Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/tU_6lZgGyyuaYHHMVLFXnFUSEtQ.roa
File: tU_6lZgGyyuaYHHMVLFXnFUSEtQ.roa (raw, json)
Hash identifier: H/apW8KH7uWOIT/XpolaVB4O31aB0+LfecuWxqG91l4=
Subject key identifier: B5:4F:FA:95:98:06:CB:2B:9A:60:71:CC:54:B1:57:9C:55:12:12:D4
Certificate issuer: /CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Certificate serial: 018A87BA546774D39C7C40C1DDE38B84680A
Authority key identifier: 05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/tU_6lZgGyyuaYHHMVLFXnFUSEtQ.roa
Signing time: Tue 12 Sep 2023 04:50:50 +0000
ROA not before: Tue 12 Sep 2023 04:50:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41789
IP address blocks: 31.129.17.0/24 maxlen: 24
31.129.16.0/24 maxlen: 24
31.129.18.0/24 maxlen: 24
31.129.20.0/24 maxlen: 24
31.129.19.0/24 maxlen: 24
31.129.24.0/24 maxlen: 24
31.129.23.0/24 maxlen: 24
31.129.29.0/24 maxlen: 24
31.129.28.0/24 maxlen: 24
31.129.27.0/24 maxlen: 24
31.129.26.0/24 maxlen: 24
31.129.31.0/24 maxlen: 24
31.129.25.0/24 maxlen: 24
141.98.234.0/24 maxlen: 24
185.166.196.0/23 maxlen: 24
94.198.216.0/22 maxlen: 24
81.200.144.0/21 maxlen: 24
31.129.0.0/20 maxlen: 24
81.200.152.0/22 maxlen: 24
81.200.156.0/23 maxlen: 24
46.19.64.0/22 maxlen: 24
37.220.80.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 10 Nov 2023 08:39:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:87:ba:54:67:74:d3:9c:7c:40:c1:dd:e3:8b:84:68:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Validity
Not Before: Sep 12 04:50:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b54ffa959806cb2b9a6071cc54b1579c551212d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:1f:f4:fa:80:0c:24:54:6a:4f:4a:7f:02:ab:
75:6b:f5:4f:4e:15:6e:9c:1c:92:ff:5d:01:90:72:
76:fb:bb:83:a1:5c:ee:ad:14:3a:91:9b:f0:08:d6:
38:db:5e:33:e8:ba:02:ca:65:4d:ed:e4:b7:a4:6b:
cc:c4:72:b0:4c:e1:c2:92:4d:3d:9e:38:6c:40:79:
b3:c3:35:80:6d:23:de:03:9b:07:6f:0b:bb:40:c9:
c4:62:8b:3c:11:7e:2c:bd:09:28:a4:86:cb:a9:7b:
81:a6:a4:76:9b:4f:ab:94:89:e6:fe:16:7f:3e:bb:
0d:fd:2f:3f:2d:93:0d:07:cd:2d:9b:35:23:99:39:
e3:62:f5:9d:77:87:79:df:a0:d4:41:86:94:37:51:
01:f2:1e:09:16:72:be:49:22:dc:4e:52:9a:6e:f5:
6a:9e:ba:db:60:f5:14:af:91:90:5b:ed:91:a8:f5:
0b:b1:62:68:91:38:20:ac:9d:33:e5:f2:a4:ab:2d:
82:26:62:bf:5b:40:eb:a1:84:10:c1:bd:71:74:dc:
89:8b:22:19:41:d2:0b:e8:16:04:3d:5c:1c:3d:4e:
d9:76:1f:8b:07:57:49:01:17:f0:17:dd:f5:39:5e:
3f:5f:f4:74:e1:f1:59:b6:2d:78:72:3a:60:9f:44:
7e:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:4F:FA:95:98:06:CB:2B:9A:60:71:CC:54:B1:57:9C:55:12:12:D4
X509v3 Authority Key Identifier:
keyid:05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/tU_6lZgGyyuaYHHMVLFXnFUSEtQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.129.0.0-31.129.20.255
31.129.23.0-31.129.29.255
31.129.31.0/24
37.220.80.0/22
46.19.64.0/22
81.200.144.0-81.200.157.255
94.198.216.0/22
141.98.234.0/24
185.166.196.0/23
Signature Algorithm: sha256WithRSAEncryption
88:fe:11:55:52:7a:76:21:e5:04:57:ff:7b:27:07:d3:43:e8:
e4:96:5d:c9:f6:1a:7f:5a:cd:a0:e2:86:c5:7b:34:d6:b1:d9:
d5:1b:da:5f:eb:8f:f4:e8:64:fe:10:1e:3c:9f:23:d5:61:23:
d7:29:78:0b:d3:89:eb:aa:ab:74:a1:81:87:46:59:cf:a8:8e:
34:cf:33:4f:19:7e:c6:68:84:4d:ca:6c:02:6b:94:b4:c9:31:
3c:25:fa:22:bb:d5:34:95:6d:0d:7e:3c:73:c4:8e:79:27:ad:
75:b2:26:e1:c7:53:46:3f:6c:26:69:63:4c:aa:0c:95:d9:39:
16:50:c4:70:0d:9c:5a:62:09:67:2b:b8:cf:41:f6:50:03:44:
94:0e:89:c6:0c:39:4a:4f:ef:0e:91:08:ab:60:08:ed:1c:d1:
71:33:4a:38:ed:11:d7:1c:3b:6b:4b:ec:af:04:43:77:73:ad:
9b:ea:a2:a3:c0:18:1b:ef:c8:2b:51:c6:5b:07:9f:56:42:0f:
45:73:80:ed:60:83:69:da:b3:3c:3e:0a:ba:16:d8:07:05:37:
e9:bd:cf:fa:fc:6e:bf:4a:9e:73:0d:f4:68:c3:46:3c:8a:60:
62:ea:47:55:3b:62:d2:3f:e6:a7:7f:10:a0:6a:af:6a:dd:67:
e3:63:d1:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:55 2024 by rpki-client on console-fra.rpki-client.org