Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/0DdC3qoJioG3Kva84rZqHaJ3XEw.roa
File: 0DdC3qoJioG3Kva84rZqHaJ3XEw.roa (raw, json)
Hash identifier: JxqXXnCqz1W1HFYq4XZwLwv/6JJ1B+s+x/6dhZjbyyc=
Subject key identifier: D0:37:42:DE:AA:09:8A:81:B7:2A:F6:BC:E2:B6:6A:1D:A2:77:5C:4C
Certificate issuer: /CN=adf491488a7cd8448a420945871c0b99672dc66e
Certificate serial: 018D7D5C4646DB01B5F0204B7F0A8FFAB622
Authority key identifier: AD:F4:91:48:8A:7C:D8:44:8A:42:09:45:87:1C:0B:99:67:2D:C6:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rfSRSIp82ESKQglFhxwLmWctxm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/0DdC3qoJioG3Kva84rZqHaJ3XEw.roa
Signing time: Tue 06 Feb 2024 07:40:15 +0000
ROA not before: Tue 06 Feb 2024 07:40:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205647
IP address blocks: 31.56.0.0/18 maxlen: 18
31.56.64.0/19 maxlen: 19
31.56.96.0/20 maxlen: 20
31.56.116.0/24 maxlen: 24
31.58.236.0/22 maxlen: 22
31.58.240.0/20 maxlen: 20
31.59.12.0/22 maxlen: 22
85.15.48.0/24 maxlen: 24
85.15.49.0/24 maxlen: 24
94.182.0.0/18 maxlen: 18
94.182.8.0/23 maxlen: 23
94.182.12.0/23 maxlen: 23
94.182.41.0/24 maxlen: 24
94.182.56.0/22 maxlen: 22
94.182.60.0/22 maxlen: 22
94.182.64.0/18 maxlen: 18
94.182.64.0/20 maxlen: 20
94.182.72.0/21 maxlen: 21
94.182.80.0/20 maxlen: 20
94.182.82.0/24 maxlen: 24
94.182.96.0/20 maxlen: 20
94.182.97.192/28 maxlen: 28
94.182.112.0/20 maxlen: 20
94.182.114.0/23 maxlen: 23
94.182.116.0/22 maxlen: 22
94.182.120.0/21 maxlen: 21
94.182.128.0/18 maxlen: 18
94.182.128.0/20 maxlen: 20
94.182.144.0/20 maxlen: 20
94.182.160.0/20 maxlen: 20
94.182.176.0/20 maxlen: 20
94.182.192.0/18 maxlen: 18
94.182.204.0/22 maxlen: 22
94.182.204.0/24 maxlen: 24
94.182.205.0/24 maxlen: 24
94.182.206.0/24 maxlen: 24
94.182.207.0/24 maxlen: 24
94.182.217.0/24 maxlen: 24
94.182.222.0/23 maxlen: 23
94.182.226.0/24 maxlen: 24
94.182.228.0/22 maxlen: 22
94.182.232.0/23 maxlen: 23
94.182.234.0/23 maxlen: 23
94.182.240.0/23 maxlen: 23
94.182.244.0/23 maxlen: 23
94.182.248.0/23 maxlen: 23
94.183.0.0/18 maxlen: 18
94.183.64.0/18 maxlen: 18
94.183.128.0/18 maxlen: 18
94.183.192.0/18 maxlen: 18
151.240.80.0/21 maxlen: 21
151.240.168.0/22 maxlen: 22
151.240.192.0/21 maxlen: 21
151.240.240.0/21 maxlen: 21
151.241.224.0/21 maxlen: 21
151.242.0.0/21 maxlen: 21
151.242.8.0/22 maxlen: 22
151.244.48.0/22 maxlen: 22
151.244.52.0/22 maxlen: 22
151.244.56.0/21 maxlen: 21
151.244.64.0/21 maxlen: 21
151.244.72.0/22 maxlen: 22
151.244.76.0/22 maxlen: 22
151.244.80.0/21 maxlen: 21
151.244.88.0/21 maxlen: 21
151.244.96.0/23 maxlen: 23
151.244.98.0/23 maxlen: 23
151.244.100.0/23 maxlen: 23
151.244.102.0/23 maxlen: 23
151.244.104.0/23 maxlen: 23
151.244.106.0/23 maxlen: 23
151.244.108.0/23 maxlen: 23
151.244.110.0/23 maxlen: 23
151.244.112.0/23 maxlen: 23
151.244.114.0/23 maxlen: 23
151.244.116.0/23 maxlen: 23
151.244.118.0/23 maxlen: 23
151.244.120.0/23 maxlen: 23
151.244.122.0/23 maxlen: 23
151.244.124.0/23 maxlen: 23
151.244.126.0/23 maxlen: 23
151.244.128.0/22 maxlen: 22
151.244.132.0/22 maxlen: 22
151.244.136.0/22 maxlen: 22
151.244.140.0/22 maxlen: 22
151.244.144.0/22 maxlen: 22
151.244.148.0/22 maxlen: 22
151.244.152.0/22 maxlen: 22
151.244.156.0/22 maxlen: 22
151.244.160.0/22 maxlen: 22
151.244.164.0/22 maxlen: 22
151.244.168.0/22 maxlen: 22
151.244.172.0/22 maxlen: 22
151.244.176.0/22 maxlen: 22
151.244.180.0/22 maxlen: 22
151.244.184.0/22 maxlen: 22
151.244.188.0/22 maxlen: 22
151.244.192.0/22 maxlen: 22
151.244.196.0/22 maxlen: 22
151.244.200.0/22 maxlen: 22
151.244.204.0/22 maxlen: 22
