Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/36ba9d-33af-4cf3-a27d-fa718ac9d758/1/4_zsK-wE_ShdKlx3OoS02WKKS0U.roa
File: 4_zsK-wE_ShdKlx3OoS02WKKS0U.roa (raw, json)
Hash identifier: uNq5gcaIHY/nuo93m+bkQjQkF4Qv89mwJRUpuGx8umA=
Subject key identifier: E3:FC:EC:2B:EC:04:FD:28:5D:2A:5C:77:3A:84:B4:D9:62:8A:4B:45
Certificate issuer: /CN=b409168fdb52e9b7d1a7a5e8f518edfbc2c3f9af
Certificate serial: 018595C2AD6FC5C9613190FFE3F74E9B7F6C
Authority key identifier: B4:09:16:8F:DB:52:E9:B7:D1:A7:A5:E8:F5:18:ED:FB:C2:C3:F9:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tAkWj9tS6bfRp6Xo9Rjt-8LD-a8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/36ba9d-33af-4cf3-a27d-fa718ac9d758/1/4_zsK-wE_ShdKlx3OoS02WKKS0U.roa
Signing time: Mon 09 Jan 2023 09:00:41 +0000
ROA not before: Mon 09 Jan 2023 09:00:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41421
IP address blocks: 91.132.112.0/23 maxlen: 23
185.194.212.0/22 maxlen: 24
188.65.40.0/21 maxlen: 21
37.157.200.0/21 maxlen: 21
193.91.4.0/24 maxlen: 24
193.91.12.0/23 maxlen: 23
185.170.65.0/24 maxlen: 24
31.214.137.0/24 maxlen: 24
93.115.39.0/24 maxlen: 24
89.250.192.0/20 maxlen: 20
31.214.138.0/24 maxlen: 24
194.5.180.0/24 maxlen: 24
31.214.140.0/24 maxlen: 24
31.214.145.0/24 maxlen: 24
86.106.22.0/24 maxlen: 24
185.53.132.0/22 maxlen: 24
159.253.240.0/21 maxlen: 21
185.128.156.0/22 maxlen: 22
2a02:4c80::/32 maxlen: 32
2a01:b8e0::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 28 Feb 2023 09:09:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:95:c2:ad:6f:c5:c9:61:31:90:ff:e3:f7:4e:9b:7f:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b409168fdb52e9b7d1a7a5e8f518edfbc2c3f9af
Validity
Not Before: Jan 9 09:00:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e3fcec2bec04fd285d2a5c773a84b4d9628a4b45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:6a:a2:a2:08:b4:9b:5e:35:09:31:e1:df:9a:
7c:7a:0d:2e:dc:48:b9:0d:39:8f:68:15:4a:c5:c4:
fb:3a:a2:49:43:9a:89:0d:89:be:f6:ef:9c:8f:56:
1c:a4:a8:b3:e5:88:d4:2d:9d:06:3e:23:3a:ab:bf:
70:fb:73:c5:84:8c:90:93:38:3c:ea:9f:63:51:b7:
7f:07:8f:7b:5a:91:84:d5:2c:0e:73:e7:3b:fe:d2:
f2:38:9e:61:15:1d:05:dd:68:3f:01:22:23:d6:3a:
d8:f1:a3:07:70:9c:be:28:51:de:c5:ff:f2:89:49:
59:23:59:e7:16:af:bf:93:24:1d:8f:8c:ee:fd:59:
6c:c9:ef:ff:27:6f:74:a8:c1:83:f0:cd:fd:6e:5f:
ab:9c:ee:c3:70:0c:37:16:05:94:7b:c3:57:af:df:
f5:05:1e:0f:58:30:15:1a:c3:ee:d0:b5:ed:2f:91:
c6:f2:30:44:69:42:c4:af:b9:94:71:88:e1:79:7a:
ac:54:0e:e0:6d:87:4c:f8:5b:ae:c0:8d:8a:f8:33:
b5:27:32:cc:62:8b:86:25:96:a7:e3:c6:6e:55:a5:
98:03:76:7c:fa:95:5f:53:cc:13:c2:2c:98:9e:9a:
43:86:8c:48:02:34:c4:9a:30:a5:a1:1e:37:bc:7d:
f7:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:FC:EC:2B:EC:04:FD:28:5D:2A:5C:77:3A:84:B4:D9:62:8A:4B:45
X509v3 Authority Key Identifier:
keyid:B4:09:16:8F:DB:52:E9:B7:D1:A7:A5:E8:F5:18:ED:FB:C2:C3:F9:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tAkWj9tS6bfRp6Xo9Rjt-8LD-a8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/36ba9d-33af-4cf3-a27d-fa718ac9d758/1/4_zsK-wE_ShdKlx3OoS02WKKS0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/36ba9d-33af-4cf3-a27d-fa718ac9d758/1/tAkWj9tS6bfRp6Xo9Rjt-8LD-a8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.214.137.0-31.214.138.255
31.214.140.0/24
31.214.145.0/24
37.157.200.0/21
86.106.22.0/24
89.250.192.0/20
91.132.112.0/23
93.115.39.0/24
159.253.240.0/21
185.53.132.0/22
185.128.156.0/22
185.170.65.0/24
185.194.212.0/22
188.65.40.0/21
193.91.4.0/24
193.91.12.0/23
194.5.180.0/24
IPv6:
2a01:b8e0::/32
2a02:4c80::/32
Signature Algorithm: sha256WithRSAEncryption
5d:1e:97:a1:d7:cd:97:43:dd:ca:ab:c2:31:50:84:21:f0:d3:
cd:e9:c6:a3:87:63:33:af:85:e3:bd:aa:c2:6d:4d:fb:ef:27:
41:4f:9e:3d:3f:32:f0:f9:df:66:87:ce:dc:9d:5d:a3:c8:e1:
de:44:79:e3:ee:b3:18:60:b3:1a:64:2b:81:c1:90:8d:be:7f:
cd:13:04:47:33:7f:30:55:93:1f:6f:6e:60:8e:68:c6:30:d4:
72:82:46:f3:2a:74:57:7d:c3:6b:ab:e0:e7:0e:f2:25:46:10:
44:af:c7:62:95:0d:00:2f:ce:e7:34:99:97:ff:22:71:c8:50:
06:8c:cc:ee:31:f2:f8:4f:05:ee:4f:d1:37:1b:ad:ec:34:4f:
61:f5:d9:ad:b4:f7:dd:9f:8c:eb:e4:fe:50:97:15:9b:fa:14:
8a:f9:57:d4:3d:98:69:47:f0:4c:a2:3c:f9:3c:ce:b7:39:4c:
92:05:80:21:61:7a:52:2e:03:39:fc:1f:d8:e6:2a:d4:87:ee:
c3:1f:aa:10:c2:e7:b1:37:34:78:bd:c4:67:ac:ea:bf:1e:d4:
63:5a:6a:14:e1:35:1a:fb:e5:81:2b:d4:34:7f:aa:15:b2:5f:
c7:e3:d0:d2:c0:c5:c7:05:3f:9e:92:36:80:f7:f9:e5:7b:79:
05:8e:34:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:14 2024 by rpki-client on console-fra.rpki-client.org