Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/VhYqG5ZeQo29ihb0p22BHvSe8_Y.roa
File: VhYqG5ZeQo29ihb0p22BHvSe8_Y.roa (raw, json)
Hash identifier: nU9MzEyyyaa6fjuRQ/AFbEtRM5zRVIgbQnYh1J5HQ9c=
Subject key identifier: 56:16:2A:1B:96:5E:42:8D:BD:8A:16:F4:A7:6D:81:1E:F4:9E:F3:F6
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 01921F6AD818C4E80C79817F9EA21E5DE328
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/VhYqG5ZeQo29ihb0p22BHvSe8_Y.roa
Signing time: Mon 23 Sep 2024 15:05:48 +0000
ROA not before: Mon 23 Sep 2024 15:05:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6282
IP address blocks: 31.131.8.0/23 maxlen: 23
31.131.10.0/23 maxlen: 23
64.43.100.0/22 maxlen: 22
64.43.108.0/22 maxlen: 22
64.43.116.0/22 maxlen: 22
77.36.24.0/22 maxlen: 22
81.161.0.0/23 maxlen: 23
91.246.176.0/22 maxlen: 22
91.246.180.0/22 maxlen: 22
93.120.16.0/22 maxlen: 22
93.120.20.0/22 maxlen: 22
176.96.52.0/22 maxlen: 22
176.111.160.0/23 maxlen: 23
176.111.162.0/23 maxlen: 23
176.113.184.0/22 maxlen: 22
176.113.188.0/22 maxlen: 22
176.116.32.0/22 maxlen: 22
176.116.36.0/22 maxlen: 22
178.159.144.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 23 Oct 2024 11:16:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:1f:6a:d8:18:c4:e8:0c:79:81:7f:9e:a2:1e:5d:e3:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: Sep 23 15:05:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=56162a1b965e428dbd8a16f4a76d811ef49ef3f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:c1:9d:f7:37:fc:1c:84:85:21:3b:3a:53:77:
8d:89:ca:6e:27:bf:43:17:fc:4c:9a:64:00:88:2e:
9f:46:27:3b:cb:c7:18:7b:e8:c9:8c:77:ad:c9:56:
5a:49:51:a9:64:19:c8:d0:91:e2:8c:0a:34:d3:2e:
f2:a4:61:52:6f:14:90:f5:2c:56:09:f0:02:e4:58:
9d:d4:b8:20:b7:8e:d6:ff:f5:df:51:f1:a7:2d:b0:
31:28:d2:c3:18:f9:bc:d4:b7:19:a5:ed:60:5b:a2:
bd:ba:2e:65:69:d5:19:9a:78:97:5b:6f:99:6f:5b:
ba:cc:d2:ca:23:a4:c3:11:13:ff:67:4b:54:0a:d1:
6e:c7:d1:83:09:55:f6:d7:03:e6:85:d2:5a:b0:26:
3f:ba:bd:3b:fc:a3:6d:2f:05:bb:4d:8e:98:8f:8f:
b0:6c:af:27:ec:8f:7e:dc:95:48:09:f1:f7:16:d5:
14:47:8f:7e:95:4b:45:29:fc:ae:54:ae:51:eb:c1:
86:db:4b:8e:ce:c4:6f:bb:4e:90:15:91:b2:e5:7c:
5e:70:fc:f2:3c:60:f2:e4:66:1c:64:a6:bd:0d:ea:
b3:9c:80:1e:70:12:7c:83:2c:6e:99:1a:fe:a9:89:
0a:76:66:2e:7e:f8:d3:0b:48:54:ed:70:ac:3f:c9:
26:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:16:2A:1B:96:5E:42:8D:BD:8A:16:F4:A7:6D:81:1E:F4:9E:F3:F6
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/VhYqG5ZeQo29ihb0p22BHvSe8_Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.131.8.0/22
64.43.100.0/22
64.43.108.0/22
64.43.116.0/22
77.36.24.0/22
81.161.0.0/23
91.246.176.0/21
93.120.16.0/21
176.96.52.0/22
176.111.160.0/22
176.113.184.0/21
176.116.32.0/21
178.159.144.0/23
Signature Algorithm: sha256WithRSAEncryption
a0:cc:d3:3a:b4:05:3a:4a:35:09:d8:16:ec:f2:25:ce:b1:38:
38:20:e7:52:04:40:72:94:55:99:8a:9b:c9:1c:95:65:2b:2e:
4d:e3:ec:2a:54:79:e5:76:1f:2a:b2:01:3a:c3:33:23:cf:d8:
82:ae:83:ca:11:c7:89:76:7c:eb:1b:1c:51:1f:2b:2a:95:33:
60:7d:1c:a6:94:1b:42:81:0c:ef:60:10:1e:74:2f:10:f7:48:
4e:88:c9:41:83:07:b1:be:99:40:a1:5c:f1:6f:00:7f:67:30:
ad:ab:d2:65:68:75:05:85:30:04:1e:58:64:62:ca:e6:47:55:
50:1c:59:2c:7c:96:b2:63:50:d9:b9:e3:6a:7e:a9:1a:81:6c:
4e:d5:3b:30:fa:1f:f8:d6:c2:93:f9:46:96:7e:c5:6a:c2:16:
ca:14:9c:4a:db:01:4a:4d:18:02:cf:df:f4:80:f9:9e:2b:25:
0b:81:e7:54:12:dd:d1:30:81:f1:b6:51:bb:11:81:d7:8b:a9:
bf:bb:ac:27:39:24:9b:f5:84:89:62:ad:cd:09:c6:a8:b9:c9:
35:85:a5:65:b7:f1:0b:de:fc:37:b1:33:88:f9:32:fc:39:bf:
af:4b:2a:cb:93:57:7a:df:a3:1c:b7:8e:f8:e8:54:5a:8d:26:
4f:fb:e0:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 23 14:05:12 2024 by rpki-client on console-fra.rpki-client.org