Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/Ni168s78xP1ksuqhGq0mF57bics.roa
File: Ni168s78xP1ksuqhGq0mF57bics.roa (raw, json)
Hash identifier: p9InE1sZYfGTco8+UvoZ5xbAOZf6CKAbqYdSq+mdTwg=
Subject key identifier: 36:2D:7A:F2:CE:FC:C4:FD:64:B2:EA:A1:1A:AD:26:17:9E:DB:89:CB
Certificate issuer: /CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Certificate serial: 018BB8634D1424725D3FEE65C1EA7243F50E
Authority key identifier: 05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/Ni168s78xP1ksuqhGq0mF57bics.roa
Signing time: Fri 10 Nov 2023 08:39:57 +0000
ROA not before: Fri 10 Nov 2023 08:39:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41789
IP address blocks: 31.129.17.0/24 maxlen: 24
31.129.16.0/24 maxlen: 24
31.129.18.0/24 maxlen: 24
31.129.20.0/24 maxlen: 24
31.129.19.0/24 maxlen: 24
31.129.24.0/24 maxlen: 24
31.129.23.0/24 maxlen: 24
31.129.29.0/24 maxlen: 24
31.129.28.0/24 maxlen: 24
31.129.27.0/24 maxlen: 24
31.129.26.0/24 maxlen: 24
31.129.31.0/24 maxlen: 24
31.129.25.0/24 maxlen: 24
141.98.234.0/24 maxlen: 24
185.166.196.0/23 maxlen: 24
94.198.216.0/22 maxlen: 24
81.200.144.0/21 maxlen: 24
31.129.0.0/20 maxlen: 24
81.200.152.0/22 maxlen: 24
81.200.156.0/23 maxlen: 24
81.200.158.0/24 maxlen: 24
46.19.64.0/22 maxlen: 24
37.220.80.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 10 Nov 2023 11:13:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b8:63:4d:14:24:72:5d:3f:ee:65:c1:ea:72:43:f5:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Validity
Not Before: Nov 10 08:39:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=362d7af2cefcc4fd64b2eaa11aad26179edb89cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:e6:28:f0:ef:e2:71:a1:1d:1e:b7:0e:22:03:
ad:7e:c8:db:1b:df:02:8b:e8:38:e7:47:6f:10:95:
cc:ed:77:18:5b:c0:fb:bc:70:79:cb:05:a2:34:17:
06:d5:0c:72:de:b4:98:1f:9b:81:d0:df:35:3d:27:
c6:e6:f8:2f:cc:5d:d1:6a:9d:f3:c1:ac:ab:87:d5:
cc:51:fa:ec:dc:25:ab:50:1c:1e:ec:34:bf:f2:53:
53:f1:12:a2:aa:6b:5d:e2:52:b2:80:73:e3:43:66:
86:fb:24:85:12:28:e7:82:10:8f:95:1c:5c:dc:eb:
e2:72:7e:de:87:8d:33:88:19:5c:fc:db:02:56:63:
e3:09:88:f1:82:c0:35:c1:54:fe:3e:48:25:fc:d7:
da:fb:8a:96:36:07:9b:6f:58:3e:65:fc:27:d7:68:
eb:fb:5c:b7:d6:42:b1:1a:0c:62:5b:51:b8:ba:e2:
97:0b:ae:84:fc:e9:3b:6a:98:33:54:4f:d5:d5:0d:
b6:4b:38:98:72:04:6f:ad:fd:bf:c6:cf:67:02:2a:
09:01:7b:c5:62:43:ce:59:22:9b:b1:71:62:f1:29:
b6:68:68:51:53:46:00:bc:ba:58:45:de:fb:7e:d5:
45:04:3e:b8:4d:70:cc:84:f3:71:77:8c:c9:6b:16:
60:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:2D:7A:F2:CE:FC:C4:FD:64:B2:EA:A1:1A:AD:26:17:9E:DB:89:CB
X509v3 Authority Key Identifier:
keyid:05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/Ni168s78xP1ksuqhGq0mF57bics.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.129.0.0-31.129.20.255
31.129.23.0-31.129.29.255
31.129.31.0/24
37.220.80.0/22
46.19.64.0/22
81.200.144.0-81.200.158.255
94.198.216.0/22
141.98.234.0/24
185.166.196.0/23
Signature Algorithm: sha256WithRSAEncryption
35:dc:58:0a:1a:16:a1:a4:bd:5b:65:09:8f:fe:06:de:f2:8b:
bc:25:44:d0:80:8b:0e:ba:98:c6:38:3e:7d:41:5e:0c:d9:af:
01:88:ff:c5:95:f4:4a:9e:7e:2c:1e:82:94:77:98:ef:41:d8:
df:4f:aa:16:0f:38:79:c1:69:4b:ab:f7:2b:88:9e:4d:eb:be:
f8:e6:36:e8:8d:f1:1b:d6:35:da:46:12:6b:bd:0d:4c:cf:8f:
1f:4d:59:dd:59:6f:0c:50:0e:ef:6e:58:eb:c3:f2:77:a7:aa:
51:8f:1d:1d:42:62:17:3b:9a:dc:02:4e:c7:a6:20:d6:41:3d:
8e:de:a5:bb:13:13:8a:3e:95:1b:9d:b3:90:87:f8:93:76:43:
ac:14:74:77:cd:e6:78:ec:42:de:79:cd:94:5d:19:c0:29:9a:
67:45:cc:b7:0c:f0:60:91:c0:7b:27:89:a5:ea:e5:e7:b5:3b:
4b:be:9b:23:4f:16:80:be:e7:bc:52:16:16:bd:e8:cd:d8:90:
4d:d3:9a:56:69:48:81:65:8a:8d:4a:64:d0:42:4b:62:c0:bb:
d5:92:c6:18:76:3b:a8:02:50:b7:dc:f3:6d:f2:2b:23:b7:a1:
0a:c5:5d:9f:bd:47:3e:1c:cf:79:9e:31:87:da:52:d9:77:93:
19:74:2e:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:15 2024 by rpki-client on console-ams.rpki-client.org