Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/jsXf8jDw38Ck6-gYLteMzxLG5Ks.roa
File: jsXf8jDw38Ck6-gYLteMzxLG5Ks.roa (raw, json)
Hash identifier: 6dhQoeNAQwzcVzHNuYkX5a1q17TmtxA05xzHd6LfXPo=
Subject key identifier: 8E:C5:DF:F2:30:F0:DF:C0:A4:EB:E8:18:2E:D7:8C:CF:12:C6:E4:AB
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018E1EACE27FFDFA11DA70FA0100C8E4F12B
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/jsXf8jDw38Ck6-gYLteMzxLG5Ks.roa
Signing time: Fri 08 Mar 2024 15:27:10 +0000
ROA not before: Fri 08 Mar 2024 15:27:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48031
IP address blocks: 31.216.63.0/24 maxlen: 24
77.87.120.0/24 maxlen: 24
84.246.86.0/24 maxlen: 24
84.246.87.0/24 maxlen: 24
84.246.109.0/24 maxlen: 24
87.236.151.0/24 maxlen: 24
88.151.15.0/24 maxlen: 24
89.107.15.0/24 maxlen: 24
89.248.70.0/24 maxlen: 24
91.246.48.0/24 maxlen: 24
91.246.53.0/24 maxlen: 24
91.247.161.0/24 maxlen: 24
91.247.165.0/24 maxlen: 24
91.247.166.0/24 maxlen: 24
91.247.167.0/24 maxlen: 24
91.247.173.0/24 maxlen: 24
91.247.183.0/24 maxlen: 24
93.157.109.0/24 maxlen: 24
109.94.161.0/24 maxlen: 24
109.107.136.0/24 maxlen: 24
109.107.141.0/24 maxlen: 24
109.205.184.0/24 maxlen: 24
109.205.188.0/24 maxlen: 24
176.97.199.0/24 maxlen: 24
176.97.203.0/24 maxlen: 24
176.97.222.0/24 maxlen: 24
176.97.223.0/24 maxlen: 24
176.116.3.0/24 maxlen: 24
193.160.219.0/24 maxlen: 24
194.26.224.0/24 maxlen: 24
194.105.60.0/24 maxlen: 24
194.107.92.0/24 maxlen: 24
212.52.25.0/24 maxlen: 24
217.198.176.0/24 maxlen: 24
217.198.178.0/24 maxlen: 24
217.198.179.0/24 maxlen: 24
217.198.180.0/24 maxlen: 24
217.198.182.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Mar 2024 12:12:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:1e:ac:e2:7f:fd:fa:11:da:70:fa:01:00:c8:e4:f1:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Mar 8 15:27:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8ec5dff230f0dfc0a4ebe8182ed78ccf12c6e4ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:59:01:14:34:73:16:06:af:84:40:a4:37:b0:
c1:27:e0:b4:66:e9:e0:35:19:18:0a:7f:ac:8b:22:
e6:c3:d3:f0:db:08:ee:d2:ea:4b:91:08:c2:ee:11:
c1:6e:14:35:04:e6:9b:7f:49:27:26:07:cc:35:e7:
60:2c:bc:d4:33:c5:58:a3:e7:f1:fd:6a:70:9f:78:
31:74:a8:6d:af:ff:bf:f0:40:14:1b:20:5d:06:39:
18:b8:e6:34:19:88:58:e2:af:18:72:5d:2c:7a:43:
05:7f:f7:e5:bd:09:b0:cc:4b:2a:91:d0:84:43:53:
75:e1:ee:bd:53:78:e5:2d:91:7f:5b:92:7b:a0:09:
41:07:01:89:ea:45:9b:ca:1e:6c:b3:f7:26:89:87:
78:10:2f:72:da:ee:40:b0:32:ac:fd:23:fe:bc:94:
cc:20:5d:7b:5d:00:a3:ad:51:b6:cd:96:1e:ce:07:
47:e7:86:f9:60:3b:8c:b3:37:a5:ad:68:86:68:a5:
82:0f:2d:ed:8f:c0:7a:5a:43:de:63:0d:04:21:1b:
7d:4a:b4:59:3d:81:93:3a:2f:e5:1e:af:9c:ad:e0:
f5:8a:16:34:bc:f8:71:17:9b:44:f0:f4:97:56:28:
e5:bc:cb:c8:23:91:b4:3a:7e:54:fe:11:ea:90:42:
a5:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:C5:DF:F2:30:F0:DF:C0:A4:EB:E8:18:2E:D7:8C:CF:12:C6:E4:AB
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/jsXf8jDw38Ck6-gYLteMzxLG5Ks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.216.63.0/24
77.87.120.0/24
84.246.86.0/23
84.246.109.0/24
87.236.151.0/24
88.151.15.0/24
89.107.15.0/24
89.248.70.0/24
91.246.48.0/24
91.246.53.0/24
91.247.161.0/24
91.247.165.0-91.247.167.255
91.247.173.0/24
91.247.183.0/24
93.157.109.0/24
109.94.161.0/24
109.107.136.0/24
109.107.141.0/24
109.205.184.0/24
109.205.188.0/24
176.97.199.0/24
176.97.203.0/24
176.97.222.0/23
176.116.3.0/24
193.160.219.0/24
194.26.224.0/24
194.105.60.0/24
194.107.92.0/24
212.52.25.0/24
217.198.176.0/24
217.198.178.0-217.198.180.255
217.198.182.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:39:a2:6f:9e:be:f4:6f:34:11:e6:0a:47:f6:9b:78:0a:72:
d9:9a:3d:38:3d:fe:43:77:fc:94:14:34:27:98:ab:dc:31:c7:
50:36:db:28:44:f3:cb:42:f6:80:ca:0d:95:15:6b:a9:aa:fc:
42:74:0a:a3:f2:e6:5d:87:4f:96:4b:15:99:2a:23:51:c1:7a:
a4:be:3e:be:2a:2b:ea:50:3c:a2:3a:e3:0b:bf:be:55:ca:ae:
a5:b4:d3:df:b4:04:f9:4f:b2:b6:bc:a1:c7:06:84:61:06:53:
29:50:cc:ec:16:66:c5:e7:45:0c:ee:b1:58:74:c6:99:38:e9:
23:ef:df:d5:f8:d7:0e:11:12:1b:53:d8:9f:e8:57:f5:8e:a0:
d6:8d:a3:af:35:87:0c:ea:66:af:48:06:f6:eb:86:d1:49:52:
06:c7:ce:7b:42:12:4d:e4:63:61:84:71:41:d5:6b:22:41:dc:
9e:6b:68:35:2b:46:d0:3f:3a:18:97:32:ea:5e:dd:0b:f6:47:
c8:e3:f5:a7:c2:ee:7a:67:3e:2c:4d:c2:c6:a1:4a:2a:b7:ba:
8c:7f:5d:dc:8d:0b:fb:9b:fc:9b:c2:d6:11:c0:34:4f:91:d5:
5d:4f:33:d8:4c:ba:fc:56:51:3b:5d:14:b7:79:9f:54:9a:1c:
be:0a:e7:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:49 2024 by rpki-client on console-ams.rpki-client.org