Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/0FVF5o9Z8zfWPOdwxN26reWzVzM.roa
File: 0FVF5o9Z8zfWPOdwxN26reWzVzM.roa (raw, json)
Hash identifier: wcfwsnQCd3NPeQ5Xa0ntB9X1coCf9GPltjYPwTOu4tI=
Subject key identifier: D0:55:45:E6:8F:59:F3:37:D6:3C:E7:70:C4:DD:BA:AD:E5:B3:57:33
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018E2D6DF9F86D50AF4635BE93BE0D5C535F
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/0FVF5o9Z8zfWPOdwxN26reWzVzM.roa
Signing time: Mon 11 Mar 2024 12:12:45 +0000
ROA not before: Mon 11 Mar 2024 12:12:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48031
IP address blocks: 31.216.57.0/24 maxlen: 24
31.216.63.0/24 maxlen: 24
77.87.120.0/24 maxlen: 24
84.246.84.0/24 maxlen: 24
84.246.86.0/24 maxlen: 24
84.246.87.0/24 maxlen: 24
84.246.109.0/24 maxlen: 24
87.236.151.0/24 maxlen: 24
88.151.15.0/24 maxlen: 24
89.107.15.0/24 maxlen: 24
89.248.70.0/24 maxlen: 24
91.246.48.0/24 maxlen: 24
91.246.53.0/24 maxlen: 24
91.247.161.0/24 maxlen: 24
91.247.165.0/24 maxlen: 24
91.247.166.0/24 maxlen: 24
91.247.167.0/24 maxlen: 24
91.247.173.0/24 maxlen: 24
91.247.183.0/24 maxlen: 24
93.157.104.0/24 maxlen: 24
93.157.109.0/24 maxlen: 24
109.94.161.0/24 maxlen: 24
109.107.136.0/24 maxlen: 24
109.107.141.0/24 maxlen: 24
109.107.142.0/24 maxlen: 24
109.205.184.0/24 maxlen: 24
109.205.188.0/24 maxlen: 24
176.97.199.0/24 maxlen: 24
176.97.203.0/24 maxlen: 24
176.97.222.0/24 maxlen: 24
176.97.223.0/24 maxlen: 24
176.116.3.0/24 maxlen: 24
193.160.219.0/24 maxlen: 24
193.163.22.0/24 maxlen: 24
194.26.224.0/24 maxlen: 24
194.105.60.0/24 maxlen: 24
194.107.92.0/24 maxlen: 24
212.52.25.0/24 maxlen: 24
217.198.176.0/24 maxlen: 24
217.198.178.0/24 maxlen: 24
217.198.179.0/24 maxlen: 24
217.198.180.0/24 maxlen: 24
217.198.182.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Mar 2024 15:51:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:2d:6d:f9:f8:6d:50:af:46:35:be:93:be:0d:5c:53:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Mar 11 12:12:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d05545e68f59f337d63ce770c4ddbaade5b35733
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f6:f3:10:11:ff:b7:5e:55:5d:1a:3d:0e:c6:
e5:2f:95:c9:fb:ad:cb:91:a9:22:a7:cc:f9:8d:30:
18:46:96:4e:53:27:fc:00:c8:c3:56:27:ab:16:bb:
e1:3c:73:a1:d2:bd:4f:b3:39:f6:fa:1e:55:a1:c7:
da:b2:fa:1a:dc:11:3f:b7:7f:b9:da:28:ec:93:17:
10:3e:3b:68:6f:b6:3c:52:84:42:2f:1b:3f:53:fc:
38:6e:fb:a4:5c:77:4c:52:5f:40:cd:59:99:db:26:
9c:e6:6a:f2:31:b2:f7:9d:69:0b:b1:88:74:e4:67:
b4:f5:e4:93:90:d3:a6:fa:22:37:9d:17:78:3f:30:
ee:89:9d:c4:08:33:08:a1:2e:d0:e2:6d:b0:cf:05:
72:d3:e2:66:29:f7:36:a4:a3:d1:03:1f:6c:32:20:
84:a2:15:23:c1:18:d2:00:2f:97:76:aa:e8:b7:60:
85:2c:2c:43:bb:7a:3f:89:ba:52:31:20:06:2d:b7:
97:99:79:1b:ee:93:31:b8:50:10:4b:74:1a:a6:af:
f8:c9:91:77:3a:37:b1:ea:34:b6:87:9f:a3:de:26:
50:28:a7:66:6c:f8:84:f4:0e:37:46:63:64:b8:d9:
18:a9:1f:0a:71:90:77:8b:37:db:d0:0e:85:2c:88:
49:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:55:45:E6:8F:59:F3:37:D6:3C:E7:70:C4:DD:BA:AD:E5:B3:57:33
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/0FVF5o9Z8zfWPOdwxN26reWzVzM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.216.57.0/24
31.216.63.0/24
77.87.120.0/24
84.246.84.0/24
84.246.86.0/23
84.246.109.0/24
87.236.151.0/24
88.151.15.0/24
89.107.15.0/24
89.248.70.0/24
91.246.48.0/24
91.246.53.0/24
91.247.161.0/24
91.247.165.0-91.247.167.255
91.247.173.0/24
91.247.183.0/24
93.157.104.0/24
93.157.109.0/24
109.94.161.0/24
109.107.136.0/24
109.107.141.0-109.107.142.255
109.205.184.0/24
109.205.188.0/24
176.97.199.0/24
176.97.203.0/24
176.97.222.0/23
176.116.3.0/24
193.160.219.0/24
193.163.22.0/24
194.26.224.0/24
194.105.60.0/24
194.107.92.0/24
212.52.25.0/24
217.198.176.0/24
217.198.178.0-217.198.180.255
217.198.182.0/24
Signature Algorithm: sha256WithRSAEncryption
88:67:40:7e:7c:3c:9f:18:4f:ec:60:7e:31:7a:41:cb:31:1c:
c9:5e:e8:43:5d:b1:3e:9d:ac:6e:5d:52:c2:36:7f:43:a1:01:
81:97:60:5d:79:39:af:f1:cc:9c:ea:e6:59:0b:b8:29:3b:d1:
28:d6:64:f1:cc:9c:95:8e:bc:f6:bf:ad:09:7e:e0:cf:fb:18:
da:71:90:3f:b3:5d:10:9e:48:ce:32:58:e8:54:ca:b8:2f:72:
17:c7:7b:ad:47:fb:35:2a:65:a4:21:4b:bd:f5:a3:68:4a:6b:
0e:6b:0e:bc:59:60:00:5f:8e:50:47:86:af:b2:e0:0d:3e:ba:
07:48:81:ee:51:54:7c:fc:ae:93:74:63:76:a8:bd:c1:4c:e1:
e5:8e:31:fb:f6:55:52:f1:61:20:0c:ec:1a:0a:dc:bf:f7:14:
29:4e:a0:07:8e:b2:2b:12:39:61:d4:83:a3:5c:8e:fa:0f:6d:
10:c7:4d:bb:78:37:12:8c:13:c4:ea:bf:99:56:5d:70:5d:82:
a8:98:33:d5:f7:d4:c2:46:e6:50:77:b1:1b:75:26:0b:45:69:
86:a1:89:73:cb:f4:34:12:9a:69:f3:c4:0f:08:98:eb:6e:72:
b1:e8:00:ee:45:6a:41:49:f0:f5:9c:28:f4:98:c3:52:3e:9f:
41:5e:6d:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:22 2024 by rpki-client on console-fra.rpki-client.org