Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/hnGlRM5A15L6d_bMtObuvHO1ZhQ.roa
File: hnGlRM5A15L6d_bMtObuvHO1ZhQ.roa (raw, json)
Hash identifier: jKiUVTbPsAEGonF6ahlnGWmWpBmDHLTbAbxZV7XIIrU=
Subject key identifier: 86:71:A5:44:CE:40:D7:92:FA:77:F6:CC:B4:E6:EE:BC:73:B5:66:14
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018F81D4E8B1C6369632B815F7BB11883EBC
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/hnGlRM5A15L6d_bMtObuvHO1ZhQ.roa
Signing time: Thu 16 May 2024 14:36:04 +0000
ROA not before: Thu 16 May 2024 14:36:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12722
IP address blocks: 2.59.48.0/24 maxlen: 24
31.222.240.0/24 maxlen: 24
31.222.250.0/24 maxlen: 24
37.221.80.0/24 maxlen: 24
45.11.22.0/24 maxlen: 24
45.14.220.0/24 maxlen: 24
45.14.221.0/24 maxlen: 24
45.80.120.0/22 maxlen: 22
45.89.68.0/24 maxlen: 24
45.89.71.0/24 maxlen: 24
91.188.220.0/24 maxlen: 24
94.158.188.0/24 maxlen: 24
176.56.35.0/24 maxlen: 24
176.124.34.0/24 maxlen: 24
185.202.106.0/24 maxlen: 24
185.212.112.0/24 maxlen: 24
185.234.8.0/24 maxlen: 24
188.95.71.0/24 maxlen: 24
193.3.18.0/24 maxlen: 24
193.201.114.0/24 maxlen: 24
194.32.240.0/24 maxlen: 24
195.18.26.0/24 maxlen: 24
195.69.148.0/24 maxlen: 24
195.69.150.0/24 maxlen: 24
195.225.96.0/24 maxlen: 24
213.109.206.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 22 May 2024 16:12:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:81:d4:e8:b1:c6:36:96:32:b8:15:f7:bb:11:88:3e:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: May 16 14:36:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8671a544ce40d792fa77f6ccb4e6eebc73b56614
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:31:08:3c:75:62:7f:8e:e6:68:c5:e6:ee:26:
31:f3:84:57:6c:4b:3c:72:5d:1b:39:6c:c6:a2:80:
ab:a5:55:62:e3:4f:6f:cc:08:eb:8f:1a:ba:76:6a:
c8:bc:98:d7:05:87:6c:72:d8:0d:c3:05:3e:39:bb:
68:6e:35:be:24:69:7b:3e:87:c3:76:39:7b:39:3f:
f0:8c:6c:72:9e:9d:03:e2:09:48:d0:99:b5:48:6b:
d5:86:07:54:8d:84:ef:74:1d:42:f3:50:bc:38:85:
17:18:00:15:b4:42:78:f7:ca:23:c0:89:0f:31:13:
89:14:45:8c:92:3b:07:99:bb:e3:3e:c9:a4:6f:b0:
5c:00:0a:26:89:97:12:5c:9b:c2:ff:33:88:ef:3d:
97:a5:22:0a:e8:24:8d:b2:28:9a:40:8b:86:f6:ca:
7e:0b:98:c7:e9:be:13:11:00:0b:94:5c:7b:ac:77:
c2:0c:c2:be:13:8a:f9:1b:ca:86:79:2e:1a:3d:5e:
8f:54:21:ff:3b:b5:95:85:0c:ff:93:b1:ef:78:18:
71:bb:ee:51:9d:d1:64:54:34:e7:06:49:41:6b:ae:
1b:81:a1:fe:1a:8f:71:c6:a6:06:90:c8:68:27:4f:
71:cc:27:1d:af:b4:50:bf:2f:65:3f:3e:54:ab:e5:
67:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:71:A5:44:CE:40:D7:92:FA:77:F6:CC:B4:E6:EE:BC:73:B5:66:14
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/hnGlRM5A15L6d_bMtObuvHO1ZhQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.48.0/24
31.222.240.0/24
31.222.250.0/24
37.221.80.0/24
45.11.22.0/24
45.14.220.0/23
45.80.120.0/22
45.89.68.0/24
45.89.71.0/24
91.188.220.0/24
94.158.188.0/24
176.56.35.0/24
176.124.34.0/24
185.202.106.0/24
185.212.112.0/24
185.234.8.0/24
188.95.71.0/24
193.3.18.0/24
193.201.114.0/24
194.32.240.0/24
195.18.26.0/24
195.69.148.0/24
195.69.150.0/24
195.225.96.0/24
213.109.206.0/24
Signature Algorithm: sha256WithRSAEncryption
87:24:8b:ce:cf:3f:8a:fc:55:fa:fb:42:5f:1c:b9:c5:0f:56:
10:6a:c6:af:a7:39:0b:34:1d:3a:bd:58:f3:85:a4:78:7c:d0:
3e:c8:e5:aa:30:57:b4:ec:85:eb:e4:e2:65:4a:99:5f:99:a5:
02:a6:8f:99:2c:66:be:77:16:fc:3a:ea:c5:5b:f1:98:0d:ba:
d3:74:83:b0:f0:fb:64:db:cd:b9:1a:f1:06:b0:50:ed:d0:77:
22:20:ae:af:f0:b0:4f:18:02:5d:17:9d:e4:f3:62:43:d6:31:
c9:7a:de:66:e7:65:b3:4c:28:c0:5b:32:b8:31:33:07:29:1b:
66:e9:1c:d6:a9:9c:38:95:5a:25:51:cb:d6:d5:15:4d:34:d0:
5c:4c:8b:bb:56:dd:11:66:55:b7:a4:3d:f7:21:69:7e:bd:0d:
71:af:69:29:80:e0:eb:b3:c5:4d:b3:3f:e0:29:a0:8c:69:ac:
d1:b8:bd:de:7f:f2:3a:fe:57:20:e4:29:53:31:3a:a3:d4:fd:
0c:4a:2a:d3:b2:7a:96:29:dd:85:2e:ca:4e:cf:ff:00:81:03:
5c:3a:2b:65:81:37:bd:74:26:2d:50:6a:85:2c:eb:cb:6e:a2:
36:89:a3:7f:35:49:16:26:f5:0a:69:95:61:38:6c:bf:75:b9:
67:6a:31:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:23 2024 by rpki-client on console-fra.rpki-client.org