Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/Xyw4sDHCuIso8TAPOOD_VYhu9Zs.roa
File: Xyw4sDHCuIso8TAPOOD_VYhu9Zs.roa (raw, json)
Hash identifier: S4oaknxAKB++vqg8exBm3wu+AgyHNGkUgEgKIUeT2qQ=
Subject key identifier: 5F:2C:38:B0:31:C2:B8:8B:28:F1:30:0F:38:E0:FF:55:88:6E:F5:9B
Certificate issuer: /CN=7c3d8aa4383504a31aff4b006810a06bcf0305ae
Certificate serial: 01856FA6EEDC26B2CC88D75FAA4127958D1E
Authority key identifier: 7C:3D:8A:A4:38:35:04:A3:1A:FF:4B:00:68:10:A0:6B:CF:03:05:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fD2KpDg1BKMa_0sAaBCga88DBa4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/Xyw4sDHCuIso8TAPOOD_VYhu9Zs.roa
Signing time: Sun 01 Jan 2023 23:24:49 +0000
ROA not before: Sun 01 Jan 2023 23:24:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30886
IP address blocks: 31.43.64.0/24 maxlen: 24
31.43.64.0/19 maxlen: 19
31.43.71.0/24 maxlen: 24
31.43.70.0/24 maxlen: 24
31.43.68.0/24 maxlen: 24
31.43.67.0/24 maxlen: 24
31.43.69.0/24 maxlen: 24
31.43.66.0/24 maxlen: 24
31.43.65.0/24 maxlen: 24
31.43.78.0/24 maxlen: 24
31.43.77.0/24 maxlen: 24
31.43.75.0/24 maxlen: 24
31.43.74.0/24 maxlen: 24
31.43.76.0/24 maxlen: 24
31.43.73.0/24 maxlen: 24
31.43.72.0/24 maxlen: 24
31.43.85.0/24 maxlen: 24
31.43.84.0/24 maxlen: 24
31.43.82.0/24 maxlen: 24
31.43.81.0/24 maxlen: 24
31.43.83.0/24 maxlen: 24
31.43.80.0/24 maxlen: 24
31.43.79.0/24 maxlen: 24
31.43.87.0/24 maxlen: 24
31.43.86.0/24 maxlen: 24
31.43.91.0/24 maxlen: 24
31.43.88.0/24 maxlen: 24
31.43.90.0/24 maxlen: 24
31.43.89.0/24 maxlen: 24
193.84.22.0/24 maxlen: 24
31.43.95.0/24 maxlen: 24
31.43.92.0/24 maxlen: 24
31.43.94.0/24 maxlen: 24
31.43.93.0/24 maxlen: 24
94.231.64.0/24 maxlen: 24
94.231.64.0/20 maxlen: 20
94.231.69.0/24 maxlen: 24
94.231.71.0/24 maxlen: 24
94.231.70.0/24 maxlen: 24
94.231.66.0/24 maxlen: 24
94.231.65.0/24 maxlen: 24
94.231.68.0/24 maxlen: 24
94.231.67.0/24 maxlen: 24
94.231.76.0/24 maxlen: 24
94.231.78.0/24 maxlen: 24
94.231.73.0/24 maxlen: 24
94.231.72.0/24 maxlen: 24
94.231.75.0/24 maxlen: 24
94.231.74.0/24 maxlen: 24
94.231.79.0/24 maxlen: 24
91.196.55.0/24 maxlen: 24
91.196.54.0/24 maxlen: 24
91.196.52.0/24 maxlen: 24
91.196.53.0/24 maxlen: 24
91.196.52.0/22 maxlen: 22
193.27.209.0/24 maxlen: 24
193.27.208.0/24 maxlen: 24
193.27.208.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:a6:ee:dc:26:b2:cc:88:d7:5f:aa:41:27:95:8d:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3d8aa4383504a31aff4b006810a06bcf0305ae
