Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/0771e1-39af-4353-947f-01facc747c24/1/mon18c13RODz76z6FK94ojVJ4DY.roa
File: mon18c13RODz76z6FK94ojVJ4DY.roa (raw, json)
Hash identifier: kA2JIYRcufcaPR5pQHia0KT6IbuXvZ4G2ykfZ09IPss=
Subject key identifier: 9A:89:F5:F1:CD:77:44:E0:F3:EF:AC:FA:14:AF:78:A2:35:49:E0:36
Certificate issuer: /CN=2d119754fc14ffe7968a6516bd49bdb25633b887
Certificate serial: 018CCA2991CE4EA505F360FC4FF9B8124CEA
Authority key identifier: 2D:11:97:54:FC:14:FF:E7:96:8A:65:16:BD:49:BD:B2:56:33:B8:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRGXVPwU_-eWimUWvUm9slYzuIc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/0771e1-39af-4353-947f-01facc747c24/1/mon18c13RODz76z6FK94ojVJ4DY.roa
Signing time: Tue 02 Jan 2024 12:32:51 +0000
ROA not before: Tue 02 Jan 2024 12:32:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25160
IP address blocks: 185.121.76.0/22 maxlen: 22
185.135.164.0/22 maxlen: 22
185.135.166.0/24 maxlen: 24
94.126.43.0/24 maxlen: 24
94.126.47.0/24 maxlen: 24
178.18.116.0/24 maxlen: 24
178.18.117.0/24 maxlen: 24
178.18.119.0/24 maxlen: 24
31.28.70.0/24 maxlen: 24
31.28.65.0/24 maxlen: 24
31.28.68.0/24 maxlen: 24
31.28.67.0/24 maxlen: 24
31.28.72.0/24 maxlen: 24
31.28.75.0/24 maxlen: 24
31.28.84.0/23 maxlen: 23
31.28.80.0/22 maxlen: 22
31.28.86.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 Jan 2024 13:10:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:91:ce:4e:a5:05:f3:60:fc:4f:f9:b8:12:4c:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d119754fc14ffe7968a6516bd49bdb25633b887
Validity
Not Before: Jan 2 12:32:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9a89f5f1cd7744e0f3efacfa14af78a23549e036
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:1c:c1:fd:2e:ef:3d:7f:ab:28:4c:c4:89:d8:
84:8a:92:95:84:de:d4:eb:e5:19:69:ac:d1:ee:cb:
73:fa:76:bb:36:bc:d0:3f:90:cd:cc:ee:2e:a6:ec:
d0:6b:59:93:6e:7f:84:8c:5b:a2:67:f4:3b:28:9d:
57:ef:08:2c:fb:01:53:6a:41:49:45:5f:c1:44:f6:
96:82:2d:32:53:d4:3d:48:26:bf:a5:39:5b:a1:c8:
02:cc:cb:1f:1a:93:bd:95:a1:4a:9e:33:59:32:d1:
b5:2c:2d:93:72:d3:8b:7b:48:dd:de:a8:c8:8a:fd:
dd:ef:82:90:58:d0:25:28:55:28:8b:ef:fc:0c:7a:
45:fb:28:c3:ea:09:35:20:fa:09:5b:38:27:7d:58:
3b:fb:8e:69:de:80:03:57:17:3f:a1:f3:93:11:4d:
5f:06:6c:4c:70:78:dd:27:23:b0:98:2f:e9:89:b4:
6e:04:db:f7:e8:ae:a4:19:09:36:5d:2f:38:0a:c5:
5b:a3:70:89:6b:38:9b:8a:bf:4a:f7:fb:58:c4:40:
e2:be:bf:b6:36:69:3d:55:23:3e:50:bd:8e:c8:83:
9b:6a:13:cf:f1:fd:9d:78:17:5b:56:20:fb:84:c2:
bc:16:ff:a9:11:54:60:2f:38:ae:52:5f:8b:73:63:
2e:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:89:F5:F1:CD:77:44:E0:F3:EF:AC:FA:14:AF:78:A2:35:49:E0:36
X509v3 Authority Key Identifier:
keyid:2D:11:97:54:FC:14:FF:E7:96:8A:65:16:BD:49:BD:B2:56:33:B8:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRGXVPwU_-eWimUWvUm9slYzuIc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/0771e1-39af-4353-947f-01facc747c24/1/mon18c13RODz76z6FK94ojVJ4DY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/0771e1-39af-4353-947f-01facc747c24/1/LRGXVPwU_-eWimUWvUm9slYzuIc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.28.65.0/24
31.28.67.0-31.28.68.255
31.28.70.0/24
31.28.72.0/24
31.28.75.0/24
31.28.80.0-31.28.86.255
94.126.43.0/24
94.126.47.0/24
178.18.116.0/23
178.18.119.0/24
185.121.76.0/22
185.135.164.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:e2:d7:d1:49:4f:e9:3d:ed:34:e5:17:ca:57:00:a5:de:47:
7e:8b:cf:77:ec:ef:59:94:0c:ca:02:cb:96:b3:fc:db:be:69:
20:de:9a:0d:92:0f:17:ff:6b:91:19:05:7f:8a:ea:9e:c9:0e:
ab:7d:e5:5a:dd:2f:97:46:3d:a3:21:a8:23:7a:97:49:a1:5d:
41:30:0e:76:04:eb:b9:5c:4f:65:05:7b:cd:8f:c3:8a:32:a4:
c8:1f:e0:a3:e5:07:1f:8d:de:63:6b:0d:46:5c:8e:a2:35:25:
e7:69:42:56:08:e2:18:58:f1:95:16:27:28:e8:dd:29:69:86:
9a:68:88:66:7c:b5:9a:90:5d:60:c6:30:9b:af:78:15:96:3a:
87:ff:d3:e1:76:c3:3b:06:ea:14:24:29:f7:06:24:0a:03:96:
a4:bb:55:09:e9:0d:75:b2:ca:5e:1c:4e:d8:01:71:69:ea:13:
b4:91:47:b0:ee:c8:d3:e8:71:91:a6:d8:c2:1e:97:ab:06:7f:
73:fd:45:95:16:c5:c0:f5:71:60:59:d3:3f:8b:d2:4b:c2:16:
ab:f1:67:88:15:d0:99:79:14:40:87:e9:f9:bf:a0:86:87:31:
01:3b:99:fc:c4:17:c2:ed:10:c2:23:dd:99:8c:6c:89:be:33:
4a:d4:96:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:28 2024 by rpki-client on console-ams.rpki-client.org