Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/FkOBWeduK3ncbhzHTeFAVyuTihk.roa
File: FkOBWeduK3ncbhzHTeFAVyuTihk.roa (raw, json)
Hash identifier: SQ70d3IsGXFpN6Q3pY5Fs81KvJBDMwcf9gLR6MUoGJ4=
Subject key identifier: 16:43:81:59:E7:6E:2B:79:DC:6E:1C:C7:4D:E1:40:57:2B:93:8A:19
Certificate issuer: /CN=adac830ccaa74783dd961fab241a228d7cc6f808
Certificate serial: 01874AEB1A08F910A44C821CCBFD90C3D509
Authority key identifier: AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/FkOBWeduK3ncbhzHTeFAVyuTihk.roa
Signing time: Tue 04 Apr 2023 06:18:54 +0000
ROA not before: Tue 04 Apr 2023 06:18:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15774
IP address blocks: 37.61.176.0/21 maxlen: 32
31.216.170.0/24 maxlen: 24
46.166.65.0/24 maxlen: 24
109.233.172.0/22 maxlen: 32
185.43.86.0/23 maxlen: 32
83.234.240.0/21 maxlen: 21
62.33.122.0/23 maxlen: 32
83.234.10.0/24 maxlen: 24
81.18.128.0/19 maxlen: 32
89.186.234.0/24 maxlen: 24
46.226.240.0/21 maxlen: 32
46.166.80.0/23 maxlen: 24
46.166.80.0/24 maxlen: 24
46.166.79.0/24 maxlen: 24
46.166.83.0/24 maxlen: 24
46.166.82.0/24 maxlen: 24
46.166.81.0/24 maxlen: 24
46.166.84.0/22 maxlen: 23
46.166.88.0/23 maxlen: 23
46.166.91.0/24 maxlen: 24
46.166.95.0/24 maxlen: 24
46.166.94.0/24 maxlen: 24
46.166.93.0/24 maxlen: 24
81.4.192.0/18 maxlen: 32
46.20.64.0/20 maxlen: 32
83.234.54.0/24 maxlen: 32
185.6.236.0/22 maxlen: 32
83.234.136.0/23 maxlen: 23
185.61.24.0/22 maxlen: 32
83.234.168.0/23 maxlen: 32
91.204.96.0/22 maxlen: 32
46.182.128.0/22 maxlen: 22
46.182.131.0/24 maxlen: 24
2a03:3700:4000::/36 maxlen: 128
2a03:3700:1000::/36 maxlen: 128
2a03:3700::/36 maxlen: 128
2a03:3700:5000::/36 maxlen: 128
2a03:3700:2000::/36 maxlen: 128
2a03:3700:3000::/36 maxlen: 128
2a03:3700:6000::/36 maxlen: 128
2a03:3700:7000::/36 maxlen: 128
Validation: Failed, certificate revoked on Tue 11 Apr 2023 06:06:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:4a:eb:1a:08:f9:10:a4:4c:82:1c:cb:fd:90:c3:d5:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adac830ccaa74783dd961fab241a228d7cc6f808
Validity
Not Before: Apr 4 06:18:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=16438159e76e2b79dc6e1cc74de140572b938a19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:f2:15:c5:c7:27:f5:11:51:84:8b:c6:07:74:
a2:e1:69:9d:a1:2b:79:41:41:9e:6d:c9:43:61:c9:
22:66:34:d7:6d:95:8c:3e:dd:24:61:5a:8f:34:92:
70:c3:b1:c6:e2:6c:41:b7:98:e0:16:0b:5f:c9:fc:
7d:e8:8e:db:8c:fc:f0:50:29:72:90:cb:68:ec:e4:
2b:e4:a0:d6:f1:d4:15:e6:53:c4:f7:a5:80:69:c7:
56:4c:16:96:70:2d:e7:83:41:f1:62:ef:79:37:76:
99:86:bd:85:61:cb:74:18:f8:70:eb:bf:48:c1:03:
b8:c1:1b:c2:fb:55:63:7e:5b:9c:95:bc:a2:69:ef:
d6:68:66:83:3c:c5:51:aa:c5:e9:62:8e:8c:a4:64:
96:9c:c7:94:3c:24:ad:88:bb:02:79:f4:8b:00:d6:
6c:af:83:7f:e9:a5:e5:e1:e1:bf:66:36:e9:c7:af:
53:48:34:d0:11:2d:93:75:d8:df:3f:ae:d6:e4:d4:
ea:ed:fa:d4:62:c0:27:63:d1:2a:fb:c1:f6:45:81:
84:26:f2:a1:59:4c:43:74:55:11:fe:9f:7f:01:c5:
97:9d:d7:a6:82:48:31:38:a3:b4:7e:f8:2f:c4:88:
57:ee:11:58:9c:c0:21:99:97:07:ff:24:80:f8:de:
0b:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:43:81:59:E7:6E:2B:79:DC:6E:1C:C7:4D:E1:40:57:2B:93:8A:19
X509v3 Authority Key Identifier:
keyid:AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/FkOBWeduK3ncbhzHTeFAVyuTihk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.216.170.0/24
37.61.176.0/21
46.20.64.0/20
46.166.65.0/24
46.166.79.0-46.166.89.255
46.166.91.0/24
46.166.93.0-46.166.95.255
46.182.128.0/22
46.226.240.0/21
62.33.122.0/23
81.4.192.0/18
81.18.128.0/19
83.234.10.0/24
83.234.54.0/24
83.234.136.0/23
83.234.168.0/23
83.234.240.0/21
89.186.234.0/24
91.204.96.0/22
109.233.172.0/22
185.6.236.0/22
185.43.86.0/23
185.61.24.0/22
IPv6:
2a03:3700::/33
Signature Algorithm: sha256WithRSAEncryption
7e:e1:ae:12:71:67:23:7b:4c:42:b2:c4:36:53:5a:9b:5a:9c:
1b:b2:99:ba:d7:36:dd:80:33:20:bb:97:18:1d:b0:6a:fc:ff:
71:65:5e:ae:55:ff:c7:2b:50:12:a8:1b:f5:cd:f9:29:50:ab:
62:51:78:8e:72:11:b4:8f:bf:b4:83:84:c2:e6:da:bc:04:b5:
b2:44:c0:ed:2b:21:e0:13:39:85:52:16:b0:5e:b4:d9:d9:ab:
28:c0:1d:8a:59:49:fc:97:22:e6:c8:84:bc:fb:03:bf:54:31:
28:e2:9d:68:05:fd:9e:53:2b:4e:72:9c:dd:6d:c8:37:d7:10:
6b:e4:5f:1d:eb:7b:f3:0e:a0:5e:03:9c:13:50:f5:c9:1e:c9:
ec:ca:9b:34:53:17:bc:1f:c4:b6:56:b5:ff:65:3b:fa:5e:c9:
36:10:33:50:90:92:83:6b:e7:37:2f:9d:b7:7d:89:59:9e:f6:
33:7d:5b:b8:ba:06:7b:08:3d:1f:1d:79:35:24:e6:fa:73:4d:
24:b6:1c:b4:5c:27:65:82:6f:08:ba:ef:87:b1:b4:9d:c9:67:
ac:89:19:69:07:8d:eb:b8:dd:ad:3a:ee:d8:b0:ba:f3:7e:de:
95:7b:85:01:59:62:36:f2:2a:14:0d:3b:79:31:b3:ae:69:60:
ba:50:d6:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:51 2024 by rpki-client on console-ams.rpki-client.org