Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/JpJ4Jp6j6OtX31F7zg-NvFqsf44.roa
File: JpJ4Jp6j6OtX31F7zg-NvFqsf44.roa (raw, json)
Hash identifier: a79+j53hLAA/Hhfy5RlrvR999i4Sm+owp9oLgJenV6A=
Subject key identifier: 26:92:78:26:9E:A3:E8:EB:57:DF:51:7B:CE:0F:8D:BC:5A:AC:7F:8E
Certificate issuer: /CN=f51369ccbf86b1e84e1aeb46e6d336d39f752ae7
Certificate serial: 01856D5CEE7979C64FF90B5B7FDFE1484570
Authority key identifier: F5:13:69:CC:BF:86:B1:E8:4E:1A:EB:46:E6:D3:36:D3:9F:75:2A:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9RNpzL-GsehOGutG5tM20591Kuc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/JpJ4Jp6j6OtX31F7zg-NvFqsf44.roa
Signing time: Sun 01 Jan 2023 12:44:44 +0000
ROA not before: Sun 01 Jan 2023 12:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20857
IP address blocks: 188.240.52.0/22 maxlen: 22
93.119.0.0/20 maxlen: 24
84.247.8.0/21 maxlen: 24
195.8.195.0/24 maxlen: 24
85.10.128.0/19 maxlen: 24
89.41.168.0/22 maxlen: 24
87.253.128.0/19 maxlen: 24
31.14.96.0/22 maxlen: 24
185.10.48.0/22 maxlen: 24
77.72.144.0/21 maxlen: 24
95.170.64.0/19 maxlen: 24
80.69.64.0/19 maxlen: 24
195.135.195.0/24 maxlen: 24
185.108.112.0/22 maxlen: 24
37.97.128.0/17 maxlen: 24
86.105.244.0/22 maxlen: 24
188.241.148.0/22 maxlen: 22
149.210.128.0/17 maxlen: 24
141.138.136.0/21 maxlen: 24
37.34.56.0/21 maxlen: 24
2a01:7c8::/32 maxlen: 32
2a01:7c8:7000::/36 maxlen: 36
2a01:7c8:d000::/36 maxlen: 36
2a01:7c8:e000::/36 maxlen: 36
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:32:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:5c:ee:79:79:c6:4f:f9:0b:5b:7f:df:e1:48:45:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f51369ccbf86b1e84e1aeb46e6d336d39f752ae7
Validity
Not Before: Jan 1 12:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=269278269ea3e8eb57df517bce0f8dbc5aac7f8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:33:ac:96:72:77:ba:cc:d3:61:60:cd:10:2b:
40:ff:29:70:04:6b:42:2e:6e:f8:b3:b6:c9:db:27:
fa:4f:af:5e:4e:1a:3b:d9:46:c7:7b:97:1e:29:9a:
34:a1:5a:04:c9:72:25:d8:34:8a:80:4c:a4:d1:9f:
82:cf:85:a4:9e:f5:d6:ac:49:a4:aa:9d:2c:dd:0f:
69:0d:15:84:34:7a:70:91:99:18:f2:d4:5f:96:55:
d3:36:87:3f:7e:c1:fd:2b:e8:7f:09:ff:e9:08:33:
18:5e:b0:be:44:a2:0a:63:d0:1a:e0:c6:a4:6b:18:
6f:cd:88:68:92:40:59:b6:e8:34:9e:3d:41:c9:b1:
d8:fe:e4:01:e0:98:8f:4b:81:73:e8:94:2e:55:ba:
a4:fa:4f:77:6d:e7:60:88:96:38:ae:80:8e:86:67:
3a:e5:e3:ae:1c:23:e1:da:51:a4:a8:61:8f:c2:6c:
20:c9:5f:b9:2f:ff:7a:ae:7a:9d:66:fb:4a:db:bb:
fd:74:ba:ad:9c:4a:0e:53:14:93:4e:82:9b:26:53:
9a:a8:cc:ba:f1:21:3e:38:da:60:bf:c4:92:42:92:
d7:ae:90:76:2a:39:ae:3f:72:44:6b:1b:29:81:2a:
69:af:a5:d1:a5:4d:f0:7f:22:41:75:05:4a:ef:74:
a8:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:92:78:26:9E:A3:E8:EB:57:DF:51:7B:CE:0F:8D:BC:5A:AC:7F:8E
X509v3 Authority Key Identifier:
keyid:F5:13:69:CC:BF:86:B1:E8:4E:1A:EB:46:E6:D3:36:D3:9F:75:2A:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9RNpzL-GsehOGutG5tM20591Kuc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/JpJ4Jp6j6OtX31F7zg-NvFqsf44.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/9RNpzL-GsehOGutG5tM20591Kuc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.96.0/22
37.34.56.0/21
37.97.128.0/17
77.72.144.0/21
80.69.64.0/19
84.247.8.0/21
85.10.128.0/19
86.105.244.0/22
87.253.128.0/19
89.41.168.0/22
93.119.0.0/20
95.170.64.0/19
141.138.136.0/21
149.210.128.0/17
185.10.48.0/22
185.108.112.0/22
188.240.52.0/22
188.241.148.0/22
195.8.195.0/24
195.135.195.0/24
IPv6:
2a01:7c8::/32
Signature Algorithm: sha256WithRSAEncryption
5d:45:5c:5f:61:03:6e:20:29:cc:c4:83:06:63:52:32:ae:02:
13:6d:48:43:75:72:ef:19:1c:26:64:37:7b:e6:12:39:fb:32:
c9:de:7a:8f:34:bf:5c:30:68:40:c7:ac:9b:3c:65:35:ce:c3:
4d:ab:3b:9e:9f:a7:37:b6:6c:14:76:d1:c0:71:a5:de:27:a3:
7a:61:5b:15:1d:a1:de:d5:06:85:92:cf:7f:b2:09:51:eb:b2:
d0:0a:44:5b:55:62:82:cb:91:63:55:a0:f9:b3:aa:13:47:94:
bb:69:7a:86:26:64:b3:4c:94:ee:dc:66:d7:01:40:15:2b:a8:
0c:19:5d:04:fa:09:ac:47:be:95:6b:ba:81:da:6b:e7:ca:7a:
ec:b3:15:10:19:0c:de:74:ed:6f:3c:a8:ad:92:a0:59:5f:ce:
87:00:7e:52:46:c8:70:e5:44:94:52:35:b7:ac:0d:e7:95:34:
d3:89:7d:68:a9:04:b6:b5:b9:aa:0e:f4:8a:6a:ad:c5:33:6a:
bb:96:74:d6:72:f5:e7:d1:dd:3d:02:11:3d:1f:c8:88:0a:44:
15:4f:18:14:9b:6a:9f:5f:d0:67:cc:6a:43:93:df:6c:d9:1b:
59:41:77:e1:31:33:55:2a:65:37:bb:aa:a7:1d:85:c1:52:c5:
00:ea:76:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:01 2024 by rpki-client on console-fra.rpki-client.org