Validity
Not Before: Jan 1 23:24:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5f2c38b031c2b88b28f1300f38e0ff55886ef59b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:08:7e:03:54:d1:f0:e0:ce:93:cc:0a:71:f5:
e3:7c:c1:13:ab:e2:14:ea:a3:b1:90:ec:58:4f:61:
36:0c:dc:3a:69:2e:c4:2a:af:7a:66:85:26:8b:11:
04:de:2b:93:10:79:9b:dc:01:2d:ce:13:44:fa:64:
7f:0c:5a:b9:ba:5f:06:01:98:dd:a3:88:bf:8f:31:
1c:e4:b7:0a:2b:1d:1b:b2:70:f8:48:47:35:08:f7:
3f:80:fc:8e:ac:af:ef:ea:e6:f2:54:f9:c8:de:93:
09:78:6b:9e:45:6d:26:d3:b4:f7:11:0c:41:bf:ae:
6c:48:b8:e1:7b:d8:9e:83:0c:a6:dc:af:50:1d:97:
2f:bf:63:95:e6:18:e7:6a:04:eb:7e:bb:79:93:9d:
5e:19:a3:48:28:b4:fd:40:d9:13:d1:73:cf:ba:8c:
39:10:4d:ab:c8:1f:09:0a:cd:9e:4c:3a:9d:d2:24:
0d:56:47:2b:d7:af:ea:f2:3e:23:fb:be:09:0f:80:
de:db:bd:f4:77:f0:5c:05:a5:9f:78:54:97:52:18:
10:87:4c:28:20:a8:81:9a:19:14:ac:10:d9:e0:1a:
3d:6e:47:bb:49:d3:e5:e0:c7:b3:06:29:4b:69:7f:
b9:86:ea:97:48:6d:a3:38:2e:35:63:c7:90:50:22:
9c:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:2C:38:B0:31:C2:B8:8B:28:F1:30:0F:38:E0:FF:55:88:6E:F5:9B
X509v3 Authority Key Identifier:
keyid:7C:3D:8A:A4:38:35:04:A3:1A:FF:4B:00:68:10:A0:6B:CF:03:05:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fD2KpDg1BKMa_0sAaBCga88DBa4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/Xyw4sDHCuIso8TAPOOD_VYhu9Zs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.43.64.0/19
91.196.52.0/22
94.231.64.0/20
193.27.208.0/23
193.84.22.0/24
Signature Algorithm: sha256WithRSAEncryption
98:f3:24:66:f5:c2:a4:45:a9:76:18:2d:0c:97:3d:5a:8a:ae:
3e:18:18:1a:6c:5b:68:18:6e:ac:95:6c:77:c3:3c:1f:36:94:
f4:e6:b6:68:04:32:be:c1:81:13:32:8f:f9:fb:46:b2:94:eb:
a0:c0:ff:a7:36:55:c9:f0:8e:a3:c1:30:4c:ea:e7:01:3a:a7:
5e:07:62:be:d6:69:d1:78:90:ac:d3:4a:9f:37:77:f9:68:97:
b3:fd:14:9e:69:51:e7:24:0f:d7:57:01:e3:77:92:69:60:17:
a8:4d:52:a5:e9:9a:49:60:05:a6:cc:f9:1b:1a:9c:ef:87:25:
7b:8e:fd:4b:88:c6:ab:bc:a7:38:5d:ae:57:87:21:b8:c0:bb:
9a:f8:05:1b:bf:f4:32:c8:76:cb:fb:43:30:89:1c:a6:8f:1b:
22:7e:8a:c2:df:eb:5f:f0:3c:d0:fb:4a:02:d8:a6:bd:95:42:
97:a1:32:88:75:a7:49:ab:1d:e0:de:3c:87:a9:86:64:59:ea:
6c:3e:7d:0d:36:04:f5:3e:c0:b9:3a:e4:c2:7b:bf:64:ed:09:
35:53:ee:98:49:0b:3c:18:69:dc:1f:2f:af:47:4f:c1:bb:09:
bc:3e:cf:22:b7:d2:46:9c:a3:4d:23:ca:51:41:96:4f:0d:5b:
55:c3:fb:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:45 2024 by rpki-client on console-fra.rpki-client.org