Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/89962e-b11c-4e69-b413-ab63d45f4b6a/1/JL00iy_pP8R5uqt8YEmIxO4U24U.roa
File: JL00iy_pP8R5uqt8YEmIxO4U24U.roa (raw, json)
Hash identifier: xObUTxfeTCi31ReD8a4jvXmkPclDhGaQgIRXEzoZrZA=
Subject key identifier: 24:BD:34:8B:2F:E9:3F:C4:79:BA:AB:7C:60:49:88:C4:EE:14:DB:85
Certificate issuer: /CN=4f9131775b3260b11a16240d1d8e76891d7f3732
Certificate serial: 0192E1E82A9042DA79AD907EAC484AB56029
Authority key identifier: 4F:91:31:77:5B:32:60:B1:1A:16:24:0D:1D:8E:76:89:1D:7F:37:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5Exd1syYLEaFiQNHY52iR1_NzI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/89962e-b11c-4e69-b413-ab63d45f4b6a/1/JL00iy_pP8R5uqt8YEmIxO4U24U.roa
Signing time: Thu 31 Oct 2024 09:29:01 +0000
ROA not before: Thu 31 Oct 2024 09:29:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16276
IP address blocks: 43.226.0.0/23 maxlen: 23
46.17.217.0/24 maxlen: 24
63.251.117.0/24 maxlen: 24
64.95.150.0/23 maxlen: 23
64.225.244.0/23 maxlen: 23
91.198.19.0/24 maxlen: 24
91.246.38.0/24 maxlen: 24
103.94.60.0/22 maxlen: 22
104.225.253.0/24 maxlen: 24
117.18.104.0/24 maxlen: 24
123.100.227.0/24 maxlen: 24
148.222.40.0/22 maxlen: 22
167.234.38.0/24 maxlen: 24
198.49.103.0/24 maxlen: 24
202.2.60.0/22 maxlen: 22
203.27.201.0/24 maxlen: 24
216.183.120.0/24 maxlen: 24
216.203.15.0/24 maxlen: 24
217.11.174.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 09 Nov 2024 15:04:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:e1:e8:2a:90:42:da:79:ad:90:7e:ac:48:4a:b5:60:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f9131775b3260b11a16240d1d8e76891d7f3732
Validity
Not Before: Oct 31 09:29:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=24bd348b2fe93fc479baab7c604988c4ee14db85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ed:fd:b8:30:2a:fe:60:89:fc:45:58:4c:47:
51:f3:61:4a:9e:cd:a1:85:6f:1c:03:84:5e:fd:e7:
b7:81:31:72:4e:30:b7:c0:d4:4c:78:b8:21:de:4a:
f7:6c:b2:30:e3:b6:91:c2:6e:c8:b2:54:9d:11:e7:
cd:0c:01:d3:fb:3d:4c:73:9a:16:14:dc:eb:a9:d6:
72:aa:b1:5a:3e:f8:ca:db:fe:8a:1d:ec:19:ce:e5:
13:30:5d:67:83:c3:bc:80:05:b5:52:99:6c:b5:33:
e0:64:85:01:6c:6c:4d:bf:9d:f3:a0:42:71:52:60:
8d:5d:88:c0:a6:48:08:f3:39:9d:12:ee:47:1e:3f:
2a:45:78:93:40:5c:26:45:48:24:47:e1:fe:67:73:
58:a2:34:41:9c:80:ca:c7:83:81:f0:5c:be:5f:e4:
6c:77:c7:4b:06:25:ae:44:55:06:78:43:3a:e3:7c:
0d:e2:4f:25:2a:c8:99:af:3f:4e:e6:50:90:e1:ec:
5a:27:f5:95:c7:64:1e:d8:2a:16:da:c8:c4:74:c6:
94:5e:59:45:bb:08:6b:ce:a8:e7:a3:fe:4c:46:12:
40:0e:5b:5f:d2:5e:b7:90:e3:7b:16:d3:c2:f1:cb:
da:fa:2f:44:9e:5f:82:0f:67:c8:6b:b7:04:04:3c:
12:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:BD:34:8B:2F:E9:3F:C4:79:BA:AB:7C:60:49:88:C4:EE:14:DB:85
X509v3 Authority Key Identifier:
keyid:4F:91:31:77:5B:32:60:B1:1A:16:24:0D:1D:8E:76:89:1D:7F:37:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5Exd1syYLEaFiQNHY52iR1_NzI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/89962e-b11c-4e69-b413-ab63d45f4b6a/1/JL00iy_pP8R5uqt8YEmIxO4U24U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/89962e-b11c-4e69-b413-ab63d45f4b6a/1/T5Exd1syYLEaFiQNHY52iR1_NzI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
43.226.0.0/23
46.17.217.0/24
63.251.117.0/24
64.95.150.0/23
64.225.244.0/23
91.198.19.0/24
91.246.38.0/24
103.94.60.0/22
104.225.253.0/24
117.18.104.0/24
123.100.227.0/24
148.222.40.0/22
167.234.38.0/24
198.49.103.0/24
202.2.60.0/22
203.27.201.0/24
216.183.120.0/24
216.203.15.0/24
217.11.174.0/24
Signature Algorithm: sha256WithRSAEncryption
e9:8d:52:7c:f3:af:15:a1:71:39:02:24:92:6a:c9:89:03:5a:
b0:47:4e:ce:d2:f1:74:37:e2:4f:75:3a:24:06:a9:0b:a3:7b:
1d:b2:62:59:ba:2d:42:b6:85:1b:e5:e1:f8:1e:af:3d:37:63:
2b:d2:6a:19:67:73:70:0a:83:58:97:d8:dd:fc:97:4e:a8:95:
1d:51:c4:d9:25:bc:b5:3f:f8:4f:27:8f:6d:4f:06:59:aa:8d:
c4:e8:12:87:78:b6:95:66:ee:4a:ce:80:bf:5c:99:c8:30:bc:
cd:1c:5c:ac:58:d0:8e:c1:7f:d4:7d:b2:29:a3:cf:1b:b1:e7:
6f:23:40:25:22:d7:17:9e:b6:66:c4:35:0e:91:1a:dc:8e:16:
05:92:d5:57:dc:2c:fd:ba:91:8e:85:54:42:c9:1c:c5:8d:fd:
fd:b6:99:13:f6:cb:76:32:c9:3a:58:43:af:cb:22:e5:22:56:
6a:d5:f5:5f:66:a6:a3:01:17:06:bf:7a:4f:cb:3e:d9:60:70:
77:0e:cd:4f:7a:f5:8a:ea:14:3d:45:cf:d8:5d:95:4c:ed:28:
22:e8:fd:68:0c:33:57:be:7f:33:11:35:d4:d4:8b:e5:f7:3a:
71:4b:b9:dd:85:c4:f8:0a:c0:62:00:72:f9:31:c6:4e:d8:cf:
6e:89:7b:14
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:40:18 2025 by rpki-client