-BUfuh1k5ZiU8.roa
Signing time: Tue 28 May 2024 13:27:42 +0000
ROA not before: Tue 28 May 2024 13:27:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6282
IP address blocks: 31.131.8.0/23 maxlen: 23
31.131.10.0/23 maxlen: 23
64.43.100.0/22 maxlen: 22
64.43.108.0/22 maxlen: 22
64.43.116.0/22 maxlen: 22
77.36.24.0/22 maxlen: 22
81.161.0.0/23 maxlen: 23
81.161.2.0/23 maxlen: 23
91.246.176.0/22 maxlen: 22
91.246.180.0/22 maxlen: 22
93.120.16.0/22 maxlen: 22
93.120.20.0/22 maxlen: 22
176.96.52.0/22 maxlen: 22
176.111.160.0/23 maxlen: 23
176.111.162.0/23 maxlen: 23
176.113.184.0/22 maxlen: 22
176.113.188.0/22 maxlen: 22
176.116.32.0/22 maxlen: 22
176.116.36.0/22 maxlen: 22
178.159.144.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 23 Sep 2024 15:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:bf:62:a0:0c:f4:1e:a0:fb:63:9a:18:b8:0e:84:57:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: May 28 13:27:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f3a8c0b974a32e2f69b04f8151fba1d64e59894f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:e6:59:25:76:0c:4f:f1:a3:7a:8e:fa:4c:7c:
ed:ba:3f:6a:24:62:f4:1c:d5:fc:a9:10:be:7c:07:
4c:82:2b:ba:ab:2a:ad:09:52:31:dc:7c:d9:0d:5f:
ce:47:fb:dd:72:7b:71:b2:ed:b2:98:08:33:0f:1d:
89:73:5d:2c:bc:f4:98:cd:06:7a:7b:ec:79:05:e7:
55:a4:18:0c:32:df:16:51:dc:5d:4b:e8:f8:a9:4f:
39:51:c3:e1:97:cb:e2:fb:99:6d:31:84:e1:df:8e:
78:76:5b:04:ba:28:52:c7:7f:ab:a0:83:d3:66:df:
03:55:bf:30:29:0f:c1:eb:74:a0:ae:67:c6:50:d4:
16:24:d8:53:24:74:ba:cf:15:ba:c7:98:22:d8:56:
65:e8:9e:55:d0:df:45:19:db:9b:05:b5:d4:59:f3:
f6:42:14:a2:9c:95:84:7c:99:06:b5:66:a6:52:33:
fa:fe:28:b7:b1:4a:36:9f:fc:f1:12:fe:29:70:08:
ac:3c:24:e5:6a:89:8d:21:a6:35:31:c5:b8:99:2c:
bf:dd:6e:9f:1d:a4:d8:ae:64:94:a1:d2:d9:51:79:
c3:91:f1:9d:7a:80:71:e8:94:8a:15:5b:1b:4a:5d:
84:ab:e7:1b:9f:ea:40:94:ca:24:7a:4d:e3:5b:e5:
5f:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:A8:C0:B9:74:A3:2E:2F:69:B0:4F:81:51:FB:A1:D6:4E:59:89:4F
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/86jAuXSjLi9psE-BUfuh1k5ZiU8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.131.8.0/22
64.43.100.0/22
64.43.108.0/22
64.43.116.0/22
77.36.24.0/22
81.161.0.0/22
91.246.176.0/21
93.120.16.0/21
176.96.52.0/22
176.111.160.0/22
176.113.184.0/21
176.116.32.0/21
178.159.144.0/23
Signature Algorithm: sha256WithRSAEncryption
a4:da:ad:09:27:92:fc:67:f9:04:3e:57:e7:cc:04:06:d3:19:
89:2a:1b:88:4c:29:04:09:84:0b:ae:da:d0:18:49:db:6f:cd:
55:84:84:eb:80:49:ea:2d:84:d1:2a:82:c7:f6:7b:4a:3e:91:
58:b5:b0:e0:92:7b:36:fb:61:c3:57:d0:f4:e2:f9:ba:b8:a8:
22:a4:b4:06:90:ce:31:0a:45:44:24:69:0c:ef:3f:36:52:ae:
72:31:08:3b:00:f9:e7:46:b9:ec:61:e3:31:41:76:1a:be:22:
7a:22:8e:65:62:f3:2c:3e:13:68:0f:e2:86:42:b0:5b:92:c7:
58:31:73:9c:be:00:54:01:01:9d:21:5c:ba:43:8a:0e:a8:77:
c5:70:c1:42:36:92:2f:6b:7a:10:b7:6d:0b:c2:ee:94:fe:ef:
21:a3:33:3d:d5:38:16:a3:f4:2f:c5:50:bc:3f:0c:49:d4:12:
ae:91:79:0b:72:c2:b5:30:3e:ac:e6:5c:46:3a:69:67:9f:5c:
62:55:5d:4a:a6:57:ea:85:06:8e:fb:ef:9f:b5:e1:44:3d:26:
8e:b2:66:45:3e:22:9e:12:1d:6b:da:de:64:33:9e:27:fe:af:
48:42:e2:85:eb:91:29:e7:03:e9:77:3a:2d:0b:f7:25:4f:b3:
c0:6d:46:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 23 18:00:47 2024 by rpki-client on console-fra.rpki-client.org