Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/sHGJbNz7yVHkK5XRX6WyF61enYc.roa
File: sHGJbNz7yVHkK5XRX6WyF61enYc.roa (raw, json)
Hash identifier: KIGJSAuWQDyRbNWI+VtS0RJgnarOlSx0YwyNg4fXuao=
Subject key identifier: B0:71:89:6C:DC:FB:C9:51:E4:2B:95:D1:5F:A5:B2:17:AD:5E:9D:87
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018E144A0DAA6A05224DF130A4AF88DC4E3D
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/sHGJbNz7yVHkK5XRX6WyF61enYc.roa
Signing time: Wed 06 Mar 2024 15:03:01 +0000
ROA not before: Wed 06 Mar 2024 15:03:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48031
IP address blocks: 31.216.63.0/24 maxlen: 24
77.87.120.0/24 maxlen: 24
84.246.86.0/24 maxlen: 24
84.246.87.0/24 maxlen: 24
84.246.109.0/24 maxlen: 24
88.151.15.0/24 maxlen: 24
89.107.15.0/24 maxlen: 24
89.248.70.0/24 maxlen: 24
91.246.48.0/24 maxlen: 24
91.246.53.0/24 maxlen: 24
91.247.161.0/24 maxlen: 24
91.247.165.0/24 maxlen: 24
91.247.166.0/24 maxlen: 24
91.247.167.0/24 maxlen: 24
91.247.173.0/24 maxlen: 24
93.157.109.0/24 maxlen: 24
109.94.161.0/24 maxlen: 24
109.107.136.0/24 maxlen: 24
109.107.141.0/24 maxlen: 24
109.205.184.0/24 maxlen: 24
109.205.188.0/24 maxlen: 24
176.97.199.0/24 maxlen: 24
176.97.203.0/24 maxlen: 24
176.97.223.0/24 maxlen: 24
176.116.3.0/24 maxlen: 24
193.160.219.0/24 maxlen: 24
194.26.224.0/24 maxlen: 24
194.105.60.0/24 maxlen: 24
194.107.92.0/24 maxlen: 24
217.198.176.0/24 maxlen: 24
217.198.178.0/24 maxlen: 24
217.198.179.0/24 maxlen: 24
217.198.180.0/24 maxlen: 24
217.198.182.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 08 Mar 2024 15:27:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:14:4a:0d:aa:6a:05:22:4d:f1:30:a4:af:88:dc:4e:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Mar 6 15:03:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b071896cdcfbc951e42b95d15fa5b217ad5e9d87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:78:77:53:66:9b:d6:e9:ec:1b:b2:67:e6:a1:
18:99:07:ed:47:df:07:22:52:64:86:c9:83:a3:6c:
6b:96:ff:a9:51:db:23:92:a7:1b:07:bf:47:46:33:
30:aa:d2:5b:2e:d3:5d:b8:4c:52:ed:3c:f9:5e:b4:
22:18:a9:cc:79:9c:25:c3:6e:f0:ab:f3:f4:d0:1d:
22:cc:d7:48:28:2d:8e:9f:af:ec:eb:9b:27:67:dd:
72:df:b8:34:20:7a:0b:aa:a3:03:76:0c:9c:a8:d4:
49:c0:ed:0e:67:11:36:27:a4:9c:07:68:f3:fa:b4:
94:11:7a:cb:6f:62:38:e1:5a:11:ac:7e:2e:a9:44:
cb:ec:53:f4:a2:56:96:c8:11:7f:0a:a5:53:75:3d:
28:ed:0d:4e:87:df:3f:0e:7f:0c:5f:94:fb:d6:4a:
a0:a4:57:3f:ef:a7:90:68:1a:dc:01:24:e2:06:04:
41:2e:ab:bb:4b:4b:fb:dd:05:73:12:2d:be:39:c7:
22:ab:e9:3c:57:73:26:bb:02:ca:da:2a:37:c3:f4:
b2:d9:2f:b8:5f:2a:41:f5:de:49:87:46:f2:c8:11:
b0:e2:db:05:6a:81:23:3d:2a:f2:95:29:ba:0b:d6:
95:b8:b4:4b:38:74:89:70:3d:79:75:5e:1f:d9:05:
04:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:71:89:6C:DC:FB:C9:51:E4:2B:95:D1:5F:A5:B2:17:AD:5E:9D:87
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/sHGJbNz7yVHkK5XRX6WyF61enYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.216.63.0/24
77.87.120.0/24
84.246.86.0/23
84.246.109.0/24
88.151.15.0/24
89.107.15.0/24
89.248.70.0/24
91.246.48.0/24
91.246.53.0/24
91.247.161.0/24
91.247.165.0-91.247.167.255
91.247.173.0/24
93.157.109.0/24
109.94.161.0/24
109.107.136.0/24
109.107.141.0/24
109.205.184.0/24
109.205.188.0/24
176.97.199.0/24
176.97.203.0/24
176.97.223.0/24
176.116.3.0/24
193.160.219.0/24
194.26.224.0/24
194.105.60.0/24
194.107.92.0/24
217.198.176.0/24
217.198.178.0-217.198.180.255
217.198.182.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:05:3c:3c:b2:7b:ed:96:59:ce:3f:4c:8d:c0:64:6c:dd:01:
65:4b:de:4c:63:0d:41:b8:f0:a1:bc:17:2b:ef:94:b4:71:68:
cb:b5:69:fc:c4:fe:99:28:fc:93:77:51:89:58:9d:9f:c1:7d:
e4:e1:72:35:80:ca:b4:08:e3:b8:15:e6:f8:ef:98:3c:45:41:
5a:5d:6e:28:2e:a6:4f:d8:68:c9:00:12:94:28:a6:9c:81:e2:
11:63:6b:b4:9e:9c:56:9d:08:48:06:e9:a5:29:04:ce:15:a0:
e6:3c:ef:6b:03:f9:f3:b5:7a:9e:b6:89:35:6b:76:4b:e1:8f:
33:6c:45:50:b4:2d:26:81:e0:09:40:a1:1b:c5:4c:b9:83:33:
e2:15:57:83:48:64:37:25:c0:7a:13:20:ee:04:65:31:b2:a4:
e3:a1:16:d1:a0:45:74:dc:e2:13:1c:5b:f6:16:23:8d:56:7c:
63:bd:26:36:c2:69:9f:ea:2e:d0:0a:55:a1:0f:bb:ea:bb:6c:
30:06:9a:82:0a:b2:d8:c5:3d:47:49:47:67:b8:81:62:03:26:
47:46:16:bc:a4:f9:25:26:0b:58:3b:89:55:e4:1c:f2:5f:5f:
05:80:f6:4c:0d:b1:1b:5a:8f:f5:c4:6d:28:b6:5d:05:fe:1a:
7f:7d:d0:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:23 2024 by rpki-client on console-fra.rpki-client.org