Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/AzxxTK0QWlluFeepTdtfzSAlwjA.roa
File: AzxxTK0QWlluFeepTdtfzSAlwjA.roa (raw, json)
Hash identifier: WfxxdVhGJJodSo3XE21RO3YhRpFQOXEqn24kD5xCres=
Subject key identifier: 03:3C:71:4C:AD:10:5A:59:6E:15:E7:A9:4D:DB:5F:CD:20:25:C2:30
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 01857002882BE8678772857810A7D0A167B7
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/AzxxTK0QWlluFeepTdtfzSAlwjA.roa
Signing time: Mon 02 Jan 2023 01:04:52 +0000
ROA not before: Mon 02 Jan 2023 01:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49334
IP address blocks: 188.132.129.0/24 maxlen: 24
188.132.131.0/24 maxlen: 24
188.132.141.0/24 maxlen: 24
212.68.58.0/24 maxlen: 24
212.68.54.0/24 maxlen: 24
212.68.53.0/24 maxlen: 24
212.68.62.0/24 maxlen: 24
212.68.63.0/24 maxlen: 24
185.17.138.0/24 maxlen: 24
185.17.139.0/24 maxlen: 24
77.92.152.0/24 maxlen: 24
77.92.153.0/24 maxlen: 24
31.210.34.0/24 maxlen: 24
188.132.173.0/24 maxlen: 24
188.132.181.0/24 maxlen: 24
188.132.182.0/24 maxlen: 24
188.132.187.0/24 maxlen: 24
78.135.65.0/24 maxlen: 24
31.210.53.0/24 maxlen: 24
31.210.52.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 May 2023 13:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:02:88:2b:e8:67:87:72:85:78:10:a7:d0:a1:67:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jan 2 01:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=033c714cad105a596e15e7a94ddb5fcd2025c230
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:2c:3a:01:83:d6:b6:6b:a4:10:02:8e:b1:1b:
bb:9d:8e:9f:23:c7:35:1b:fd:28:2e:29:b1:6e:05:
f2:85:85:81:b6:b1:7d:3e:1b:91:27:f0:b4:3c:5e:
66:47:6a:95:8a:ff:71:22:73:d0:32:e9:c6:4c:9a:
61:ca:f2:27:c5:97:bb:77:97:79:9d:34:be:fb:c3:
16:00:36:f8:01:8f:db:1e:90:7f:c0:7f:ce:05:b0:
d2:8f:77:94:61:45:7e:d8:a5:71:ba:d2:ec:eb:e8:
ff:82:5e:37:c5:9a:48:69:dd:8e:5e:c8:05:1f:99:
40:4c:a2:c4:47:a2:dd:d3:6e:31:b7:8d:c3:05:af:
31:ac:38:0e:f7:c1:5b:cb:7e:4b:c9:14:51:cb:60:
f7:34:00:6c:fa:2e:d3:11:b5:2e:25:d2:c2:24:4c:
60:35:d0:a1:c7:66:32:fc:ad:6f:92:e6:90:86:25:
11:34:29:5e:a9:7f:5d:8f:90:20:ca:4b:a2:71:cc:
8c:4c:73:01:06:2f:df:7a:e0:b8:65:7b:f9:0d:ca:
b0:2b:3f:0b:4c:d9:c7:9f:3d:79:d9:92:69:5f:90:
e0:05:6d:7d:ca:de:77:11:b8:aa:85:df:80:46:f2:
da:3a:04:8a:db:4e:5c:62:e9:23:7b:09:ba:a8:2f:
7b:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:3C:71:4C:AD:10:5A:59:6E:15:E7:A9:4D:DB:5F:CD:20:25:C2:30
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/AzxxTK0QWlluFeepTdtfzSAlwjA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.34.0/24
31.210.52.0/23
77.92.152.0/23
78.135.65.0/24
185.17.138.0/23
188.132.129.0/24
188.132.131.0/24
188.132.141.0/24
188.132.173.0/24
188.132.181.0-188.132.182.255
188.132.187.0/24
212.68.53.0-212.68.54.255
212.68.58.0/24
212.68.62.0/23
Signature Algorithm: sha256WithRSAEncryption
64:13:7c:b1:19:10:b7:a0:48:f8:53:2d:1f:8e:df:aa:1a:c8:
fd:b8:64:22:46:cd:e0:47:f1:6b:05:ce:96:be:d4:4c:c4:9b:
1a:9b:7d:47:65:37:8b:da:c5:b6:c3:5b:36:9b:b1:3b:00:5b:
a0:7c:11:57:75:7c:17:77:e8:db:73:7a:f9:5c:9c:29:84:2f:
7b:3a:dc:68:5a:7f:d6:28:bd:2a:46:63:5c:6c:b2:59:fb:ef:
26:7a:89:7a:54:4e:43:ca:43:ad:58:09:f3:8b:7b:46:40:3e:
e9:a6:b3:48:7b:6a:e4:6f:b5:e0:88:9b:8f:ed:d6:58:50:f4:
9a:ed:09:12:36:15:0e:b3:f1:8c:07:7b:db:65:98:66:a1:6c:
90:33:14:eb:1c:ca:63:b7:bf:75:4c:1b:4b:aa:65:63:24:f8:
ad:76:1e:86:08:5c:74:9f:f1:d0:1c:98:5f:81:cc:d9:21:65:
ae:12:af:fb:36:68:18:c1:33:cd:7c:29:f3:69:6b:90:1b:db:
95:1f:bb:17:db:4c:bd:55:9b:51:e0:90:1c:f4:54:03:70:23:
31:80:07:08:5e:dd:5b:a5:97:e7:2b:c4:85:9e:16:e4:77:de:
3a:dc:52:d3:ff:c3:61:1a:ac:74:9e:b3:0c:c6:44:f8:ad:35:
25:f8:6f:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:43 2024 by rpki-client on console-fra.rpki-client.org