Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/iurzewGfO6bDtqkFR1gn4iNPd7k.roa
File: iurzewGfO6bDtqkFR1gn4iNPd7k.roa (raw, json)
Hash identifier: Q6kYZdmfoh4tA9urDIRHO9C8dt3tNdD3MmwdZf5LRCI=
Subject key identifier: 8A:EA:F3:7B:01:9F:3B:A6:C3:B6:A9:05:47:58:27:E2:23:4F:77:B9
Certificate issuer: /CN=f4b9ea4d9d83a728dd41029e86af8a130d389ed4
Certificate serial: 01912D6959FA6CD432A8A411127A421CF4B0
Authority key identifier: F4:B9:EA:4D:9D:83:A7:28:DD:41:02:9E:86:AF:8A:13:0D:38:9E:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9LnqTZ2DpyjdQQKehq-KEw04ntQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/iurzewGfO6bDtqkFR1gn4iNPd7k.roa
Signing time: Wed 07 Aug 2024 15:16:04 +0000
ROA not before: Wed 07 Aug 2024 15:16:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62206
IP address blocks: 31.133.80.0/22 maxlen: 24
31.133.80.0/24 maxlen: 24
31.133.81.0/24 maxlen: 24
31.133.82.0/24 maxlen: 24
31.133.83.0/24 maxlen: 24
31.133.84.0/22 maxlen: 22
31.133.88.0/24 maxlen: 24
31.133.89.0/24 maxlen: 24
31.133.90.0/24 maxlen: 24
31.133.91.0/24 maxlen: 24
176.103.224.0/22 maxlen: 22
176.103.232.0/22 maxlen: 22
176.103.236.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 10 Oct 2024 17:23:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:2d:69:59:fa:6c:d4:32:a8:a4:11:12:7a:42:1c:f4:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4b9ea4d9d83a728dd41029e86af8a130d389ed4
Validity
Not Before: Aug 7 15:16:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8aeaf37b019f3ba6c3b6a905475827e2234f77b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ca:1d:92:de:92:cd:e0:9c:2e:31:ae:5c:03:
c0:fa:eb:9e:97:8a:c3:86:59:10:1e:97:01:2b:5e:
b5:1a:b3:b7:06:70:4f:04:29:db:aa:e4:85:ca:dc:
73:51:d4:fe:75:92:e0:44:c7:9e:6f:02:64:e5:bf:
c6:80:37:a8:63:73:9b:ca:2d:e2:ee:1d:b4:fc:8a:
30:34:7b:cb:a2:f8:eb:eb:c7:c3:9c:c1:e9:b3:0d:
3e:d8:38:80:e1:f6:33:e0:8a:26:b5:e1:17:8a:4a:
2e:7a:54:b3:2d:c5:8d:58:dd:c4:d4:fa:3c:a0:76:
76:0a:ad:01:9b:a3:ba:ca:13:44:e5:9c:88:5b:f1:
7c:49:60:fb:37:93:b5:18:80:5d:e4:f2:45:65:b3:
58:00:dd:a9:da:c4:e5:cc:bc:78:ef:8e:aa:ae:35:
b5:8c:6e:01:72:c8:cc:47:4a:87:17:3d:5c:74:02:
eb:7f:10:cf:8a:01:74:15:98:dd:9e:79:11:8c:4f:
5e:d5:fb:17:fc:f7:73:3e:e6:da:5f:54:f2:b0:3a:
c1:1d:bd:b4:5c:5d:0b:40:e5:64:21:ee:59:12:5e:
c5:da:d0:f3:e5:dd:97:bc:dd:87:fb:3e:63:36:ce:
31:4c:da:bf:d4:b8:ab:31:8f:f2:3b:c5:7b:6f:75:
02:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:EA:F3:7B:01:9F:3B:A6:C3:B6:A9:05:47:58:27:E2:23:4F:77:B9
X509v3 Authority Key Identifier:
keyid:F4:B9:EA:4D:9D:83:A7:28:DD:41:02:9E:86:AF:8A:13:0D:38:9E:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9LnqTZ2DpyjdQQKehq-KEw04ntQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/iurzewGfO6bDtqkFR1gn4iNPd7k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/9LnqTZ2DpyjdQQKehq-KEw04ntQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.133.80.0-31.133.91.255
176.103.224.0/22
176.103.232.0/21
Signature Algorithm: sha256WithRSAEncryption
07:d1:a8:d6:61:07:a5:13:58:df:09:da:d3:d7:c5:4d:88:1f:
db:f3:50:8b:ac:02:e5:be:d9:66:cd:63:1e:f6:6d:70:02:7d:
7b:a2:93:35:6a:70:05:dc:9f:5b:fe:fb:dc:6e:9c:b3:d8:e5:
d2:bf:3a:e0:25:6b:e1:f0:46:ed:7b:73:ca:56:21:8d:6a:fb:
ee:c6:5f:7c:54:f8:c5:d6:c7:1e:05:c2:b6:9e:75:0e:f9:40:
6b:c5:70:ea:be:cf:29:b3:68:bb:6b:c7:01:79:46:d9:34:2e:
91:65:cd:9b:89:1c:fb:df:3d:a5:5d:34:16:c7:03:a5:80:58:
56:31:56:18:7b:bf:fd:84:e2:11:3d:fe:a4:56:2a:69:d5:a5:
b6:c0:b3:e9:0b:8e:7a:16:5b:36:17:5b:3a:81:dd:d5:94:c8:
da:4d:82:65:a0:78:0e:6e:52:41:cc:20:e9:65:9d:88:8d:09:
6a:38:65:12:f0:b8:7a:ca:7b:3e:2b:8b:04:1a:ee:28:e5:fd:
93:44:2d:6a:b8:ee:f9:a1:c3:4f:2a:79:c2:e5:c1:f3:c2:a8:
9d:f8:32:f4:e9:81:5f:7f:13:e1:0e:9f:26:20:de:12:4f:80:
2a:c2:ff:6a:21:ba:89:94:88:5a:ae:d0:43:10:e9:57:e7:86:
d3:fb:99:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 10 21:18:42 2024 by rpki-client on console-fra.rpki-client.org