Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/0e651e-90c7-4acd-97b9-a54f8e4813e7/1/MEi8d0A8XnJfngBfoXKdoYwlSS4.roa
File: MEi8d0A8XnJfngBfoXKdoYwlSS4.roa (raw, json)
Hash identifier: CxN+T80yKlIhMgvBwPyXYSLcr/CRHShptZuedJxWWBc=
Subject key identifier: 30:48:BC:77:40:3C:5E:72:5F:9E:00:5F:A1:72:9D:A1:8C:25:49:2E
Certificate issuer: /CN=9cd0758825dd89cfee5fdecc7dcb651f0a5d1018
Certificate serial: 018AAA3D2BFB6AECCA7670EDE44572125A16
Authority key identifier: 9C:D0:75:88:25:DD:89:CF:EE:5F:DE:CC:7D:CB:65:1F:0A:5D:10:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nNB1iCXdic_uX97MfctlHwpdEBg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/0e651e-90c7-4acd-97b9-a54f8e4813e7/1/MEi8d0A8XnJfngBfoXKdoYwlSS4.roa
Signing time: Mon 18 Sep 2023 21:40:50 +0000
ROA not before: Mon 18 Sep 2023 21:40:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 45.145.20.0/24 maxlen: 24
193.53.87.0/24 maxlen: 24
37.156.246.0/24 maxlen: 24
193.53.98.0/24 maxlen: 24
193.53.103.0/24 maxlen: 24
109.230.196.0/24 maxlen: 24
193.53.245.0/24 maxlen: 24
45.139.222.0/24 maxlen: 24
31.214.152.0/24 maxlen: 24
89.45.94.0/24 maxlen: 24
31.14.52.0/24 maxlen: 24
185.111.244.0/24 maxlen: 24
185.111.245.0/24 maxlen: 24
185.111.246.0/24 maxlen: 24
185.111.247.0/24 maxlen: 24
93.113.96.0/24 maxlen: 24
31.214.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:30:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:aa:3d:2b:fb:6a:ec:ca:76:70:ed:e4:45:72:12:5a:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9cd0758825dd89cfee5fdecc7dcb651f0a5d1018
Validity
Not Before: Sep 18 21:40:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3048bc77403c5e725f9e005fa1729da18c25492e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:41:81:3f:4f:d3:00:78:47:ff:b1:50:dd:c3:
d3:2f:7a:4f:b9:fc:bb:22:4e:dc:75:61:8a:b8:7c:
df:6c:05:c8:7d:21:0c:1d:69:a2:d4:32:ff:0a:6a:
08:9d:1d:9a:b8:8e:16:e0:1f:bb:2c:d5:65:f4:a4:
1d:7e:d3:cb:ff:8e:c1:52:51:94:07:de:81:8d:4b:
4d:bf:42:e5:c1:b4:66:a3:40:11:ce:d7:1c:10:90:
4e:9f:ed:61:53:bd:e8:67:b4:5b:3d:35:b4:8c:7e:
8f:cf:4d:93:0c:9b:dd:dd:d0:0f:70:bb:8c:cc:1a:
cb:04:a9:77:00:1e:ba:d7:bb:2b:bf:04:9e:d7:57:
bf:43:50:d0:da:5a:da:27:0f:32:20:6a:39:ad:0f:
06:15:03:2f:ab:76:0b:7e:42:f6:e4:1d:0a:cd:33:
e3:85:c2:90:73:33:9e:9f:d8:bf:a5:7b:e7:f9:2b:
99:f8:0f:97:c4:7e:59:a0:42:9e:2b:a6:dc:b8:a7:
bd:e0:32:6b:d8:59:56:35:13:fe:37:a5:7a:94:40:
25:0c:58:79:79:83:4e:1b:d6:7b:8b:e3:d8:c2:40:
c9:6c:f6:7f:03:91:27:e4:2c:c9:c4:c9:c9:ab:25:
2a:ac:9e:3a:9d:ae:41:c7:a3:36:7f:30:f1:16:94:
d6:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:48:BC:77:40:3C:5E:72:5F:9E:00:5F:A1:72:9D:A1:8C:25:49:2E
X509v3 Authority Key Identifier:
keyid:9C:D0:75:88:25:DD:89:CF:EE:5F:DE:CC:7D:CB:65:1F:0A:5D:10:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nNB1iCXdic_uX97MfctlHwpdEBg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/0e651e-90c7-4acd-97b9-a54f8e4813e7/1/MEi8d0A8XnJfngBfoXKdoYwlSS4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/0e651e-90c7-4acd-97b9-a54f8e4813e7/1/nNB1iCXdic_uX97MfctlHwpdEBg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.52.0/24
31.214.129.0/24
31.214.152.0/24
37.156.246.0/24
45.139.222.0/24
45.145.20.0/24
89.45.94.0/24
93.113.96.0/24
109.230.196.0/24
185.111.244.0/22
193.53.87.0/24
193.53.98.0/24
193.53.103.0/24
193.53.245.0/24
Signature Algorithm: sha256WithRSAEncryption
66:cb:fd:44:73:35:7c:74:7e:47:d3:6d:8f:2f:58:b3:3b:ee:
44:3c:af:52:50:21:99:a3:43:95:d9:4a:a1:4b:24:68:b5:22:
03:b7:d1:cd:77:c9:d0:7b:07:b9:67:3e:f5:31:bd:7d:ac:2f:
b5:69:b1:f1:b0:c2:13:65:93:0e:05:ea:d3:74:98:98:e6:05:
be:51:86:83:23:b6:32:26:a1:4e:98:08:db:20:ac:cc:e2:7b:
19:27:eb:d5:60:ed:1f:02:aa:9c:a8:74:2b:00:b8:87:e3:00:
9b:14:f5:18:5e:4a:18:36:96:c0:ad:d7:b0:21:81:7d:10:36:
96:de:22:94:47:1b:6e:c0:48:c1:68:24:e1:94:ea:0c:ca:1a:
15:82:6f:15:fc:1f:cc:8c:4f:ac:e7:cc:10:29:72:df:f6:08:
8d:a0:31:44:f9:d6:c0:05:5a:13:9f:36:59:ad:61:da:99:c4:
30:90:31:3b:00:74:dc:83:cc:cc:0a:7a:2c:01:f7:f6:a4:93:
84:ee:e1:73:3c:7d:e8:6f:8b:f0:08:a5:0a:f8:15:d0:b9:30:
de:26:e9:46:c8:4b:e2:1d:4f:a1:d8:29:67:2f:31:d4:c2:5e:
0b:3d:f5:0c:ff:0e:35:a5:49:f2:55:1f:3f:d8:7c:25:72:70:
18:ce:17:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:09 2024 by rpki-client on console-fra.rpki-client.org