Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/9UEl7M4fUZxWgeMgRV4kq8WJSZ8.roa
File: 9UEl7M4fUZxWgeMgRV4kq8WJSZ8.roa (raw, json)
Hash identifier: GuCz9jSuAEA0ljto5HCyojxLgf2kHvjc68gS1rz8HjM=
Subject key identifier: F5:41:25:EC:CE:1F:51:9C:56:81:E3:20:45:5E:24:AB:C5:89:49:9F
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 01917622E97B5483239EAAA7E6956696339B
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/9UEl7M4fUZxWgeMgRV4kq8WJSZ8.roa
Signing time: Wed 21 Aug 2024 18:11:24 +0000
ROA not before: Wed 21 Aug 2024 18:11:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202656
IP address blocks: 31.41.251.0/24 maxlen: 24
31.41.252.0/24 maxlen: 24
31.41.254.0/24 maxlen: 24
45.87.126.0/24 maxlen: 24
45.95.29.0/24 maxlen: 24
45.128.125.0/24 maxlen: 24
45.128.126.0/24 maxlen: 24
45.128.127.0/24 maxlen: 24
45.128.128.0/24 maxlen: 24
45.151.29.0/24 maxlen: 24
83.138.54.0/24 maxlen: 24
88.151.8.0/24 maxlen: 24
94.154.190.0/24 maxlen: 24
176.116.15.0/24 maxlen: 24
176.126.96.0/24 maxlen: 24
193.28.178.0/24 maxlen: 24
193.187.105.0/24 maxlen: 24
194.59.187.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 25 Sep 2024 07:25:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:76:22:e9:7b:54:83:23:9e:aa:a7:e6:95:66:96:33:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Aug 21 18:11:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f54125ecce1f519c5681e320455e24abc589499f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:4b:8d:40:4d:90:a3:8a:82:3c:9b:35:1a:90:
d1:11:1a:b4:7e:d3:12:92:a2:b2:1f:79:63:30:1b:
d2:d5:cc:17:24:19:51:3e:f2:8b:16:60:3b:e7:36:
54:8b:33:4c:1d:b5:b0:52:23:16:de:fd:ac:00:50:
d8:dc:97:d8:fc:99:71:e6:a5:53:27:20:e1:bb:69:
82:8d:ec:22:02:e4:1e:4a:ea:79:b4:fc:ff:ef:92:
8b:e0:ee:7c:31:cd:36:dd:68:d5:d9:18:64:7d:66:
50:65:c3:69:c7:c5:bc:62:5b:c7:32:6f:9c:14:5f:
18:7b:7b:cf:b8:6f:e5:0d:8a:18:bb:59:a8:e8:31:
da:ed:9b:12:d6:03:29:58:5a:fe:5f:f0:fd:f5:92:
22:36:dc:c4:4e:d9:ae:ea:f0:f7:7d:9f:d5:d5:7a:
44:b6:94:ab:84:dd:4d:d7:ea:fd:5d:0d:ea:c6:a0:
25:c6:57:1f:8d:00:e3:4d:41:ad:44:6f:64:3f:b1:
ab:54:84:97:f7:71:13:6e:b7:9c:d2:ea:71:30:4b:
9b:96:a2:7e:93:1c:fc:6a:09:8c:73:04:c3:1f:15:
67:80:b9:ed:ea:7a:14:1e:22:3a:59:6a:a6:0a:24:
7f:dc:cf:f9:c7:85:a6:5f:0c:2f:39:7b:e7:27:79:
83:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:41:25:EC:CE:1F:51:9C:56:81:E3:20:45:5E:24:AB:C5:89:49:9F
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/9UEl7M4fUZxWgeMgRV4kq8WJSZ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.41.251.0-31.41.252.255
31.41.254.0/24
45.87.126.0/24
45.95.29.0/24
45.128.125.0-45.128.128.255
45.151.29.0/24
83.138.54.0/24
88.151.8.0/24
94.154.190.0/24
176.116.15.0/24
176.126.96.0/24
193.28.178.0/24
193.187.105.0/24
194.59.187.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:2c:5e:95:8d:da:e2:c3:51:6f:07:c6:a5:f4:7a:b8:9f:05:
f0:75:2c:69:ba:d4:2a:76:ce:25:03:9c:b6:e7:ed:1b:f2:38:
35:c9:39:7f:f6:a0:5d:8a:8c:d5:9c:c0:50:da:33:34:31:3a:
4f:a4:61:9a:c8:12:56:a3:9f:cc:a4:7f:3e:11:84:7b:7f:dc:
e8:40:6a:8a:c9:4c:a2:e1:11:20:3f:c1:9e:0d:5d:58:3f:fb:
ca:91:2a:fb:04:68:6b:45:d1:b3:e6:e8:8e:43:0d:09:18:6b:
89:4b:be:0f:f1:a8:83:97:b8:19:75:5d:8f:4a:8c:a9:b0:1b:
f1:a9:56:cc:7c:35:48:72:f4:99:43:b7:c1:eb:be:a0:89:0e:
25:34:38:ea:f7:ec:fc:5e:b9:80:47:7d:77:67:38:82:14:29:
f7:d9:79:5e:4c:7d:c0:d5:95:96:e9:dc:2c:ee:3a:9d:15:8d:
75:9a:82:ae:72:00:de:f2:b6:1f:40:6f:b4:87:54:e2:7c:15:
e7:c5:59:62:98:73:8d:75:97:a2:ee:bd:de:d4:3e:b2:23:c9:
d9:57:60:59:f5:16:77:97:22:76:35:89:8f:2d:25:99:43:fe:
66:7b:77:9d:25:8d:f1:1f:7d:96:39:a9:6e:ab:9d:ca:35:01:
ca:b1:84:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 25 09:41:00 2024 by rpki-client on console-fra.rpki-client.org