Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/4wDTcwvcdaclhpaDd9oPBukDn6E.roa
File: 4wDTcwvcdaclhpaDd9oPBukDn6E.roa (raw, json)
Hash identifier: UBYuXsRwahI/0gcCgAR8Ioc3vAKMoXgoQygU4o5kvzA=
Subject key identifier: E3:00:D3:73:0B:DC:75:A7:25:86:96:83:77:DA:0F:06:E9:03:9F:A1
Certificate issuer: /CN=dafb645f134f4fdada45e70bcfcd93b897dbd725
Certificate serial: 0191A8B3846A9E3D6254B25718CF69DE2B42
Authority key identifier: DA:FB:64:5F:13:4F:4F:DA:DA:45:E7:0B:CF:CD:93:B8:97:DB:D7:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2vtkXxNPT9raRecLz82TuJfb1yU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/4wDTcwvcdaclhpaDd9oPBukDn6E.roa
Signing time: Sat 31 Aug 2024 13:50:22 +0000
ROA not before: Sat 31 Aug 2024 13:50:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35766
IP address blocks: 31.184.166.0/24 maxlen: 24
31.184.172.0/24 maxlen: 24
31.184.175.0/24 maxlen: 24
37.130.200.0/23 maxlen: 24
37.130.204.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 03 Nov 2024 07:37:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:a8:b3:84:6a:9e:3d:62:54:b2:57:18:cf:69:de:2b:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dafb645f134f4fdada45e70bcfcd93b897dbd725
Validity
Not Before: Aug 31 13:50:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e300d3730bdc75a72586968377da0f06e9039fa1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:e9:fb:37:c9:50:5f:db:da:94:06:be:18:5c:
a2:8a:17:c2:29:89:0e:bc:4c:71:e6:f8:b2:1e:46:
5c:9c:89:31:81:6a:a9:24:f6:3b:d7:ae:b7:a0:c6:
c2:d5:df:0f:20:93:06:67:00:7f:03:88:43:8c:0c:
a3:d5:16:f3:d9:90:91:94:40:93:b7:47:fa:16:8f:
e3:ff:a1:57:5f:fe:4c:05:7a:cc:d4:d5:d9:e6:70:
f4:c6:7d:4a:1f:7e:e3:4e:e8:c5:0c:56:3b:21:cf:
c3:cf:b1:b1:f3:34:b7:e3:28:7e:aa:34:2e:45:1d:
fb:ee:79:cb:ab:7a:ba:a8:db:42:2d:49:20:81:42:
be:bc:86:3f:42:b6:c5:36:6d:18:e5:97:ac:df:81:
02:43:36:b7:04:26:f8:4a:01:92:82:96:6b:47:e7:
be:0f:2d:ff:12:2c:39:7a:38:9b:c6:9f:b9:c7:ed:
ab:be:aa:20:e5:e1:4f:fe:67:6f:71:6d:ae:de:d2:
22:63:17:2d:68:e0:63:e0:f3:15:59:fd:5b:25:e3:
c5:69:57:14:de:70:35:3d:2b:a1:d8:8e:26:1a:3b:
bf:75:81:c8:cf:33:50:c4:dc:bc:e7:cf:b1:8c:6e:
ac:b1:ce:e8:94:f8:05:8d:d2:9d:60:8e:ac:9e:72:
d4:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:00:D3:73:0B:DC:75:A7:25:86:96:83:77:DA:0F:06:E9:03:9F:A1
X509v3 Authority Key Identifier:
keyid:DA:FB:64:5F:13:4F:4F:DA:DA:45:E7:0B:CF:CD:93:B8:97:DB:D7:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2vtkXxNPT9raRecLz82TuJfb1yU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/4wDTcwvcdaclhpaDd9oPBukDn6E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/2vtkXxNPT9raRecLz82TuJfb1yU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.184.166.0/24
31.184.172.0/24
31.184.175.0/24
37.130.200.0/23
37.130.204.0/22
Signature Algorithm: sha256WithRSAEncryption
70:2c:b9:21:7f:3b:71:16:6e:2e:4d:a6:64:54:1f:03:c0:85:
b6:66:dd:60:ea:8a:47:5a:33:6b:b9:1f:95:13:4b:a4:0c:ee:
c3:05:5b:1d:79:f6:8f:ad:5e:7d:60:c4:5b:93:dc:9c:2f:8c:
f4:39:71:b1:11:ea:be:ba:bb:5e:99:1d:f4:c6:ae:ad:af:f3:
fb:10:43:2a:ac:a2:f0:0b:3b:51:f0:51:af:64:e4:5c:5e:e5:
55:12:a2:7b:98:ec:a9:0d:d5:81:ef:84:28:aa:a2:38:57:19:
25:aa:f9:1a:1c:dc:9c:c8:68:14:b8:82:13:35:77:a3:d1:f7:
b0:17:1b:bb:b0:0c:41:ff:5f:1f:b6:4c:b9:4b:96:1b:43:a2:
66:88:4d:0d:3d:e5:e6:3c:4f:0f:f7:88:fe:45:43:00:e4:56:
a8:e9:8a:12:ae:7b:6e:9f:d5:28:52:55:16:2d:b8:7d:fe:0b:
61:82:48:7e:99:77:dc:cc:49:b9:8f:88:88:a1:10:10:70:cc:
7f:b7:fb:97:4b:5c:22:c9:f2:b2:7b:55:1f:8b:ea:50:3a:d8:
01:27:ad:75:6d:71:d6:8b:e6:31:30:f8:33:25:3b:8d:f5:44:
db:e5:65:d6:75:5e:a5:72:40:f3:bf:a4:57:7d:9b:e3:89:b7:
78:40:34:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 3 09:09:10 2024 by rpki-client on console-fra.rpki-client.org