Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/xdIM7Tz0Mf2XJ23VrTUJUKoPkEs.roa
File: xdIM7Tz0Mf2XJ23VrTUJUKoPkEs.roa (raw, json)
Hash identifier: t7rs2ufuvtZYod8d6h+eQcymp/8yYXWMwSkaGnXw/8c=
Subject key identifier: C5:D2:0C:ED:3C:F4:31:FD:97:27:6D:D5:AD:35:09:50:AA:0F:90:4B
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018E08D4832DDAF52FA80AF5856D3EC9B527
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/xdIM7Tz0Mf2XJ23VrTUJUKoPkEs.roa
Signing time: Mon 04 Mar 2024 09:38:48 +0000
ROA not before: Mon 04 Mar 2024 09:38:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48031
IP address blocks: 31.216.63.0/24 maxlen: 24
77.87.120.0/24 maxlen: 24
84.246.86.0/24 maxlen: 24
89.107.15.0/24 maxlen: 24
91.246.48.0/24 maxlen: 24
91.246.53.0/24 maxlen: 24
91.247.165.0/24 maxlen: 24
91.247.166.0/24 maxlen: 24
91.247.167.0/24 maxlen: 24
91.247.173.0/24 maxlen: 24
93.157.109.0/24 maxlen: 24
109.94.161.0/24 maxlen: 24
109.107.136.0/24 maxlen: 24
109.107.141.0/24 maxlen: 24
109.205.188.0/24 maxlen: 24
176.97.203.0/24 maxlen: 24
176.97.223.0/24 maxlen: 24
176.116.3.0/24 maxlen: 24
193.160.219.0/24 maxlen: 24
194.26.224.0/24 maxlen: 24
194.105.60.0/24 maxlen: 24
194.107.92.0/24 maxlen: 24
217.198.176.0/24 maxlen: 24
217.198.179.0/24 maxlen: 24
217.198.180.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Mar 2024 14:13:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:08:d4:83:2d:da:f5:2f:a8:0a:f5:85:6d:3e:c9:b5:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Mar 4 09:38:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c5d20ced3cf431fd97276dd5ad350950aa0f904b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:a0:ba:75:4e:f5:ec:60:e3:b8:2e:7e:d6:c7:
48:85:c6:95:8d:3d:3b:c7:d4:f8:8a:52:fc:a2:b2:
ad:3d:a3:b2:94:e7:41:87:9d:b5:8a:8a:84:55:1d:
e7:5a:a4:98:da:ec:4b:73:de:8f:a0:39:f4:8a:ef:
79:f9:88:80:78:d2:89:61:86:24:3c:c7:f6:0e:06:
61:a1:f1:56:fc:74:28:41:6d:5c:1b:26:c7:22:b6:
fe:aa:55:53:4c:2c:3b:1a:32:d3:13:5d:94:4f:2d:
f2:54:64:2b:60:3e:13:7a:1b:40:f1:76:db:13:2d:
8a:26:04:9c:9f:c3:e2:e9:90:28:07:c1:e5:f2:fd:
ae:8b:80:69:7f:d8:93:26:fb:04:e9:fd:d0:28:3d:
9b:23:ae:55:1f:1e:ab:6e:44:07:49:ef:d3:51:86:
81:e6:cc:38:ac:00:22:3b:35:75:49:59:3f:69:67:
b1:7c:2b:36:48:ce:72:f6:8e:9d:1c:3d:2a:90:16:
b2:28:73:7a:55:66:f9:ec:da:2c:2f:ac:f6:22:60:
83:9e:7d:bf:d3:94:5a:ba:18:38:0b:c1:a9:28:ed:
de:d5:0e:52:a2:46:39:67:71:ab:3a:65:9f:26:88:
25:de:a8:23:05:27:b0:64:8a:f5:33:26:a5:b3:30:
d2:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:D2:0C:ED:3C:F4:31:FD:97:27:6D:D5:AD:35:09:50:AA:0F:90:4B
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/xdIM7Tz0Mf2XJ23VrTUJUKoPkEs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.216.63.0/24
77.87.120.0/24
84.246.86.0/24
89.107.15.0/24
91.246.48.0/24
91.246.53.0/24
91.247.165.0-91.247.167.255
91.247.173.0/24
93.157.109.0/24
109.94.161.0/24
109.107.136.0/24
109.107.141.0/24
109.205.188.0/24
176.97.203.0/24
176.97.223.0/24
176.116.3.0/24
193.160.219.0/24
194.26.224.0/24
194.105.60.0/24
194.107.92.0/24
217.198.176.0/24
217.198.179.0-217.198.180.255
Signature Algorithm: sha256WithRSAEncryption
81:ec:fb:26:fe:21:2c:8c:00:75:8d:7c:59:a4:6f:ea:3b:6a:
b8:41:a4:a6:22:39:ca:20:46:ce:f8:78:7b:ec:21:c8:42:a7:
ab:e3:44:66:4a:2c:2d:06:a6:ed:45:9f:f4:37:9e:79:f9:97:
33:0a:08:1f:11:56:78:36:06:85:18:c5:5f:fb:19:4a:75:ce:
15:9f:bb:66:07:2c:32:9d:67:0e:c6:8b:35:e5:61:20:ea:e1:
e2:a2:96:7c:aa:ca:29:b1:05:81:6e:8c:17:b2:f4:ee:d6:bf:
80:a3:0b:fd:24:e5:b7:75:2f:fc:cf:ef:7a:56:e8:5a:8a:ed:
bb:71:a8:44:91:c9:dd:2c:c3:a8:a8:ce:05:e4:99:dc:ce:84:
4e:76:d7:cd:a0:e3:ad:ee:c7:ef:7b:28:38:46:ee:e3:95:43:
b3:ae:85:a5:c6:05:69:71:de:c1:18:d3:ee:79:11:e5:b9:b7:
7c:da:cf:23:b8:51:53:91:f6:12:bb:a6:b7:6c:80:4e:1d:bc:
fd:a7:14:e4:11:f9:00:cb:e5:6d:b7:c6:0c:c4:fd:5c:00:62:
0a:a2:76:73:f3:92:43:38:d2:bf:c5:57:52:23:f1:4a:4a:8e:
a8:65:40:65:61:e4:44:51:cf:20:62:23:bd:13:a2:6a:04:36:
cf:d3:ec:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:23 2024 by rpki-client on console-fra.rpki-client.org