Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/01ToORJ5kI2_EFBSK7bSnjWb5N4.roa
File: 01ToORJ5kI2_EFBSK7bSnjWb5N4.roa (raw, json)
Hash identifier: R3VjCv+GLXh5YmMLkerGLw6ZpJwdFhDrhpauFAlamZo=
Subject key identifier: D3:54:E8:39:12:79:90:8D:BF:10:50:52:2B:B6:D2:9E:35:9B:E4:DE
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 018EAFA733C211C87332C8513976FFEFAFCD
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/01ToORJ5kI2_EFBSK7bSnjWb5N4.roa
Signing time: Fri 05 Apr 2024 19:05:54 +0000
ROA not before: Fri 05 Apr 2024 19:05:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 31.41.253.0/24 maxlen: 24
45.87.124.0/24 maxlen: 24
45.87.125.0/24 maxlen: 24
45.87.127.0/24 maxlen: 24
45.128.124.0/24 maxlen: 24
45.128.128.0/24 maxlen: 24
62.3.31.0/24 maxlen: 24
77.72.84.0/24 maxlen: 24
84.252.69.0/24 maxlen: 24
88.218.184.0/24 maxlen: 24
88.218.185.0/24 maxlen: 24
88.218.186.0/24 maxlen: 24
88.218.187.0/24 maxlen: 24
91.190.158.0/24 maxlen: 24
91.239.212.0/24 maxlen: 24
91.239.213.0/24 maxlen: 24
146.19.120.0/24 maxlen: 24
185.211.171.0/24 maxlen: 24
185.214.164.0/24 maxlen: 24
194.59.222.0/24 maxlen: 24
194.60.76.0/24 maxlen: 24
195.64.103.0/24 maxlen: 24
212.107.25.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Apr 2024 12:28:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:af:a7:33:c2:11:c8:73:32:c8:51:39:76:ff:ef:af:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Apr 5 19:05:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d354e8391279908dbf1050522bb6d29e359be4de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:fc:3d:26:52:17:af:97:46:d8:5b:46:7c:ad:
a8:55:7b:39:fe:cc:83:06:b5:9b:e3:42:8c:2e:b7:
fd:f4:a7:d0:be:7c:83:ac:d6:0c:61:99:7b:e8:23:
1e:4d:f6:3c:40:ed:79:2e:ac:54:15:ee:f5:49:1c:
fd:e8:62:3e:49:0e:e3:c2:82:11:99:2a:99:cf:b6:
32:82:e1:d6:0e:58:d9:02:a0:2c:e0:fa:41:c4:e4:
92:0f:5a:6a:52:35:75:b9:b4:73:b7:9e:4c:e2:66:
37:74:a1:e6:b4:9f:3d:d3:17:fd:0a:ec:99:2f:63:
e6:39:2c:9b:1c:18:aa:ed:49:85:6a:bc:bf:3b:b7:
b8:bf:ac:41:d3:7e:f0:d4:d3:ba:7e:c7:7a:9b:de:
95:3d:03:1e:f6:0d:96:78:8e:d8:0c:78:57:77:88:
b5:26:82:45:0b:93:e3:c2:1e:89:4e:46:ea:85:74:
bb:98:cc:c5:36:c1:e3:ff:73:7f:80:f0:42:f2:3d:
f7:ab:a4:7e:ca:1e:3a:89:a5:c8:fe:0b:90:2b:21:
78:8d:b1:a9:97:f0:e7:b5:7d:d2:6a:ce:85:bb:1e:
8e:57:6a:22:9d:18:14:4c:c8:75:60:81:d0:ca:e8:
56:a5:6d:24:ff:51:85:ed:7c:3f:6c:e6:97:a3:a0:
2d:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:54:E8:39:12:79:90:8D:BF:10:50:52:2B:B6:D2:9E:35:9B:E4:DE
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/01ToORJ5kI2_EFBSK7bSnjWb5N4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.41.253.0/24
45.87.124.0/23
45.87.127.0/24
45.128.124.0/24
45.128.128.0/24
62.3.31.0/24
77.72.84.0/24
84.252.69.0/24
88.218.184.0/22
91.190.158.0/24
91.239.212.0/23
146.19.120.0/24
185.211.171.0/24
185.214.164.0/24
194.59.222.0/24
194.60.76.0/24
195.64.103.0/24
212.107.25.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:5a:20:d9:a3:41:2f:25:fc:fa:ee:d5:47:40:46:02:a8:66:
9e:00:41:73:d2:3b:f3:a6:df:bf:52:6c:9f:ab:5c:85:e8:95:
9f:c8:1d:f9:c6:ad:17:e4:43:57:6e:e7:f5:bb:fd:ed:e9:5c:
c4:c4:03:d2:de:51:c4:c2:4a:aa:6d:64:fb:a2:a0:25:54:b5:
9b:52:90:34:93:f2:fa:e6:23:6a:09:cb:f9:7c:50:7b:cc:5f:
a9:b2:d9:61:25:57:42:16:77:4e:5a:c5:75:84:20:f8:9a:9f:
ce:86:59:a0:21:cd:a0:a9:72:fb:67:31:13:b3:c0:f0:8a:cd:
21:88:7c:cc:34:65:ea:52:b4:e7:f6:a8:63:5f:33:34:5e:ec:
bd:81:b6:3b:8d:1b:fb:48:36:38:2c:18:3b:40:92:6d:06:80:
cf:c7:0c:e7:3e:f9:1c:42:d8:17:cf:0a:4f:f5:ce:db:b7:a2:
7b:71:79:04:b8:8a:93:84:36:42:90:2a:fb:d7:2c:cf:cb:72:
e8:bf:06:76:b8:0f:38:3c:83:3e:75:79:3c:8a:09:af:f9:b1:
39:61:3d:46:8d:02:fb:c3:df:51:0e:e4:2c:1f:88:a1:4e:db:
ad:ab:2b:a3:ac:4c:3b:7f:64:56:da:44:7d:b2:d5:de:82:69:
d7:5e:ba:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 8 17:17:59 2024 by rpki-client on console-fra.rpki-client.org