Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/uXFalXPJUUlWhjMm-8kelzEmUuI.roa
File: uXFalXPJUUlWhjMm-8kelzEmUuI.roa (raw, json)
Hash identifier: wIlt8+Ni0kMDuYmkJlQXUYfP78E701RmuDjZmGXrLCE=
Subject key identifier: B9:71:5A:95:73:C9:51:49:56:86:33:26:FB:C9:1E:97:31:26:52:E2
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 0191526D0219A3EF18B2B4E942D55856B2B8
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/uXFalXPJUUlWhjMm-8kelzEmUuI.roa
Signing time: Wed 14 Aug 2024 19:46:01 +0000
ROA not before: Wed 14 Aug 2024 19:46:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202656
IP address blocks: 31.41.251.0/24 maxlen: 24
31.41.252.0/24 maxlen: 24
31.41.254.0/24 maxlen: 24
45.87.126.0/24 maxlen: 24
45.95.29.0/24 maxlen: 24
45.128.125.0/24 maxlen: 24
45.128.126.0/24 maxlen: 24
45.128.127.0/24 maxlen: 24
45.128.128.0/24 maxlen: 24
83.138.54.0/24 maxlen: 24
88.151.8.0/24 maxlen: 24
94.154.190.0/24 maxlen: 24
176.116.15.0/24 maxlen: 24
176.126.96.0/24 maxlen: 24
193.28.178.0/24 maxlen: 24
193.187.105.0/24 maxlen: 24
194.59.187.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 21 Aug 2024 18:11:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:52:6d:02:19:a3:ef:18:b2:b4:e9:42:d5:58:56:b2:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Aug 14 19:46:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b9715a9573c9514956863326fbc91e97312652e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e7:83:3c:b6:66:18:54:7d:f8:17:27:0d:35:
1f:94:e6:d2:f5:90:fd:07:3b:47:82:77:f1:1d:e9:
cd:f1:35:ea:26:c0:82:54:78:f3:cb:71:26:bb:f0:
50:25:0c:cb:1d:18:68:bf:c8:61:aa:fe:c9:cb:65:
f4:03:1a:2d:9c:f6:17:f5:c7:85:f7:0e:35:50:fd:
8e:c9:21:04:ae:1e:4e:aa:38:14:0c:38:5c:b6:7b:
5f:ee:a7:c0:9c:c5:90:b3:54:24:1f:e1:48:60:93:
a4:75:f3:03:25:44:32:d1:a5:33:86:ba:6f:0b:de:
b3:12:00:de:b2:9b:bd:96:b5:ec:3d:c7:2c:30:39:
7f:b7:e2:50:08:3c:c8:82:5a:6c:b5:e7:57:e8:27:
f6:2e:29:a3:6d:ab:14:2d:32:4d:87:0a:2a:86:16:
12:3a:21:65:ab:b6:4d:11:10:11:cc:12:62:95:85:
bc:49:1f:31:a9:27:ee:61:22:bc:dc:42:8f:c6:4e:
1b:20:de:5c:99:37:d8:a2:ff:c9:5e:c2:74:8d:b1:
6d:43:31:70:06:0c:75:b7:75:f7:1f:ac:ba:86:dd:
f7:83:d3:a6:ea:e1:75:ec:67:d5:b0:41:43:d8:cc:
13:bc:bd:9f:70:a2:f7:26:37:9b:d7:2e:05:a5:69:
b3:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:71:5A:95:73:C9:51:49:56:86:33:26:FB:C9:1E:97:31:26:52:E2
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/uXFalXPJUUlWhjMm-8kelzEmUuI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.41.251.0-31.41.252.255
31.41.254.0/24
45.87.126.0/24
45.95.29.0/24
45.128.125.0-45.128.128.255
83.138.54.0/24
88.151.8.0/24
94.154.190.0/24
176.116.15.0/24
176.126.96.0/24
193.28.178.0/24
193.187.105.0/24
194.59.187.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:e5:bf:e5:5a:60:c9:55:cc:e7:45:d8:77:af:fd:a3:2a:fe:
30:85:1b:09:a3:b6:c8:ef:0f:a4:4e:49:bf:aa:9e:d3:d9:64:
ed:d8:50:4c:48:d1:b5:f5:31:19:9f:b5:84:f0:ef:28:17:51:
62:3e:dc:a8:23:85:84:e0:31:9b:2c:b7:45:0e:6a:47:f8:34:
cf:fd:a7:33:de:19:0d:56:6a:b2:fd:1f:a3:e9:87:d0:f4:d9:
94:44:c9:86:4d:21:a9:f2:37:40:bc:24:c3:7f:06:01:74:17:
34:19:98:6e:4e:09:c0:32:8d:09:be:a1:86:b9:8b:86:c6:34:
be:e2:c9:91:5f:f6:57:8f:21:1e:a9:a5:68:d2:88:6f:5b:e6:
49:c4:12:41:ed:49:8e:e2:2b:47:39:db:36:98:4b:05:c4:ef:
ff:e9:3d:a3:a7:10:cd:d9:d8:a4:6e:2e:9b:11:56:fc:dc:d8:
78:7d:a0:61:8f:6a:d3:c4:02:42:91:ac:d2:d4:3d:0b:88:13:
39:3d:bc:01:72:8d:be:66:c1:2a:76:7a:50:ec:dd:10:42:93:
3e:31:04:43:90:90:3f:0a:a1:24:01:1b:c4:b6:81:83:8f:46:
86:d3:d5:ad:09:47:2a:e9:0f:b0:e5:88:96:09:0b:4a:7f:d3:
f6:98:c8:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 21 22:37:05 2024 by rpki-client on console-fra.rpki-client.org