151.244.208.0/22 maxlen: 22
151.244.212.0/22 maxlen: 22
151.244.216.0/23 maxlen: 23
151.244.218.0/23 maxlen: 23
151.244.220.0/23 maxlen: 23
151.244.222.0/23 maxlen: 23
151.244.224.0/23 maxlen: 23
151.244.226.0/23 maxlen: 23
151.247.0.0/20 maxlen: 20
151.247.16.0/22 maxlen: 22
151.247.214.0/23 maxlen: 23
151.247.216.0/21 maxlen: 21
151.247.224.0/22 maxlen: 22
151.247.228.0/22 maxlen: 22
151.247.232.0/22 maxlen: 22
151.247.236.0/24 maxlen: 24
151.247.237.0/24 maxlen: 24
151.247.238.0/23 maxlen: 23
151.247.240.0/24 maxlen: 24
151.247.241.0/24 maxlen: 24
151.247.248.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 19 Feb 2024 05:49:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7d:5c:46:46:db:01:b5:f0:20:4b:7f:0a:8f:fa:b6:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adf491488a7cd8448a420945871c0b99672dc66e
Validity
Not Before: Feb 6 07:40:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d03742deaa098a81b72af6bce2b66a1da2775c4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ec:94:2d:89:e6:8b:c3:34:11:4a:c0:f2:12:
5d:f3:3d:97:cc:62:32:5a:39:f9:30:12:bb:06:c9:
90:aa:ff:6f:e7:6f:46:f4:83:cc:36:ae:78:9c:d0:
48:60:c2:27:aa:a8:4c:4e:a4:11:93:d6:f0:0e:52:
9d:5a:7b:96:62:f4:b4:8e:42:c6:48:51:f8:34:22:
f9:a6:a8:a4:aa:7c:77:93:a0:7c:b6:98:ce:89:83:
27:00:8a:11:3e:a7:ed:ea:1c:0c:c2:7e:1a:49:d5:
78:f7:e7:70:0d:18:cc:9c:84:d6:8d:af:1e:f2:cc:
fa:b1:6c:f1:85:27:7b:c7:c0:bd:61:c6:4a:9a:f4:
c8:81:8a:21:91:d3:70:0c:02:b6:8d:70:2f:a4:92:
e0:bb:5a:62:b0:1a:22:c5:f2:b0:c9:37:4e:15:c8:
f4:15:0a:99:5e:ab:fd:df:0c:98:20:b9:30:ac:c4:
1f:66:3a:a1:e2:20:6f:ff:4a:c3:ed:dc:d6:32:ae:
2d:df:e4:5d:b8:2e:5a:64:69:bf:b8:d0:2f:f3:00:
2f:ea:32:47:d7:e5:fb:9c:4b:b1:fe:75:b2:7e:85:
3d:28:f8:dc:e5:da:e2:bf:09:03:0c:a5:bc:a7:ff:
d8:38:84:48:cf:db:c8:29:65:60:08:2b:6f:21:2c:
a9:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:37:42:DE:AA:09:8A:81:B7:2A:F6:BC:E2:B6:6A:1D:A2:77:5C:4C
X509v3 Authority Key Identifier:
keyid:AD:F4:91:48:8A:7C:D8:44:8A:42:09:45:87:1C:0B:99:67:2D:C6:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rfSRSIp82ESKQglFhxwLmWctxm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/0DdC3qoJioG3Kva84rZqHaJ3XEw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/rfSRSIp82ESKQglFhxwLmWctxm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.0.0-31.56.111.255
31.56.116.0/24
31.58.236.0-31.58.255.255
31.59.12.0/22
85.15.48.0/23
94.182.0.0/15
151.240.80.0/21
151.240.168.0/22
151.240.192.0/21
151.240.240.0/21
151.241.224.0/21
151.242.0.0-151.242.11.255
151.244.48.0-151.244.227.255
151.247.0.0-151.247.19.255
151.247.214.0-151.247.241.255
151.247.248.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:c7:8e:e3:ad:2f:b5:45:ac:69:b5:63:0b:69:ce:56:f1:c5:
cb:c8:1f:ab:59:03:01:45:f2:ae:f2:da:c4:26:f9:bf:57:07:
3a:73:98:00:6a:cc:d4:69:67:d0:fe:96:b6:75:19:57:6c:a1:
58:e4:fb:4e:71:ea:fd:a2:27:98:b0:35:6c:48:06:48:b9:7c:
93:61:2b:c2:5d:69:24:43:62:9a:19:e4:5b:4f:ec:a5:95:8a:
44:5e:52:c2:54:a8:08:d3:84:76:30:5c:1f:21:33:27:cc:c7:
b8:aa:ef:89:dc:b6:52:9c:ce:72:43:f4:3d:8d:1b:02:f1:47:
9b:d1:d1:35:96:01:7e:37:29:a6:aa:be:cc:0d:14:42:c2:10:
8e:6a:2b:49:84:01:d2:50:cb:a5:e7:20:24:dc:0a:7f:c5:0a:
77:91:47:a5:f1:b1:2c:04:c6:34:c2:2c:e2:35:a0:a9:b9:6f:
01:de:3d:59:97:2c:c6:61:e3:8c:b0:e7:0e:de:24:11:c1:e6:
53:a9:81:7d:cd:1b:7c:99:de:c7:63:a9:c6:24:b3:76:a4:74:
e2:68:81:f9:d6:a5:b7:7b:54:58:86:95:10:0c:71:9b:b0:7a:
5f:d4:ca:77:78:d8:e4:9d:9e:e7:54:2d:57:9b:5b:72:be:91:
79:12:01:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 19 09:33:02 2024 by rpki-client on console-ams.rpki-client.org