Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/nMwxJhBOBXXbD2GHMJyzhiTa9C4.roa
File: nMwxJhBOBXXbD2GHMJyzhiTa9C4.roa (raw, json)
Hash identifier: mnJXjsF2cusrHFfngDTiWU5Lcc03R9uzhmxCrzJVuaM=
Subject key identifier: 9C:CC:31:26:10:4E:05:75:DB:0F:61:87:30:9C:B3:86:24:DA:F4:2E
Certificate issuer: /CN=7c3d8aa4383504a31aff4b006810a06bcf0305ae
Certificate serial: 018CCA2A109048ACD826472E4693956BFE5B
Authority key identifier: 7C:3D:8A:A4:38:35:04:A3:1A:FF:4B:00:68:10:A0:6B:CF:03:05:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fD2KpDg1BKMa_0sAaBCga88DBa4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/nMwxJhBOBXXbD2GHMJyzhiTa9C4.roa
Signing time: Tue 02 Jan 2024 12:33:23 +0000
ROA not before: Tue 02 Jan 2024 12:33:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30886
IP address blocks: 31.43.64.0/24 maxlen: 24
31.43.64.0/19 maxlen: 19
31.43.71.0/24 maxlen: 24
31.43.70.0/24 maxlen: 24
31.43.68.0/24 maxlen: 24
31.43.67.0/24 maxlen: 24
31.43.69.0/24 maxlen: 24
31.43.66.0/24 maxlen: 24
31.43.65.0/24 maxlen: 24
31.43.78.0/24 maxlen: 24
31.43.77.0/24 maxlen: 24
31.43.75.0/24 maxlen: 24
31.43.74.0/24 maxlen: 24
31.43.76.0/24 maxlen: 24
31.43.73.0/24 maxlen: 24
31.43.72.0/24 maxlen: 24
31.43.85.0/24 maxlen: 24
31.43.84.0/24 maxlen: 24
31.43.82.0/24 maxlen: 24
31.43.81.0/24 maxlen: 24
31.43.83.0/24 maxlen: 24
31.43.80.0/24 maxlen: 24
31.43.79.0/24 maxlen: 24
31.43.87.0/24 maxlen: 24
31.43.86.0/24 maxlen: 24
31.43.91.0/24 maxlen: 24
31.43.88.0/24 maxlen: 24
31.43.90.0/24 maxlen: 24
31.43.89.0/24 maxlen: 24
193.84.22.0/24 maxlen: 24
31.43.95.0/24 maxlen: 24
31.43.92.0/24 maxlen: 24
31.43.94.0/24 maxlen: 24
31.43.93.0/24 maxlen: 24
94.231.64.0/24 maxlen: 24
94.231.64.0/20 maxlen: 20
94.231.69.0/24 maxlen: 24
94.231.71.0/24 maxlen: 24
94.231.70.0/24 maxlen: 24
94.231.66.0/24 maxlen: 24
94.231.65.0/24 maxlen: 24
94.231.68.0/24 maxlen: 24
94.231.67.0/24 maxlen: 24
94.231.76.0/24 maxlen: 24
94.231.78.0/24 maxlen: 24
94.231.73.0/24 maxlen: 24
94.231.72.0/24 maxlen: 24
94.231.75.0/24 maxlen: 24
94.231.74.0/24 maxlen: 24
94.231.79.0/24 maxlen: 24
91.196.55.0/24 maxlen: 24
91.196.54.0/24 maxlen: 24
91.196.52.0/24 maxlen: 24
91.196.53.0/24 maxlen: 24
91.196.52.0/22 maxlen: 22
193.27.209.0/24 maxlen: 24
193.27.208.0/24 maxlen: 24
193.27.208.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 05 Feb 2024 11:48:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:10:90:48:ac:d8:26:47:2e:46:93:95:6b:fe:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3d8aa4383504a31aff4b006810a06bcf0305ae
