Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/jFKlJjEm1JkTGarkFiGOA6kmAZ4.roa
File: jFKlJjEm1JkTGarkFiGOA6kmAZ4.roa (raw, json)
Hash identifier: BF59zzkc4+MfUGnTe8or4MmmsTuQle80bwuDQw9q0Fw=
Subject key identifier: 8C:52:A5:26:31:26:D4:99:13:19:AA:E4:16:21:8E:03:A9:26:01:9E
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 018EE357869858AA49764FBC8E527900A762
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/jFKlJjEm1JkTGarkFiGOA6kmAZ4.roa
Signing time: Mon 15 Apr 2024 19:59:07 +0000
ROA not before: Mon 15 Apr 2024 19:59:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 31.41.253.0/24 maxlen: 24
45.87.124.0/24 maxlen: 24
45.87.125.0/24 maxlen: 24
45.87.127.0/24 maxlen: 24
45.128.124.0/24 maxlen: 24
45.128.128.0/24 maxlen: 24
45.129.198.0/24 maxlen: 24
62.3.7.0/24 maxlen: 24
62.3.31.0/24 maxlen: 24
77.72.83.0/24 maxlen: 24
77.72.84.0/24 maxlen: 24
84.252.69.0/24 maxlen: 24
88.218.184.0/24 maxlen: 24
88.218.185.0/24 maxlen: 24
88.218.186.0/24 maxlen: 24
88.218.187.0/24 maxlen: 24
91.190.158.0/24 maxlen: 24
91.209.31.0/24 maxlen: 24
91.212.169.0/24 maxlen: 24
91.228.215.0/24 maxlen: 24
91.239.212.0/24 maxlen: 24
91.239.213.0/24 maxlen: 24
146.19.120.0/24 maxlen: 24
146.255.186.0/24 maxlen: 24
176.116.17.0/24 maxlen: 24
176.126.102.0/24 maxlen: 24
185.128.224.0/24 maxlen: 24
185.209.50.0/24 maxlen: 24
185.211.171.0/24 maxlen: 24
185.214.164.0/24 maxlen: 24
185.214.165.0/24 maxlen: 24
185.214.167.0/24 maxlen: 24
193.0.62.0/24 maxlen: 24
193.228.129.0/24 maxlen: 24
194.59.222.0/24 maxlen: 24
194.60.76.0/24 maxlen: 24
195.64.103.0/24 maxlen: 24
212.107.25.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Apr 2024 17:51:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e3:57:86:98:58:aa:49:76:4f:bc:8e:52:79:00:a7:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Apr 15 19:59:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8c52a5263126d4991319aae416218e03a926019e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:80:f3:45:c3:8e:05:ac:df:57:52:b0:85:06:
b7:d1:6c:0a:60:b9:8a:e7:b5:b5:7f:43:36:98:5c:
b7:b6:16:7a:2c:7a:37:8e:1b:16:f9:2e:ba:a5:a7:
6f:51:11:1e:50:87:c2:2a:67:bf:d8:ba:52:dd:e0:
ad:f9:68:52:24:7c:6b:bb:29:8f:50:d9:cb:0c:6b:
cc:0b:10:21:3a:a9:ee:bf:f1:2d:80:94:de:7d:1b:
e8:59:16:37:89:94:8a:2c:91:65:49:58:ba:43:7f:
a0:15:c9:4d:54:77:7e:6e:3a:e7:5d:24:b6:75:3a:
b4:4e:de:ee:8c:57:c8:c0:8d:32:d7:cd:1a:12:71:
1a:2a:34:9a:22:49:48:fc:b0:ac:34:33:3c:6f:bb:
2f:f4:39:a3:00:8a:2f:3a:a7:7e:5a:2d:ba:73:eb:
34:a3:a0:f5:6e:d0:b3:e8:a3:ff:cc:5e:b9:6f:37:
6c:3e:e4:37:16:10:3a:6d:42:31:a0:7b:7b:8f:5a:
21:bc:9e:e8:75:4c:35:dd:88:26:3f:d4:73:f4:15:
66:ab:41:ac:a2:2a:a4:75:5b:8b:c3:9f:98:3b:06:
83:ee:a4:ae:65:96:6f:4f:b5:50:1b:0a:38:60:09:
a4:f9:a8:da:94:af:f5:7a:f9:18:37:0b:6c:cf:89:
df:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:52:A5:26:31:26:D4:99:13:19:AA:E4:16:21:8E:03:A9:26:01:9E
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/jFKlJjEm1JkTGarkFiGOA6kmAZ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.41.253.0/24
45.87.124.0/23
45.87.127.0/24
45.128.124.0/24
45.128.128.0/24
45.129.198.0/24
62.3.7.0/24
62.3.31.0/24
77.72.83.0-77.72.84.255
84.252.69.0/24
88.218.184.0/22
91.190.158.0/24
91.209.31.0/24
91.212.169.0/24
91.228.215.0/24
91.239.212.0/23
146.19.120.0/24
146.255.186.0/24
176.116.17.0/24
176.126.102.0/24
185.128.224.0/24
185.209.50.0/24
185.211.171.0/24
185.214.164.0/23
185.214.167.0/24
193.0.62.0/24
193.228.129.0/24
194.59.222.0/24
194.60.76.0/24
195.64.103.0/24
212.107.25.0/24
Signature Algorithm: sha256WithRSAEncryption
03:7e:35:04:3e:51:f4:c5:8d:cf:56:32:4a:10:f8:a9:da:c5:
52:3d:7a:cf:6d:e7:06:f5:e5:29:31:b1:be:09:58:f0:56:67:
98:f0:5e:2b:41:eb:f1:ee:20:a7:35:de:a3:fe:c4:58:3f:f7:
e3:7c:bc:46:f1:a6:bb:00:85:90:17:50:62:1c:12:75:bf:cf:
73:ac:7f:f6:94:7b:e6:d5:80:eb:67:4f:1b:41:ba:78:c3:77:
e3:40:91:3c:ad:b8:2e:7b:ad:1e:d1:e8:e2:e7:4d:38:3a:f7:
ed:e3:b5:57:d4:63:bc:73:44:69:00:28:4a:c9:b4:bf:18:7a:
0c:25:2b:11:71:b6:00:77:9a:61:4d:f6:aa:b1:2b:fc:3a:b2:
70:f4:26:08:53:e8:44:94:9a:91:6a:40:af:69:00:4a:91:83:
15:dd:23:87:6d:be:cf:f1:74:ae:e5:0e:38:11:b7:0f:30:27:
fc:3b:ba:d8:14:4f:42:88:e0:30:e7:c6:bf:68:12:c2:e1:50:
21:04:65:bd:24:62:d6:01:e6:7c:e2:1e:b6:77:81:81:dc:17:
2e:2b:b7:72:9b:86:19:5b:25:ed:40:5a:9a:f0:d2:a0:e9:38:
4e:89:c0:bf:da:11:e5:11:0d:e3:5e:1b:aa:7f:fc:e4:61:a7:
39:f2:1d:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:08 2024 by rpki-client on console-fra.rpki-client.org