Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/b592dd-c711-4301-9be5-aef3fcbb7884/1/H45i0j_pgElXatN1wIrGng6YtTE.roa
File: H45i0j_pgElXatN1wIrGng6YtTE.roa (raw, json)
Hash identifier: 0eZk5Hw/ONpBNXftnJmFhlziDyuAk4Xq/rBsgpprqpQ=
Subject key identifier: 1F:8E:62:D2:3F:E9:80:49:57:6A:D3:75:C0:8A:C6:9E:0E:98:B5:31
Certificate issuer: /CN=7dc896cb3899c5b6488d1c4653faee4b23151f1f
Certificate serial: 0189F426C21CEDE48AD3C59C01D7EB166BE4
Authority key identifier: 7D:C8:96:CB:38:99:C5:B6:48:8D:1C:46:53:FA:EE:4B:23:15:1F:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fciWyziZxbZIjRxGU_ruSyMVHx8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/b592dd-c711-4301-9be5-aef3fcbb7884/1/H45i0j_pgElXatN1wIrGng6YtTE.roa
Signing time: Mon 14 Aug 2023 13:05:28 +0000
ROA not before: Mon 14 Aug 2023 13:05:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12703
IP address blocks: 31.15.104.0/21 maxlen: 21
217.22.144.0/20 maxlen: 20
194.176.64.0/19 maxlen: 19
31.47.216.0/21 maxlen: 21
82.113.160.0/19 maxlen: 19
93.94.72.0/21 maxlen: 21
213.131.96.0/19 maxlen: 19
195.97.192.0/18 maxlen: 18
185.153.100.0/22 maxlen: 22
2a02:2b38::/32 maxlen: 32
2001:4dc0::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f4:26:c2:1c:ed:e4:8a:d3:c5:9c:01:d7:eb:16:6b:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7dc896cb3899c5b6488d1c4653faee4b23151f1f
Validity
Not Before: Aug 14 13:05:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1f8e62d23fe98049576ad375c08ac69e0e98b531
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:48:0b:55:cf:cc:d6:75:8a:13:fa:1e:d0:4b:
7e:1e:6c:21:01:96:a5:3e:3e:ae:a5:7b:21:8b:13:
53:2e:a6:13:86:7d:25:95:21:d5:17:b2:2f:26:2a:
6f:2d:36:22:34:38:20:c9:f2:36:01:db:5d:e9:96:
64:5b:6c:7a:e6:9e:c0:5f:e4:94:38:3e:16:15:ad:
6f:a0:f4:6b:f3:60:60:01:46:88:f7:40:56:a8:d7:
e9:b5:05:f6:cf:e8:4f:a3:9d:2c:6a:6f:ac:34:9d:
68:94:74:5e:d2:63:62:68:18:6b:02:5f:ab:d0:84:
ca:1f:9e:ea:e3:8e:5b:c5:0c:0a:eb:d5:bf:e7:d7:
a3:7d:67:2f:92:dd:de:80:c5:c3:f8:55:cf:5c:a3:
e9:16:a7:e4:a9:c3:a9:b4:90:ac:a2:26:8b:d9:fb:
70:a8:4a:df:e6:7d:6a:86:68:17:31:e4:d5:ca:e5:
26:15:d7:95:b4:40:93:79:69:d1:98:02:69:7c:64:
73:82:81:2d:46:34:79:e9:da:08:ae:f0:39:a0:1f:
34:5d:66:77:2c:5e:cb:1d:16:44:9a:b0:30:71:eb:
7d:ba:aa:3c:2c:d3:2d:33:d0:e1:d5:1d:69:e5:a4:
d8:67:d4:d5:ee:37:d6:c4:a6:5b:7f:f0:85:51:97:
d5:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:8E:62:D2:3F:E9:80:49:57:6A:D3:75:C0:8A:C6:9E:0E:98:B5:31
X509v3 Authority Key Identifier:
keyid:7D:C8:96:CB:38:99:C5:B6:48:8D:1C:46:53:FA:EE:4B:23:15:1F:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fciWyziZxbZIjRxGU_ruSyMVHx8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/b592dd-c711-4301-9be5-aef3fcbb7884/1/H45i0j_pgElXatN1wIrGng6YtTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/b592dd-c711-4301-9be5-aef3fcbb7884/1/fciWyziZxbZIjRxGU_ruSyMVHx8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.15.104.0/21
31.47.216.0/21
82.113.160.0/19
93.94.72.0/21
185.153.100.0/22
194.176.64.0/19
195.97.192.0/18
213.131.96.0/19
217.22.144.0/20
IPv6:
2001:4dc0::/32
2a02:2b38::/32
Signature Algorithm: sha256WithRSAEncryption
aa:12:8c:f0:5a:fe:ed:6c:a6:20:2f:0f:c8:d1:83:80:50:22:
54:d4:47:a0:3d:65:57:b1:70:97:c9:a8:b8:f6:2b:98:b5:03:
8f:ec:bc:27:f9:92:f9:4c:04:47:21:94:8a:f2:fb:6c:cf:61:
62:16:9e:4d:aa:0a:53:31:03:07:0f:d2:b2:b0:d1:60:c7:e8:
c5:ae:ff:ad:9f:b4:96:ad:42:87:a1:42:c4:a2:9d:9a:21:f7:
43:87:a5:94:fd:94:3b:f8:9e:92:25:fa:50:ea:c8:67:9e:72:
24:c7:73:1f:4f:12:b3:aa:63:13:98:78:16:a6:93:82:58:a7:
8e:d3:39:6b:53:20:e2:9b:d2:ce:96:4d:fd:95:b3:5f:c6:e9:
d8:a7:01:19:db:56:03:4c:a2:84:69:73:35:7c:92:64:a1:04:
09:8b:8e:b5:22:86:15:d3:60:71:5e:88:8e:89:92:52:83:a6:
9e:d0:9f:61:76:1c:94:f3:09:54:4c:b4:07:e1:15:7d:79:6e:
08:00:3d:ba:ad:eb:b9:66:9d:79:79:6c:6a:af:5a:f4:09:d1:
ff:a2:05:3e:b1:9f:3f:e9:0d:bf:42:59:ce:a8:5b:78:56:b2:
c9:e6:cb:89:8a:09:1c:9f:a7:b2:93:36:b3:8e:08:a8:d8:5d:
c4:ed:3e:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:23 2024 by rpki-client on console-ams.rpki-client.org