Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/X2tMDPhb0mLQlSugRwAKKxuw0GU.roa
File: X2tMDPhb0mLQlSugRwAKKxuw0GU.roa (raw, json)
Hash identifier: WeUVzaR7z0D46xy8rfnMgZ+bpXJgjjH3hZMt9yVAXcA=
Subject key identifier: 5F:6B:4C:0C:F8:5B:D2:62:D0:95:2B:A0:47:00:0A:2B:1B:B0:D0:65
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 018A4655383D3AFF52391387FDE67AAC6344
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/X2tMDPhb0mLQlSugRwAKKxuw0GU.roa
Signing time: Wed 30 Aug 2023 12:05:04 +0000
ROA not before: Wed 30 Aug 2023 12:05:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6282
IP address blocks: 176.96.52.0/22 maxlen: 22
77.36.120.0/22 maxlen: 22
178.159.144.0/23 maxlen: 23
176.113.184.0/22 maxlen: 22
176.113.188.0/22 maxlen: 22
81.161.2.0/23 maxlen: 23
81.161.0.0/23 maxlen: 23
77.36.24.0/22 maxlen: 22
176.116.36.0/22 maxlen: 22
176.116.32.0/22 maxlen: 22
91.246.176.0/22 maxlen: 22
91.246.180.0/22 maxlen: 22
64.43.100.0/22 maxlen: 22
64.43.104.0/22 maxlen: 22
176.111.162.0/23 maxlen: 23
176.111.160.0/23 maxlen: 23
64.43.108.0/22 maxlen: 22
93.120.16.0/22 maxlen: 22
64.43.116.0/22 maxlen: 22
93.120.20.0/22 maxlen: 22
31.131.8.0/23 maxlen: 23
31.131.10.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:46:55:38:3d:3a:ff:52:39:13:87:fd:e6:7a:ac:63:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: Aug 30 12:05:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5f6b4c0cf85bd262d0952ba047000a2b1bb0d065
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b8:c1:93:0f:2e:ff:9f:26:5b:f6:81:af:ea:
9b:93:53:0e:79:c7:49:ec:3d:91:fb:c5:22:78:86:
e6:bc:91:cb:8d:ee:1e:a7:a6:9c:6c:7a:88:af:d0:
8f:b1:45:c6:58:28:7a:49:1f:45:a7:82:f0:ca:b1:
c3:a5:40:7c:f2:89:69:9d:41:df:33:4b:f4:d7:5c:
93:96:41:e0:8d:c1:93:ce:9d:38:4e:9b:38:d1:a5:
cf:1d:eb:84:49:61:8f:78:57:03:e6:db:aa:42:94:
37:3f:f9:dd:34:f0:bb:d4:f0:b9:dd:48:7b:5c:dc:
bb:81:46:46:04:c5:90:57:68:0b:27:82:84:27:83:
11:84:fd:7e:66:58:98:b4:ef:dd:dc:10:94:c3:bb:
cf:ee:85:8d:8d:84:d9:36:08:35:0e:cb:5c:be:21:
c1:10:ea:40:27:bb:78:56:b3:1d:e8:84:8f:45:3a:
d8:b6:05:e1:a2:36:82:25:5c:0b:1e:9e:f3:6e:30:
d0:64:2b:53:3a:5b:9a:da:9d:2c:e2:8d:c2:26:49:
99:a6:80:78:72:45:5e:0d:71:a7:07:e5:49:8e:6e:
db:b0:95:8b:62:a4:18:a0:e9:ac:ee:fb:46:d2:3a:
ef:d7:fb:7e:c6:b6:7a:5a:ff:c0:f6:79:b0:2a:f0:
70:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:6B:4C:0C:F8:5B:D2:62:D0:95:2B:A0:47:00:0A:2B:1B:B0:D0:65
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/X2tMDPhb0mLQlSugRwAKKxuw0GU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.131.8.0/22
64.43.100.0-64.43.111.255
64.43.116.0/22
77.36.24.0/22
77.36.120.0/22
81.161.0.0/22
91.246.176.0/21
93.120.16.0/21
176.96.52.0/22
176.111.160.0/22
176.113.184.0/21
176.116.32.0/21
178.159.144.0/23
Signature Algorithm: sha256WithRSAEncryption
06:4b:11:ae:53:29:b7:2e:04:fc:5f:8a:7a:f2:63:37:52:19:
26:45:95:e0:47:15:21:2e:df:cb:60:0a:0a:79:09:1a:f9:43:
93:4c:f7:34:29:b0:c1:44:85:dd:d2:40:39:42:24:5b:a3:e4:
c4:9f:44:06:ca:b5:e7:a0:6a:54:d4:5b:b6:b1:87:17:82:db:
70:e1:3e:86:fb:2d:66:44:40:46:ef:f2:aa:dc:91:76:00:62:
96:d0:b1:c2:a8:e6:e3:97:6b:c7:8b:10:1e:ff:98:bb:2c:73:
1f:6d:63:62:bf:ad:a8:88:0b:cf:c6:97:10:d4:8c:a5:4a:97:
34:5e:8b:03:8a:92:aa:6a:dc:10:f7:24:eb:6c:09:6f:a4:65:
fd:f3:fd:7b:4d:d9:04:24:00:fb:86:38:01:03:94:94:ec:d3:
3d:c9:7e:36:14:da:b7:fb:1f:61:99:9b:bb:3c:13:c1:84:23:
19:72:b6:60:ea:1c:f1:98:15:a8:20:6f:e7:82:3f:46:04:08:
65:2f:18:ef:28:39:e6:fb:14:e3:14:96:01:1d:1b:66:6f:af:
e6:27:e7:50:08:6a:e8:70:48:bd:ea:58:3e:f3:6f:f2:63:75:
b0:32:a5:f7:0c:0b:6b:7b:ed:49:59:01:4e:ae:67:e4:17:fd:
f1:4f:52:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:57 2024 by rpki-client on console-fra.rpki-client.org