Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/EegR1bDDsE3phJdVFeKeK7rhnEA.roa
File: EegR1bDDsE3phJdVFeKeK7rhnEA.roa (raw, json)
Hash identifier: Dpdm79w6/mqzOOAEOIpnqJ3qnSgeyO/nUSS4KNE2Zws=
Subject key identifier: 11:E8:11:D5:B0:C3:B0:4D:E9:84:97:55:15:E2:9E:2B:BA:E1:9C:40
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018E0EF5EC4431DCDF011BE1935869EA8F4B
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/EegR1bDDsE3phJdVFeKeK7rhnEA.roa
Signing time: Tue 05 Mar 2024 14:13:01 +0000
ROA not before: Tue 05 Mar 2024 14:13:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48031
IP address blocks: 31.216.63.0/24 maxlen: 24
77.87.120.0/24 maxlen: 24
84.246.86.0/24 maxlen: 24
84.246.87.0/24 maxlen: 24
88.151.15.0/24 maxlen: 24
89.107.15.0/24 maxlen: 24
91.246.48.0/24 maxlen: 24
91.246.53.0/24 maxlen: 24
91.247.165.0/24 maxlen: 24
91.247.166.0/24 maxlen: 24
91.247.167.0/24 maxlen: 24
91.247.173.0/24 maxlen: 24
93.157.109.0/24 maxlen: 24
109.94.161.0/24 maxlen: 24
109.107.136.0/24 maxlen: 24
109.107.141.0/24 maxlen: 24
109.205.188.0/24 maxlen: 24
176.97.199.0/24 maxlen: 24
176.97.203.0/24 maxlen: 24
176.97.223.0/24 maxlen: 24
176.116.3.0/24 maxlen: 24
193.160.219.0/24 maxlen: 24
194.26.224.0/24 maxlen: 24
194.105.60.0/24 maxlen: 24
194.107.92.0/24 maxlen: 24
217.198.176.0/24 maxlen: 24
217.198.178.0/24 maxlen: 24
217.198.179.0/24 maxlen: 24
217.198.180.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Mar 2024 15:03:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:0e:f5:ec:44:31:dc:df:01:1b:e1:93:58:69:ea:8f:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Mar 5 14:13:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=11e811d5b0c3b04de984975515e29e2bbae19c40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:9f:75:17:3d:2e:02:5b:f1:7d:f8:aa:cc:df:
53:c9:ac:1d:bf:9e:28:0f:d4:a2:95:54:3e:09:19:
e4:90:38:bd:f6:06:48:6d:bc:ca:5a:4c:91:86:af:
85:8a:3f:4b:a3:8f:b4:b8:05:9d:22:de:e3:29:f4:
67:30:56:6f:fd:6a:17:13:b1:0b:e5:cc:b8:22:4c:
56:9c:ee:27:a4:8e:8d:e7:a6:78:ad:e6:93:a5:34:
db:68:93:50:fa:84:40:34:ff:4e:36:4c:d7:1e:27:
7d:00:83:58:57:52:f3:34:de:d1:f2:66:a7:fc:a9:
1e:53:48:9b:0f:ed:85:fb:02:99:71:c3:f0:68:f4:
95:9a:a7:74:98:91:7e:92:7f:d6:a9:3d:b5:c1:91:
6d:cd:69:9a:4e:7c:45:95:87:66:5c:ea:e2:d0:e3:
ab:33:72:51:20:76:d1:8c:c3:85:6b:60:2d:d8:6e:
6d:9e:46:3a:3c:71:e9:75:28:18:0a:3c:09:c3:d7:
a3:7a:ac:5f:98:22:0e:86:65:d0:2d:ae:e2:41:bf:
e5:9b:4b:03:20:37:2b:7c:3e:ee:0c:1c:cf:c5:d2:
18:00:02:8f:32:f2:0c:56:10:54:3a:56:3c:5f:cb:
69:fd:c4:e9:d9:6c:1b:46:a0:83:c0:7c:84:45:9f:
0b:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:E8:11:D5:B0:C3:B0:4D:E9:84:97:55:15:E2:9E:2B:BA:E1:9C:40
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/EegR1bDDsE3phJdVFeKeK7rhnEA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.216.63.0/24
77.87.120.0/24
84.246.86.0/23
88.151.15.0/24
89.107.15.0/24
91.246.48.0/24
91.246.53.0/24
91.247.165.0-91.247.167.255
91.247.173.0/24
93.157.109.0/24
109.94.161.0/24
109.107.136.0/24
109.107.141.0/24
109.205.188.0/24
176.97.199.0/24
176.97.203.0/24
176.97.223.0/24
176.116.3.0/24
193.160.219.0/24
194.26.224.0/24
194.105.60.0/24
194.107.92.0/24
217.198.176.0/24
217.198.178.0-217.198.180.255
Signature Algorithm: sha256WithRSAEncryption
12:68:e6:91:06:d5:79:0c:c6:03:41:a4:61:bf:5d:5c:56:e6:
d4:96:dd:42:27:e9:e5:1a:2c:47:71:7a:ca:35:56:a9:28:10:
90:3c:c9:e3:66:8f:93:6e:53:b5:d7:03:f3:0e:1e:96:95:95:
7b:e6:1d:e0:3e:bf:68:56:d6:8d:48:7b:15:a9:0b:3e:cf:5f:
ab:f9:ca:6b:d4:7f:7e:63:59:e8:bf:1a:d6:ef:22:53:b0:b2:
bc:91:3e:6b:c9:d0:6d:03:7c:33:f6:7b:e4:42:76:c5:19:cc:
96:8f:16:c1:fd:c2:d1:78:2d:2f:78:a6:fa:3e:96:e7:b4:cd:
58:9e:de:f4:62:dd:0f:57:79:40:63:19:69:6a:0e:8b:41:61:
cd:b3:62:f0:78:e0:d1:fa:9a:a5:9b:66:e1:88:28:40:db:87:
d5:c4:99:0d:42:b0:79:be:a4:ad:4a:6a:0c:c0:f2:6d:c4:24:
11:5c:f7:cd:09:9c:cc:ad:53:9a:bd:8d:c5:51:14:61:1f:5e:
41:76:8d:59:9e:17:b1:82:66:d9:bc:99:23:11:de:9e:2b:49:
45:d2:a5:6c:21:28:7f:54:64:ad:a8:a7:a5:b5:aa:02:0a:61:
86:ff:47:51:11:b4:73:8e:32:a1:6a:0f:fd:83:8d:3b:c3:8f:
d8:a2:ef:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:22 2024 by rpki-client on console-fra.rpki-client.org