Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/uiMKZQ9RUn3XYGiZK_wEjKvH680.roa
File: uiMKZQ9RUn3XYGiZK_wEjKvH680.roa (raw, json)
Hash identifier: QuQa7CdqfGOU7OnsG+E+3BWmjy61Mo10JeKzh5u7rNo=
Subject key identifier: BA:23:0A:65:0F:51:52:7D:D7:60:68:99:2B:FC:04:8C:AB:C7:EB:CD
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018FA5EFBBED2B337B83AB2E12955DA5970C
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/uiMKZQ9RUn3XYGiZK_wEjKvH680.roa
Signing time: Thu 23 May 2024 14:51:42 +0000
ROA not before: Thu 23 May 2024 14:51:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48678
IP address blocks: 31.210.48.0/24 maxlen: 24
31.210.50.0/24 maxlen: 24
77.92.143.0/24 maxlen: 24
77.92.145.0/24 maxlen: 24
77.92.146.0/24 maxlen: 24
77.92.153.0/24 maxlen: 24
78.135.66.0/24 maxlen: 24
185.17.139.0/24 maxlen: 24
188.132.129.0/24 maxlen: 24
188.132.153.0/24 maxlen: 24
188.132.168.0/24 maxlen: 24
188.132.183.0/24 maxlen: 24
188.132.184.0/24 maxlen: 24
188.132.185.0/24 maxlen: 24
188.132.186.0/24 maxlen: 24
188.132.199.0/24 maxlen: 24
188.132.201.0/24 maxlen: 24
188.132.206.0/24 maxlen: 24
188.132.207.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 28 May 2024 15:17:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:a5:ef:bb:ed:2b:33:7b:83:ab:2e:12:95:5d:a5:97:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: May 23 14:51:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ba230a650f51527dd76068992bfc048cabc7ebcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:94:0a:11:f3:1c:5e:51:79:57:1f:f6:cd:1d:
ad:ba:4b:40:53:ff:14:e8:31:4a:e1:48:b6:ba:89:
01:f2:86:a0:a8:ab:f3:9b:c2:f4:41:4d:bf:f5:ba:
d9:69:b1:90:0a:8a:6e:de:18:57:41:ca:d7:42:3a:
a2:bf:27:24:47:a5:51:42:99:15:97:eb:c5:43:5c:
78:c7:df:0a:f2:8c:18:69:00:32:0c:9c:0c:c5:21:
24:45:66:6d:be:16:31:37:38:4a:fa:87:a4:66:37:
0e:2c:45:e4:77:f6:a9:b5:2c:11:cb:79:0e:c6:49:
de:fc:50:10:3b:93:f0:1d:49:17:43:ea:23:73:73:
f2:8c:4a:6b:17:a6:c6:e4:5a:f1:f2:c6:e4:b0:cc:
87:be:a4:46:1d:50:36:a8:9d:88:a5:c8:58:24:42:
7a:a0:12:f6:1b:c3:27:3b:7b:5c:d3:3e:62:06:fa:
cb:d1:2e:3a:8d:d4:f0:60:bc:dc:a8:3c:11:c7:d3:
40:51:c8:21:c8:bd:73:74:c8:ba:41:df:58:65:b0:
6a:72:a2:74:35:f3:36:ce:4d:0d:91:69:27:53:f7:
01:e4:43:4e:f9:dd:a5:17:d4:a0:ab:d3:3a:fb:be:
86:fb:7d:cc:8c:5d:77:75:e9:cc:57:a9:b9:0b:33:
83:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:23:0A:65:0F:51:52:7D:D7:60:68:99:2B:FC:04:8C:AB:C7:EB:CD
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/uiMKZQ9RUn3XYGiZK_wEjKvH680.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.48.0/24
31.210.50.0/24
77.92.143.0/24
77.92.145.0-77.92.146.255
77.92.153.0/24
78.135.66.0/24
185.17.139.0/24
188.132.129.0/24
188.132.153.0/24
188.132.168.0/24
188.132.183.0-188.132.186.255
188.132.199.0/24
188.132.201.0/24
188.132.206.0/23
Signature Algorithm: sha256WithRSAEncryption
6e:39:25:a3:9c:6b:9d:a5:8b:3c:95:1e:2b:9e:29:be:8f:d0:
a0:68:f3:98:5f:0c:1b:ff:48:09:56:68:7e:54:dc:2a:d6:57:
c0:90:ed:1e:f7:f4:05:e0:42:a9:8d:e3:10:f5:f1:23:9d:7d:
b9:7f:a5:ad:1c:30:f8:ca:3f:34:fa:cf:c5:3d:83:f3:7c:1a:
70:d6:b3:2b:ab:3d:ea:33:3f:d7:0f:db:c2:4f:f2:00:e0:47:
3d:f3:e7:5c:32:ce:e8:5c:a0:1c:7f:c1:ad:db:43:e9:cb:44:
b8:a4:c1:a9:49:c0:81:4e:76:ab:40:02:a1:78:2c:94:88:4f:
4e:33:c9:2a:a7:1f:ed:c4:3f:7b:f6:c4:10:73:b7:5b:0b:68:
ae:92:72:14:a1:ec:2c:9c:95:7a:b4:a3:9b:b5:86:bd:c6:7c:
36:a2:90:45:db:87:81:43:c6:4e:d4:22:f4:06:cd:f1:30:5f:
1b:a2:0e:97:c7:03:1b:b2:f3:57:7d:f6:25:0d:81:ff:fa:50:
40:77:ef:1d:cb:a0:4c:33:1b:8d:1b:d6:8e:00:de:8f:14:9f:
25:0d:47:88:20:87:39:94:b9:26:28:b2:7e:0a:30:dd:86:f8:
ab:69:b7:21:7c:59:f1:24:7b:80:8b:82:62:65:75:5e:a3:17:
63:ab:54:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org