Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/22c93c-9000-4e73-a1c5-c03f3fddd4ac/1/1-rqcVnE_j8HbrpNuprx1Sq9DPZY.roa
File: 1-rqcVnE_j8HbrpNuprx1Sq9DPZY.roa (raw, json)
Hash identifier: gq8nG1squ75VO8xi1hqwjw6BHzG1lNIHlVZlUZp6e44=
Subject key identifier: FA:BA:9C:56:71:3F:8F:C1:DB:AE:93:6E:A6:BC:75:4A:AF:43:3D:96
Certificate issuer: /CN=4081f85602b1168925d83eb3ca61609f357956a6
Certificate serial: 0187E5AFE7049E0D0A234E98274008A7DEFA
Authority key identifier: 40:81:F8:56:02:B1:16:89:25:D8:3E:B3:CA:61:60:9F:35:79:56:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QIH4VgKxFokl2D6zymFgnzV5VqY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/22c93c-9000-4e73-a1c5-c03f3fddd4ac/1/1-rqcVnE_j8HbrpNuprx1Sq9DPZY.roa
Signing time: Thu 04 May 2023 07:35:23 +0000
ROA not before: Thu 04 May 2023 07:35:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49100
IP address blocks: 31.130.190.0/24 maxlen: 24
31.130.191.0/24 maxlen: 24
31.130.188.0/24 maxlen: 24
31.130.189.0/24 maxlen: 24
31.130.187.0/24 maxlen: 24
31.130.176.0/22 maxlen: 22
31.130.176.0/24 maxlen: 24
31.130.177.0/24 maxlen: 24
31.130.178.0/24 maxlen: 24
31.130.179.0/24 maxlen: 24
31.130.184.0/24 maxlen: 24
31.130.184.0/21 maxlen: 21
31.130.180.0/24 maxlen: 24
31.130.185.0/24 maxlen: 24
31.130.186.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 04 May 2023 08:31:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e5:af:e7:04:9e:0d:0a:23:4e:98:27:40:08:a7:de:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4081f85602b1168925d83eb3ca61609f357956a6
Validity
Not Before: May 4 07:35:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=faba9c56713f8fc1dbae936ea6bc754aaf433d96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:34:11:4a:a1:22:9f:6c:f0:85:e1:fc:34:5f:
5b:65:0b:80:b3:11:70:3a:ba:c4:29:ba:94:4c:68:
60:b8:60:5a:b0:f9:d1:e2:9c:6f:c5:39:79:45:3b:
17:9f:f8:4d:21:1d:0b:94:34:92:be:50:5a:1c:42:
c3:98:a4:77:0d:4a:63:22:1a:15:12:30:13:94:c4:
3c:7e:5e:fb:82:34:12:6f:8b:7c:0f:df:87:84:90:
a9:08:0d:a0:51:73:54:bc:ae:3c:87:8e:bf:ad:36:
a6:bc:62:2a:a6:92:f1:ef:a1:07:65:b0:be:62:88:
74:3b:7e:d1:20:df:1d:5c:30:67:60:79:21:b2:2f:
71:1a:ef:78:fa:0b:8c:16:da:8f:4d:d0:00:a1:ba:
23:df:2d:0a:36:d6:28:13:36:e4:95:17:d5:47:c5:
b2:75:58:69:dd:f0:87:0d:3c:81:c5:c3:2c:ca:74:
6f:d3:df:a8:9d:d2:7c:63:56:5d:83:6c:3b:ae:3e:
98:f5:4e:92:0d:b1:f6:5d:e6:d9:5c:70:20:9f:4b:
38:76:da:73:59:3f:93:ad:4b:03:f6:0d:46:06:6c:
79:05:f4:98:7f:a1:f0:07:f1:c3:c5:6b:fb:e2:ac:
70:97:74:f3:06:00:fb:ee:9c:8a:70:21:94:9d:20:
6a:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:BA:9C:56:71:3F:8F:C1:DB:AE:93:6E:A6:BC:75:4A:AF:43:3D:96
X509v3 Authority Key Identifier:
keyid:40:81:F8:56:02:B1:16:89:25:D8:3E:B3:CA:61:60:9F:35:79:56:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QIH4VgKxFokl2D6zymFgnzV5VqY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/22c93c-9000-4e73-a1c5-c03f3fddd4ac/1/1-rqcVnE_j8HbrpNuprx1Sq9DPZY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/22c93c-9000-4e73-a1c5-c03f3fddd4ac/1/QIH4VgKxFokl2D6zymFgnzV5VqY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.130.176.0-31.130.180.255
