Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/ft5VleK2nBzcHB8meZW1lZjNtHk.roa
File: ft5VleK2nBzcHB8meZW1lZjNtHk.roa (raw, json)
Hash identifier: YK3GP/RWuTbIstwnrA/QUgiBdfzjqCcrStI9Wh5Lrm8=
Subject key identifier: 7E:DE:55:95:E2:B6:9C:1C:DC:1C:1F:26:79:95:B5:95:98:CD:B4:79
Certificate issuer: /CN=08a34daaa887d98a5348c3a460a21fc84e11a4e6
Certificate serial: 019161335FE8BE971362846BBC4C2B25A16C
Authority key identifier: 08:A3:4D:AA:A8:87:D9:8A:53:48:C3:A4:60:A2:1F:C8:4E:11:A4:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CKNNqqiH2YpTSMOkYKIfyE4RpOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/ft5VleK2nBzcHB8meZW1lZjNtHk.roa
Signing time: Sat 17 Aug 2024 16:37:22 +0000
ROA not before: Sat 17 Aug 2024 16:37:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206617
IP address blocks: 31.14.184.0/21 maxlen: 24
89.32.152.0/23 maxlen: 23
89.40.234.0/23 maxlen: 24
93.114.170.0/24 maxlen: 24
93.114.245.0/24 maxlen: 24
93.115.210.0/24 maxlen: 24
185.18.24.0/22 maxlen: 24
185.167.52.0/22 maxlen: 24
188.213.16.0/24 maxlen: 24
188.213.40.0/21 maxlen: 22
188.240.42.0/24 maxlen: 24
188.240.44.0/23 maxlen: 23
188.241.153.0/24 maxlen: 24
188.241.186.0/24 maxlen: 24
188.241.251.0/24 maxlen: 24
193.178.224.0/23 maxlen: 23
195.2.218.0/23 maxlen: 23
2a03:f140::/32 maxlen: 32
Validation: Failed, certificate revoked on Sat 17 Aug 2024 20:59:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:61:33:5f:e8:be:97:13:62:84:6b:bc:4c:2b:25:a1:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08a34daaa887d98a5348c3a460a21fc84e11a4e6
Validity
Not Before: Aug 17 16:37:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7ede5595e2b69c1cdc1c1f267995b59598cdb479
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:66:57:db:da:1a:3b:f9:73:c9:d5:a2:d3:ff:
c9:1a:b9:a4:7e:09:2f:40:56:b4:10:18:b5:5b:80:
4e:7b:66:3e:d7:58:84:1b:32:59:7b:7b:b6:b3:cb:
6e:d7:5b:80:70:fc:80:cf:73:c3:db:88:7d:bf:a1:
c0:23:1f:54:bd:33:58:fb:03:60:11:ea:16:d4:45:
80:52:a6:c6:16:3d:e7:33:e5:ee:0f:42:98:dc:6f:
d7:21:40:f4:55:a5:d3:fb:9e:b4:37:d0:6e:4c:47:
23:59:1d:07:d2:e0:f0:b5:66:92:c8:f3:97:71:cc:
d2:87:2b:c4:19:7f:7f:78:4a:02:51:19:c4:d7:b1:
c4:cc:6f:7c:0d:ee:23:29:ed:0f:61:4b:25:8a:b0:
63:fb:96:fa:c5:b1:ea:3e:0d:9b:21:92:3e:5d:0f:
a8:f2:53:8f:b2:54:63:73:5d:f8:9d:f7:35:d3:ac:
22:44:95:4e:03:63:af:14:41:13:ff:b1:7a:8e:c1:
ec:11:ba:a9:4d:08:52:63:95:ed:2d:b9:24:6d:59:
62:56:24:31:fb:8a:cd:ac:80:b0:31:e5:fc:f3:a8:
bd:be:49:f2:79:31:99:01:3c:56:c1:47:d6:7c:f4:
7d:12:ee:94:bc:16:22:fc:3c:8b:ee:3d:33:ae:87:
bd:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:DE:55:95:E2:B6:9C:1C:DC:1C:1F:26:79:95:B5:95:98:CD:B4:79
X509v3 Authority Key Identifier:
keyid:08:A3:4D:AA:A8:87:D9:8A:53:48:C3:A4:60:A2:1F:C8:4E:11:A4:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CKNNqqiH2YpTSMOkYKIfyE4RpOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/ft5VleK2nBzcHB8meZW1lZjNtHk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.184.0/21
89.32.152.0/23
89.40.234.0/23
93.114.170.0/24
93.114.245.0/24
93.115.210.0/24
185.18.24.0/22
185.167.52.0/22
188.213.16.0/24
188.213.40.0/21
188.240.42.0/24
188.240.44.0/23
188.241.153.0/24
188.241.186.0/24
188.241.251.0/24
193.178.224.0/23
195.2.218.0/23
IPv6:
2a03:f140::/32
Signature Algorithm: sha256WithRSAEncryption
7e:0e:68:69:76:47:d5:c6:8a:44:2d:b0:fa:5c:f5:d4:88:e0:
52:05:67:81:7b:24:c9:16:a2:a7:27:38:29:5d:8a:cf:bf:56:
85:91:12:c3:cd:68:e2:86:75:82:20:aa:dc:32:08:e8:14:0e:
c5:ee:19:15:ff:db:98:99:d4:15:04:5a:1d:87:7b:99:0b:6f:
2b:9d:a9:98:33:2d:94:f1:89:fa:28:38:fa:01:4e:4b:34:f0:
08:7e:40:9a:1c:18:f4:36:d5:c0:a3:50:c6:e2:d0:c1:f3:37:
0d:20:e9:89:d8:b9:93:2c:59:b9:6d:7e:bc:84:f0:ed:85:e6:
0e:d4:52:4d:ef:c1:c5:62:ed:c0:39:04:df:5a:a4:74:b2:9c:
27:29:26:ae:ed:b8:ae:47:65:66:d3:08:8f:a0:01:f8:83:1d:
b7:a5:1b:26:82:e6:07:48:a7:bc:f6:5c:f8:37:5b:18:20:3e:
12:15:ba:e9:b0:9f:00:ab:3a:12:05:da:7e:be:3a:44:60:15:
d8:8c:a8:00:23:85:d6:c4:ef:8f:36:0e:dd:ad:3a:b7:c8:c2:
57:18:fc:1a:12:a5:07:2e:fb:0a:27:15:5c:f1:d1:8c:3c:63:
20:91:df:4e:7f:f3:5f:89:45:f3:a5:f1:67:40:e2:1b:3b:dc:
23:5d:d2:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 17 22:52:09 2024 by rpki-client on console-fra.rpki-client.org