Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/5ea12b-51c6-4195-aeb6-c1addd7debaa/1/BHqUIRgpl2uQSW0ZUs3ILV45mB4.roa
File: BHqUIRgpl2uQSW0ZUs3ILV45mB4.roa (raw, json)
Hash identifier: xlg4/c84s5cHJLL/w4arrXETEm5cEySCg8z25j+8OXM=
Subject key identifier: 04:7A:94:21:18:29:97:6B:90:49:6D:19:52:CD:C8:2D:5E:39:98:1E
Certificate issuer: /CN=ee4381ce03baa625019980f378fe41bb2b6621b9
Certificate serial: 0185701526E31DB006B5F211DD59A25A80DE
Authority key identifier: EE:43:81:CE:03:BA:A6:25:01:99:80:F3:78:FE:41:BB:2B:66:21:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7kOBzgO6piUBmYDzeP5BuytmIbk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/5ea12b-51c6-4195-aeb6-c1addd7debaa/1/BHqUIRgpl2uQSW0ZUs3ILV45mB4.roa
Signing time: Mon 02 Jan 2023 01:25:12 +0000
ROA not before: Mon 02 Jan 2023 01:25:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15924
IP address blocks: 31.177.191.0/24 maxlen: 24
149.0.76.0/24 maxlen: 24
46.221.0.0/18 maxlen: 18
46.221.4.0/24 maxlen: 24
46.221.2.0/24 maxlen: 24
46.221.7.0/24 maxlen: 24
46.221.6.0/24 maxlen: 24
46.221.9.0/24 maxlen: 24
46.221.12.0/24 maxlen: 24
46.221.16.0/24 maxlen: 24
46.221.15.0/24 maxlen: 24
46.221.14.0/24 maxlen: 24
46.221.24.0/24 maxlen: 24
46.221.19.0/24 maxlen: 24
46.221.18.0/24 maxlen: 24
46.221.28.0/24 maxlen: 24
46.221.27.0/24 maxlen: 24
46.221.31.0/24 maxlen: 24
46.221.26.0/24 maxlen: 24
46.221.30.0/24 maxlen: 24
46.221.25.0/24 maxlen: 24
46.221.29.0/24 maxlen: 24
46.221.36.0/24 maxlen: 24
46.221.32.0/24 maxlen: 24
46.221.35.0/24 maxlen: 24
46.221.34.0/24 maxlen: 24
46.221.38.0/24 maxlen: 24
46.221.37.0/24 maxlen: 24
46.221.33.0/24 maxlen: 24
46.221.40.0/24 maxlen: 24
46.221.39.0/24 maxlen: 24
46.221.48.0/24 maxlen: 24
46.221.51.0/24 maxlen: 24
46.221.47.0/24 maxlen: 24
46.221.49.0/24 maxlen: 24
46.221.45.0/24 maxlen: 24
46.221.56.0/24 maxlen: 24
46.221.57.0/24 maxlen: 24
46.221.60.0/24 maxlen: 24
46.221.59.0/24 maxlen: 24
46.221.63.0/24 maxlen: 24
46.221.62.0/24 maxlen: 24
46.221.61.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:15:26:e3:1d:b0:06:b5:f2:11:dd:59:a2:5a:80:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee4381ce03baa625019980f378fe41bb2b6621b9
Validity
Not Before: Jan 2 01:25:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=047a94211829976b90496d1952cdc82d5e39981e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:cd:2b:52:bc:6a:e8:17:03:04:7b:c1:ee:a3:
6d:ab:b4:9a:e5:53:78:c5:63:a8:1e:61:66:00:b0:
60:79:1f:bc:71:29:6b:7f:24:a6:e4:62:7b:72:f0:
80:c1:83:ba:f3:b2:28:7d:21:d6:10:0a:39:6f:9c:
5e:3c:6e:98:2c:cd:e2:3d:7e:92:90:84:2c:4c:6f:
15:db:49:27:91:41:8e:fa:f2:fe:17:0c:f1:d6:53:
08:68:fe:da:11:b0:6a:b1:32:26:ac:1c:d5:95:b7:
fe:aa:18:fb:f8:59:fe:95:97:4a:91:ea:1e:d2:19:
57:66:7e:98:44:fa:f6:09:0d:ef:1c:07:c3:b6:05:
ec:48:fc:9e:48:e3:27:c8:fc:51:bd:c6:ce:65:53:
6c:63:86:d9:78:2b:1e:ce:96:3c:cb:44:c8:67:14:
5d:9f:c4:13:ec:e7:74:29:f9:1e:93:77:b0:c4:de:
7c:bb:a3:58:d4:cc:2c:1a:0a:03:1d:a8:28:b9:a0:
41:05:24:04:8a:49:b5:0b:b1:77:5c:29:2c:08:d0:
b2:73:22:58:af:39:5e:77:06:01:9d:cd:02:76:3d:
a3:e3:33:d8:43:f5:8b:26:7f:1d:d6:23:e5:52:7d:
eb:c2:61:ef:6f:18:09:7a:31:b9:7b:eb:4a:e3:b9:
b5:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:7A:94:21:18:29:97:6B:90:49:6D:19:52:CD:C8:2D:5E:39:98:1E
X509v3 Authority Key Identifier:
keyid:EE:43:81:CE:03:BA:A6:25:01:99:80:F3:78:FE:41:BB:2B:66:21:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7kOBzgO6piUBmYDzeP5BuytmIbk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/5ea12b-51c6-4195-aeb6-c1addd7debaa/1/BHqUIRgpl2uQSW0ZUs3ILV45mB4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/5ea12b-51c6-4195-aeb6-c1addd7debaa/1/7kOBzgO6piUBmYDzeP5BuytmIbk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.177.191.0/24
46.221.0.0/18
149.0.76.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:94:39:0b:3f:f6:9a:02:f2:cc:7d:93:e7:78:21:83:e1:e5:
87:1d:b0:2a:64:10:30:8c:1a:a9:2d:19:ee:dd:81:ea:41:35:
e2:6f:c6:21:16:c5:da:9b:7d:1b:7e:2a:b6:8b:57:22:be:15:
a5:4b:9c:0d:9a:14:62:7b:5d:cb:9e:35:75:c8:5d:61:1d:8f:
78:c9:34:e8:70:b1:3d:79:88:fb:0f:f7:96:2c:08:b7:0c:07:
b0:99:ba:28:b1:04:f8:e1:4e:87:1f:5b:3a:52:64:dc:31:ea:
80:54:1b:1f:77:eb:e6:09:8e:97:dc:8d:51:7c:da:e6:8f:03:
73:3b:52:df:46:e7:ac:7c:f4:d7:03:67:69:2e:35:93:45:e6:
f8:8a:b7:a7:37:72:62:5e:0a:7e:83:22:42:41:83:83:32:40:
38:03:a3:63:99:ca:fd:02:cd:65:11:5b:22:bd:30:c5:65:08:
15:47:0c:94:61:56:01:8c:4c:d8:79:81:9d:a2:f5:66:0e:d0:
4d:0e:fd:f7:41:7c:c5:47:00:76:cc:5b:c5:82:b8:4a:59:2e:
e2:e4:3a:1d:25:1e:8a:4f:ef:f6:40:c3:2c:fa:e7:31:b3:20:
4b:56:4f:e2:8c:fb:86:de:d8:c2:4f:77:b2:74:a2:87:4f:a1:
f1:ce:25:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:10 2024 by rpki-client on console-fra.rpki-client.org