Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/214063-f88f-4958-ae52-d9b533f7fbc3/1/hRByHjtCOxQNoruWVii0t0-JsX4.roa
File: hRByHjtCOxQNoruWVii0t0-JsX4.roa (raw, json)
Hash identifier: MyxHOGZJoWbObsT58eb36v6XLYlCURuA7r5fAIkxz2w=
Subject key identifier: 85:10:72:1E:3B:42:3B:14:0D:A2:BB:96:56:28:B4:B7:4F:89:B1:7E
Certificate issuer: /CN=29a9964e0cd35fb36757e5653ffa7626ac5deee8
Certificate serial: 018CC4246E0803DBE075C09693E7B589B650
Authority key identifier: 29:A9:96:4E:0C:D3:5F:B3:67:57:E5:65:3F:FA:76:26:AC:5D:EE:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KamWTgzTX7NnV-VlP_p2Jqxd7ug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/214063-f88f-4958-ae52-d9b533f7fbc3/1/hRByHjtCOxQNoruWVii0t0-JsX4.roa
Signing time: Mon 01 Jan 2024 08:29:30 +0000
ROA not before: Mon 01 Jan 2024 08:29:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25144
IP address blocks: 31.223.128.0/19 maxlen: 19
31.223.128.0/21 maxlen: 21
31.223.136.0/21 maxlen: 21
31.223.144.0/21 maxlen: 21
217.24.128.0/20 maxlen: 20
94.250.64.0/18 maxlen: 18
46.239.0.0/18 maxlen: 18
31.223.152.0/21 maxlen: 21
185.35.156.0/22 maxlen: 22
81.93.66.0/24 maxlen: 24
81.93.67.0/24 maxlen: 24
81.93.69.0/24 maxlen: 24
81.93.73.0/24 maxlen: 24
81.93.84.0/24 maxlen: 24
89.111.225.0/24 maxlen: 24
89.111.224.0/19 maxlen: 19
89.111.226.0/24 maxlen: 24
81.93.86.0/24 maxlen: 24
81.93.91.0/24 maxlen: 24
89.111.227.0/24 maxlen: 24
94.250.0.0/18 maxlen: 18
89.111.231.0/24 maxlen: 24
81.93.92.0/24 maxlen: 24
89.111.235.0/24 maxlen: 24
89.111.236.0/24 maxlen: 24
89.111.240.0/24 maxlen: 24
89.111.244.0/22 maxlen: 22
89.111.248.0/22 maxlen: 22
109.165.128.0/17 maxlen: 17
62.101.144.0/20 maxlen: 20
89.111.192.0/24 maxlen: 24
89.111.192.0/19 maxlen: 19
81.93.64.0/19 maxlen: 19
89.111.192.0/18 maxlen: 18
2a00:cb00::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 01 Mar 2024 07:45:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:6e:08:03:db:e0:75:c0:96:93:e7:b5:89:b6:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29a9964e0cd35fb36757e5653ffa7626ac5deee8
Validity
Not Before: Jan 1 08:29:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8510721e3b423b140da2bb965628b4b74f89b17e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:fd:32:4f:a7:dc:87:bd:47:e0:10:d8:c0:76:
d6:bb:f3:1a:bf:0f:21:1e:1c:ee:da:76:ac:fb:23:
a6:bf:78:de:7a:80:b4:26:80:3a:f9:cc:c6:51:09:
be:b3:90:1a:ff:3a:37:ad:b5:1f:03:f1:a6:56:20:
35:f6:c8:32:3a:74:9d:45:4b:49:ad:48:db:0f:63:
b3:0c:00:26:cf:eb:b9:c1:b9:84:82:76:26:34:32:
27:48:b9:98:fd:ac:19:f0:a9:8a:21:bf:b9:e5:13:
1b:0f:2b:b5:c2:84:f1:fa:e7:3a:fc:5c:67:09:b4:
84:50:d8:9b:79:24:c3:c6:d7:e7:d5:ef:0d:0e:ff:
d4:bd:b4:5b:0a:09:78:93:1f:96:e0:4a:d8:f9:c0:
87:d5:6a:59:6e:17:99:90:cb:50:49:7b:12:cf:10:
9a:2a:a7:40:ed:61:43:f7:93:b2:3f:87:ea:d8:0e:
37:b3:f7:8d:a7:02:f2:29:05:f5:b6:0e:11:b2:8b:
15:38:e0:51:84:2d:fc:7c:8b:45:bc:1e:51:6b:4a:
34:3c:10:d6:ec:b4:0d:67:bf:c5:e9:59:67:1c:20:
fc:fc:3a:8f:a3:df:86:72:52:fa:98:d5:14:2e:7c:
64:52:62:39:a2:c4:57:c6:21:da:ae:de:8e:8f:d2:
48:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:10:72:1E:3B:42:3B:14:0D:A2:BB:96:56:28:B4:B7:4F:89:B1:7E
X509v3 Authority Key Identifier:
keyid:29:A9:96:4E:0C:D3:5F:B3:67:57:E5:65:3F:FA:76:26:AC:5D:EE:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KamWTgzTX7NnV-VlP_p2Jqxd7ug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/214063-f88f-4958-ae52-d9b533f7fbc3/1/hRByHjtCOxQNoruWVii0t0-JsX4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/214063-f88f-4958-ae52-d9b533f7fbc3/1/KamWTgzTX7NnV-VlP_p2Jqxd7ug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.223.128.0/19
46.239.0.0/18
62.101.144.0/20
81.93.64.0/19
89.111.192.0/18
94.250.0.0/17
109.165.128.0/17
185.35.156.0/22
217.24.128.0/20
IPv6:
2a00:cb00::/32
Signature Algorithm: sha256WithRSAEncryption
49:18:01:10:0e:a4:f9:85:3b:cb:ce:41:be:8b:ab:fb:07:1f:
fa:d1:85:08:8e:a5:3f:66:e9:2c:8c:7b:c8:d9:86:5c:e0:fc:
99:a6:89:2c:f0:5a:ae:f9:44:42:72:96:a9:49:f7:e5:7b:b9:
95:32:e2:02:1b:ba:c7:e7:6c:30:0f:3d:c4:16:43:82:21:d1:
0c:ed:f3:a9:07:16:ef:ad:af:94:27:12:1e:23:70:37:cd:29:
be:df:1b:1f:19:c0:f1:58:bf:81:f8:63:13:ef:ef:31:bb:1c:
ca:f6:89:06:0c:9f:eb:31:43:23:34:33:b0:70:4f:8e:6d:1f:
ba:70:de:6b:a6:0b:7b:0b:6b:d9:73:63:6c:bc:46:82:e5:54:
51:ed:5c:82:42:fd:4b:1b:0b:d9:e1:3b:46:c2:56:c7:45:71:
6a:1a:b6:76:4d:16:48:bf:38:2e:5c:8a:8a:eb:fe:89:0c:84:
24:f7:85:df:b1:f0:53:1f:97:b8:f0:6c:f4:97:9c:2a:83:d3:
0f:0e:46:41:38:9f:84:1b:a6:3a:12:b6:9c:59:a7:33:b2:97:
bc:9b:e7:e0:4a:5a:a0:65:6b:fe:e7:4a:2d:66:39:85:c4:2d:
b8:fe:2e:ac:e2:f4:2a:4a:43:3d:66:ad:3c:08:e1:11:e1:d5:
32:bd:09:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:20:14 2025 by rpki-client