Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/_34gxETpKdpGnXXZdNpgupgYeVU.roa
File: _34gxETpKdpGnXXZdNpgupgYeVU.roa (raw, json)
Hash identifier: Vt5OehrLnkq06TwKIlP6Nxeg2tkM5r6pyIJV4uwJmLc=
Subject key identifier: FF:7E:20:C4:44:E9:29:DA:46:9D:75:D9:74:DA:60:BA:98:18:79:55
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018A6F8F4356244AD394C44A280747A2671A
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/_34gxETpKdpGnXXZdNpgupgYeVU.roa
Signing time: Thu 07 Sep 2023 12:12:54 +0000
ROA not before: Thu 07 Sep 2023 12:12:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207326
IP address blocks: 31.210.42.0/24 maxlen: 24
78.135.67.0/24 maxlen: 24
31.210.55.0/24 maxlen: 24
78.135.83.0/24 maxlen: 24
78.135.82.0/24 maxlen: 24
78.135.81.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:6f:8f:43:56:24:4a:d3:94:c4:4a:28:07:47:a2:67:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Sep 7 12:12:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ff7e20c444e929da469d75d974da60ba98187955
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:e3:78:14:00:7f:1e:fe:e0:9b:54:52:29:96:
e8:45:e1:f2:cc:dd:f2:d8:91:d0:fd:d1:49:27:b1:
07:c7:d7:9f:6a:82:2b:b6:d5:d1:c8:a5:69:0a:4a:
bb:a9:61:86:5b:7b:7b:1e:2d:63:cf:1a:58:b2:a2:
1e:ff:75:7a:f5:54:06:74:d9:35:34:1a:d7:c7:b5:
4f:69:0e:69:1d:4a:2a:a1:ce:9c:90:17:7e:b2:83:
4a:ce:c8:04:a9:81:7d:dc:17:9b:6a:8b:19:01:f4:
87:12:5a:4b:0b:37:e3:45:12:f0:b5:ff:81:bf:5d:
7f:01:65:63:9a:97:ad:2e:12:0f:dd:b4:8f:b0:db:
59:a2:de:c7:7c:53:59:cd:f8:02:17:ed:2a:e5:03:
e5:66:fc:21:1f:e5:94:7e:74:de:2c:1f:fc:90:e1:
12:73:ba:b5:c7:cd:38:da:61:95:20:9f:d7:6a:8a:
bf:23:a7:6f:cc:c2:6b:9b:96:48:38:88:d5:92:48:
4d:3b:c7:fb:ac:5f:a5:c0:26:22:19:cf:8f:e1:f9:
13:b4:33:f5:6a:41:b2:a1:dc:0b:a6:3e:b3:e3:8e:
e7:1b:81:9a:dc:cd:c5:ac:c6:fa:70:00:9c:34:f7:
78:7d:10:cf:6d:72:bf:85:0e:93:9c:9a:a8:46:bc:
20:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:7E:20:C4:44:E9:29:DA:46:9D:75:D9:74:DA:60:BA:98:18:79:55
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/_34gxETpKdpGnXXZdNpgupgYeVU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.42.0/24
31.210.55.0/24
78.135.67.0/24
78.135.81.0-78.135.83.255
Signature Algorithm: sha256WithRSAEncryption
8f:34:d2:51:90:d2:a4:76:b4:07:65:62:0c:8d:c1:ba:f8:9d:
75:14:d7:99:fb:28:db:a3:29:b1:b4:50:2a:cc:c3:05:ea:61:
72:7b:64:ce:89:bd:f4:69:eb:b9:40:4f:9b:1f:c9:50:b9:2f:
e8:7f:6f:09:e6:14:a2:cb:88:53:0c:1c:19:6a:f6:5f:4b:bf:
86:83:f7:f9:2e:22:ee:7b:71:58:b3:ec:01:c6:4a:81:a0:b1:
b6:cb:fa:32:3d:08:6a:95:17:0c:58:0f:8f:a1:1b:03:e7:bd:
de:d5:a3:36:66:df:9e:51:62:83:c9:d6:2e:1b:78:d1:57:f7:
a0:cc:06:eb:3a:72:78:84:7e:da:6a:34:51:0f:89:9f:45:43:
4d:ec:f1:54:61:53:b5:13:3c:5a:bb:6f:6d:6b:8b:32:61:8f:
99:bd:49:37:f9:7e:82:3e:a7:9b:8a:50:6b:e0:b6:ae:1b:dc:
74:1a:c8:e0:f3:ea:60:c8:50:6a:01:dd:a2:1e:2a:a5:50:65:
74:da:11:58:b7:a7:f7:42:ad:c4:ca:34:1c:d6:13:a3:07:c5:
32:8f:51:3f:b0:89:7a:0f:87:1b:fd:4d:06:61:f8:01:14:db:
7d:2f:3f:ea:1f:80:4f:0e:64:e3:4b:70:26:1b:00:54:a0:2f:
ff:83:fb:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:58 2024 by rpki-client on console-ams.rpki-client.org