Validity
Not Before: Jan 2 12:33:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9ccc3126104e0575db0f6187309cb38624daf42e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:0e:a5:7c:4b:22:a3:af:9b:4f:01:7a:c0:7a:
34:d9:2f:54:19:a2:02:b3:8c:93:f0:42:97:8a:df:
f2:21:3e:f3:f6:22:9c:f3:5f:4d:af:7b:bc:01:31:
69:3f:10:66:c2:f4:7c:ee:76:4b:a6:e3:50:77:ef:
80:c6:32:16:1c:eb:14:1b:cd:42:dc:ff:39:c4:7d:
93:28:f7:8b:8f:4f:8e:de:f7:d2:e6:0f:9c:73:5f:
8c:d6:e6:a4:c3:c8:69:b6:e5:59:22:09:3f:6f:b6:
b6:79:1d:72:61:ae:98:97:4a:af:d7:20:f3:76:e3:
0a:f4:d8:8d:c8:4c:3c:08:56:05:54:f3:d9:28:bb:
92:bd:45:ac:8d:01:3a:d5:02:9e:ba:0d:5c:17:41:
9e:dc:da:99:a2:28:6f:07:74:d4:83:d5:a9:1b:5a:
f7:2f:30:e8:dc:16:1e:69:af:87:d7:7b:cd:18:5e:
da:4c:70:b1:0f:08:d7:db:e7:ad:ca:bb:03:f6:1a:
59:12:ec:b2:6b:2b:69:c6:11:31:60:af:7b:30:fa:
b0:ca:50:06:61:1c:96:a3:6d:ea:1e:7a:f2:06:c2:
5b:44:97:62:52:c0:28:ed:68:eb:63:12:20:04:26:
58:6b:e4:77:26:4c:cf:d0:5a:3f:a7:7c:f9:d8:0e:
cd:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:CC:31:26:10:4E:05:75:DB:0F:61:87:30:9C:B3:86:24:DA:F4:2E
X509v3 Authority Key Identifier:
keyid:7C:3D:8A:A4:38:35:04:A3:1A:FF:4B:00:68:10:A0:6B:CF:03:05:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fD2KpDg1BKMa_0sAaBCga88DBa4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/nMwxJhBOBXXbD2GHMJyzhiTa9C4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.43.64.0/19
91.196.52.0/22
94.231.64.0/20
193.27.208.0/23
193.84.22.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:11:aa:23:2b:13:7b:07:a0:48:fc:6b:c6:93:77:21:3e:ce:
99:86:db:3a:c3:0c:ff:63:b2:3c:98:7f:25:6a:ae:ca:23:92:
06:d9:87:6e:a7:f0:e6:13:86:d1:5c:00:56:8f:62:62:41:74:
33:78:4a:47:9a:4b:d7:97:05:b7:9c:42:f5:94:85:e9:2e:a8:
e9:46:76:64:84:24:a8:6d:c5:47:7d:75:80:b9:8c:ef:dd:00:
85:08:fc:f2:51:ca:57:4b:d3:19:c5:1a:b2:d3:d7:32:b6:94:
9c:f7:e5:df:19:0c:c4:02:4a:28:56:29:86:c7:bf:9b:46:d9:
e1:a0:9e:63:9a:8d:10:fe:81:5b:ad:7f:8e:a0:37:47:fe:f1:
22:ae:d4:a2:86:50:3c:ec:e4:0b:89:ac:f6:4d:26:cb:f5:49:
db:1c:74:ac:54:92:b6:23:87:12:78:93:fd:9e:b1:81:09:76:
1a:c7:5d:ea:d6:2d:db:66:67:84:5d:72:b7:46:e4:38:ef:a2:
a0:ea:28:56:dc:5c:01:f1:fe:a5:15:43:ca:b5:89:b9:b8:04:
32:44:4a:f7:d1:88:b5:ce:3e:e0:d0:e8:ba:43:8c:75:a7:4e:
ab:8e:ad:57:12:fd:b4:c6:e3:7c:6e:ce:b1:4d:a4:f0:85:7a:
ee:58:41:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:45 2024 by rpki-client on console-fra.rpki-client.org