31.130.184.0/21
Signature Algorithm: sha256WithRSAEncryption
c3:f8:fe:b8:a6:f5:da:bf:d3:a9:a1:d6:e7:06:92:a2:d0:7a:
16:34:e1:44:6a:c6:28:af:42:39:4f:4f:41:81:a4:39:c3:30:
bf:68:1c:9b:8d:c7:ff:87:9e:b0:e4:39:b4:9f:1b:2f:6a:07:
1b:e0:1a:1e:45:39:ef:0b:4d:0a:76:8d:5a:6f:b0:c0:73:f6:
21:79:d1:9b:ca:56:3a:da:c0:cd:ab:b0:da:75:4d:0e:ea:c4:
3e:54:cf:92:e3:90:47:6f:0d:c5:cd:3c:0a:c7:0f:57:3a:e0:
3f:14:c9:07:c5:ad:7d:dd:54:56:48:ca:53:b9:ca:d1:44:4b:
b2:5a:c3:d9:f4:d1:16:69:de:9a:06:5e:01:88:7b:65:ad:33:
6f:5e:3e:8b:52:46:05:0b:c0:57:b4:f9:cd:81:2d:29:16:84:
a9:f8:08:b8:90:21:61:7d:c9:19:e8:63:9b:12:07:f5:98:87:
bc:57:c3:ba:80:6c:43:a1:fe:be:74:b2:f2:1b:dc:a9:cb:54:
2d:45:03:3c:dd:d2:b4:9a:2b:b5:a1:fb:6d:18:2c:30:1d:39:
a5:df:dd:d2:f3:6a:98:f9:d6:69:a7:23:6e:5d:25:77:36:60:
12:df:62:d4:1b:1d:68:60:29:20:8d:43:58:5e:d1:63:ef:54:
83:fe:ae:aa
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYflr+cEng0KI06YJ0AIp976MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwODFmODU2MDJiMTE2ODkyNWQ4M2ViM2NhNjE2MDlmMzU3
OTU2YTYwHhcNMjMwNTA0MDczNTIzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYWJhOWM1NjcxM2Y4ZmMxZGJhZTkzNmVhNmJjNzU0YWFmNDMzZDk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgTQRSqEin2zwheH8NF9bZQuAsxFw
OrrEKbqUTGhguGBasPnR4pxvxTl5RTsXn/hNIR0LlDSSvlBaHELDmKR3DUpjIhoV
EjATlMQ8fl77gjQSb4t8D9+HhJCpCA2gUXNUvK48h46/rTamvGIqppLx76EHZbC+
Yoh0O37RIN8dXDBnYHkhsi9xGu94+guMFtqPTdAAoboj3y0KNtYoEzbklRfVR8Wy
dVhp3fCHDTyBxcMsynRv09+ondJ8Y1Zdg2w7rj6Y9U6SDbH2XebZXHAgn0s4dtpz
WT+TrUsD9g1GBmx5BfSYf6HwB/HDxWv74qxwl3TzBgD77pyKcCGUnSBqEwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFPq6nFZxP4/B266Tbqa8dUqvQz2WMB8GA1UdIwQY
MBaAFECB+FYCsRaJJdg+s8phYJ81eVamMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUlINFZnS3hGb2tsMkQ2enltRmduelY1VnFZLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8yMmM5M2MtOTAwMC00ZTczLWExYzUt
YzAzZjNmZGRkNGFjLzEvMS1ycWNWbkVfajhIYnJwTnVwcngxU3E5RFBaWS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNGMvMjJjOTNjLTkwMDAtNGU3My1hMWM1LWMwM2YzZmRkZDRh
Yy8xL1FJSDRWZ0t4Rm9rbDJENnp5bUZnbnpWNVZxWS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAtBggrBgEFBQcBBwEB/wQeMBwwGgQCAAEwFDAMAwQEH4Kw
AwQAH4K0AwQDH4K4MA0GCSqGSIb3DQEBCwUAA4IBAQDD+P64pvXav9OpodbnBpKi
0HoWNOFEasYor0I5T09BgaQ5wzC/aBybjcf/h56w5Dm0nxsvagcb4BoeRTnvC00K
do1ab7DAc/YhedGbylY62sDNq7DadU0O6sQ+VM+S45BHbw3FzTwKxw9XOuA/FMkH
xa193VRWSMpTucrRREuyWsPZ9NEWad6aBl4BiHtlrTNvXj6LUkYFC8BXtPnNgS0p
FoSp+Ai4kCFhfckZ6GObEgf1mIe8V8O6gGxDof6+dLLyG9ypy1QtRQM83dK0miu1
ofttGCwwHTml393S82qY+dZppyNuXSV3NmAS32LUGx1oYCkgjUNYXtFj71SD/q6q
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:25 2024 by rpki-client on console-fra.rpki-client.org