Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/171251-6a75-4e9e-acf0-825e5a061df9/1/lEUfoum0kgb7eQIVBNnm1WKRnrk.roa
File: lEUfoum0kgb7eQIVBNnm1WKRnrk.roa (raw, json)
Hash identifier: ht9PXwKFuRHkR0pA4tuGiCmSW33EBoFu3IVjwsQnAbs=
Subject key identifier: 94:45:1F:A2:E9:B4:92:06:FB:79:02:15:04:D9:E6:D5:62:91:9E:B9
Certificate issuer: /CN=78811e8e36e22280bb2f65a7d2c6034ecf86716c
Certificate serial: 01857115091AA90AB21FD22953D398DD4103
Authority key identifier: 78:81:1E:8E:36:E2:22:80:BB:2F:65:A7:D2:C6:03:4E:CF:86:71:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eIEejjbiIoC7L2Wn0sYDTs-GcWw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/171251-6a75-4e9e-acf0-825e5a061df9/1/lEUfoum0kgb7eQIVBNnm1WKRnrk.roa
Signing time: Mon 02 Jan 2023 06:04:41 +0000
ROA not before: Mon 02 Jan 2023 06:04:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59702
IP address blocks: 207.189.192.0/20 maxlen: 20
81.25.144.0/20 maxlen: 20
146.66.232.0/21 maxlen: 21
185.80.216.0/22 maxlen: 22
216.158.96.0/20 maxlen: 20
194.37.249.0/24 maxlen: 24
213.244.240.0/21 maxlen: 21
185.16.200.0/22 maxlen: 22
31.31.161.0/24 maxlen: 24
31.31.163.0/24 maxlen: 24
31.31.165.0/24 maxlen: 24
31.31.166.0/24 maxlen: 24
31.31.167.0/24 maxlen: 24
185.47.192.0/24 maxlen: 24
172.103.88.0/21 maxlen: 21
185.47.193.0/24 maxlen: 24
185.47.194.0/24 maxlen: 24
2a03:780::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 15 May 2023 08:22:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:15:09:1a:a9:0a:b2:1f:d2:29:53:d3:98:dd:41:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78811e8e36e22280bb2f65a7d2c6034ecf86716c
Validity
Not Before: Jan 2 06:04:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=94451fa2e9b49206fb79021504d9e6d562919eb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:b8:6f:82:2e:56:05:4e:3b:d1:4b:52:50:c9:
84:34:39:2d:e8:53:b8:66:3a:3a:e5:52:b0:31:b7:
06:d4:90:cc:18:e2:64:bc:4e:98:0f:eb:55:8e:1e:
28:f9:87:71:e4:37:6f:e8:d3:bb:c9:72:87:fb:50:
af:9b:9a:05:de:02:49:65:cf:cb:40:2b:8f:9f:5a:
86:aa:23:4b:64:83:ba:89:4e:75:84:20:61:80:f1:
49:d6:cc:e7:f9:0b:1a:f8:f0:34:76:06:1b:70:04:
4c:ae:56:0c:90:2f:82:32:06:7c:f6:a3:77:ac:a6:
d7:33:91:27:b4:68:70:5b:ac:67:92:e0:67:1a:e7:
5f:f4:2d:d2:78:bf:4c:d6:bb:7e:90:91:75:0a:5d:
53:29:a6:2d:ef:10:e2:af:5e:0d:c1:3a:fb:8e:ec:
6a:1d:4e:e9:2c:23:b4:f8:9a:64:27:39:ea:7b:dd:
d6:07:f5:cd:b2:bc:e5:7e:4d:41:38:35:fa:93:4e:
53:e8:93:d0:32:15:1e:3d:35:64:ea:c3:62:2f:4d:
30:1a:99:4e:2a:a1:76:83:be:e0:fa:8e:b2:88:f4:
e3:dd:2a:58:63:62:8d:38:03:df:de:5e:5c:ae:2b:
f5:6a:7b:87:1d:bd:01:93:83:02:c7:40:8c:0b:1b:
3d:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:45:1F:A2:E9:B4:92:06:FB:79:02:15:04:D9:E6:D5:62:91:9E:B9
X509v3 Authority Key Identifier:
keyid:78:81:1E:8E:36:E2:22:80:BB:2F:65:A7:D2:C6:03:4E:CF:86:71:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eIEejjbiIoC7L2Wn0sYDTs-GcWw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/171251-6a75-4e9e-acf0-825e5a061df9/1/lEUfoum0kgb7eQIVBNnm1WKRnrk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/171251-6a75-4e9e-acf0-825e5a061df9/1/eIEejjbiIoC7L2Wn0sYDTs-GcWw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.31.161.0/24
31.31.163.0/24
31.31.165.0-31.31.167.255
81.25.144.0/20
146.66.232.0/21
172.103.88.0/21
185.16.200.0/22
185.47.192.0-185.47.194.255
185.80.216.0/22
194.37.249.0/24
207.189.192.0/20
213.244.240.0/21
216.158.96.0/20
IPv6:
2a03:780::/32
Signature Algorithm: sha256WithRSAEncryption
8f:ed:60:f9:38:98:c6:a2:e7:a1:17:f5:22:04:d1:fc:5f:c9:
5b:69:58:e1:97:24:93:a0:a2:28:46:5a:e6:68:44:88:02:87:
7c:5a:7c:b7:54:68:f1:e1:d7:ef:34:d1:3b:0e:42:74:eb:0a:
9b:f7:b1:6c:98:cf:76:a3:d0:ef:74:53:38:2b:89:07:f5:2b:
40:d2:21:31:28:8f:11:21:b1:f0:1b:a4:dc:94:78:0c:87:6e:
9c:0c:8e:15:56:ae:b1:96:e7:f2:12:96:49:a6:43:80:20:01:
6e:2d:5b:6e:4c:86:fe:18:10:f5:da:66:b6:96:44:95:a4:85:
fb:41:19:e6:18:a4:c1:1d:d5:96:07:c8:14:5a:f4:fb:5c:d2:
fd:9f:ec:84:6a:ee:52:a4:36:2c:47:e8:b5:4d:2e:3e:5f:1c:
d6:86:14:ce:bc:bc:16:10:59:de:8a:18:37:6a:90:63:86:e5:
ea:2d:d1:a1:20:38:cd:e8:4a:cc:9f:a0:a0:97:ef:f4:2d:4a:
ab:39:d9:eb:e2:c1:2e:48:a1:3b:6b:f3:1a:2b:43:82:e1:01:
ed:3a:ac:0b:1b:6d:e9:37:7a:dd:9f:bb:5c:eb:dc:87:d2:e4:
b6:e4:45:32:5b:14:a2:d0:9d:76:a2:30:6e:18:3c:9e:b6:f6:
a6:40:09:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:20 2024 by rpki-client on console-ams.rpki-client.org