Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/bJHSVUkJv65ovHPdzMCsifsHpNQ.roa
File: bJHSVUkJv65ovHPdzMCsifsHpNQ.roa (raw, json)
Hash identifier: 6scI7YhSESEIOH/1LEXB6CUNQE4PSS/y6AzcjKmrNJo=
Subject key identifier: 6C:91:D2:55:49:09:BF:AE:68:BC:73:DD:CC:C0:AC:89:FB:07:A4:D4
Certificate issuer: /CN=e4a9308742e7eb66506219d829d86185899a1e34
Certificate serial: 018DDF49BD50A7420458F9BF64F390AECD8A
Authority key identifier: E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/bJHSVUkJv65ovHPdzMCsifsHpNQ.roa
Signing time: Sun 25 Feb 2024 08:02:48 +0000
ROA not before: Sun 25 Feb 2024 08:02:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211559
IP address blocks: 31.11.48.0/21 maxlen: 21
31.11.55.0/24 maxlen: 24
37.186.60.0/22 maxlen: 22
37.186.60.0/24 maxlen: 24
80.76.165.0/24 maxlen: 24
80.76.166.0/23 maxlen: 23
80.76.166.0/24 maxlen: 24
80.76.167.0/24 maxlen: 24
80.76.168.0/23 maxlen: 23
103.14.208.0/22 maxlen: 22
103.14.211.0/24 maxlen: 24
103.225.72.0/24 maxlen: 24
103.225.73.0/24 maxlen: 24
103.225.74.0/24 maxlen: 24
185.247.88.0/22 maxlen: 22
212.70.100.0/24 maxlen: 24
212.70.101.0/24 maxlen: 24
212.70.102.0/24 maxlen: 24
212.70.103.0/24 maxlen: 24
212.70.104.0/24 maxlen: 24
212.70.105.0/24 maxlen: 24
212.70.120.0/24 maxlen: 24
212.70.123.0/24 maxlen: 24
212.70.124.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Apr 2024 07:30:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:df:49:bd:50:a7:42:04:58:f9:bf:64:f3:90:ae:cd:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a9308742e7eb66506219d829d86185899a1e34
Validity
Not Before: Feb 25 08:02:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6c91d2554909bfae68bc73ddccc0ac89fb07a4d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:51:62:8f:f5:47:f6:a9:96:e0:63:e1:c8:b6:
5e:1c:3a:32:06:76:35:59:8f:c0:14:ee:a9:a0:43:
51:b5:a0:d3:28:f4:79:3b:f3:1d:e3:78:9b:eb:d6:
97:b9:25:ca:99:1b:ca:49:0f:17:3a:10:45:5e:a4:
2c:57:70:1b:f3:9b:68:1b:46:ef:7c:0f:d7:9f:e9:
75:dc:8c:bb:aa:2a:44:57:e2:aa:00:c4:ec:8e:1f:
f6:20:05:ca:d2:9b:cd:83:e7:5a:56:a4:e3:10:51:
0c:94:f0:b9:c7:bb:38:a1:2f:08:ab:aa:49:21:78:
be:b4:63:38:44:32:aa:c9:a6:52:4f:d2:16:c4:76:
3e:11:97:9e:ca:9f:b7:11:41:09:be:63:77:e3:da:
3e:c4:75:8d:84:ab:42:84:ed:95:a7:cf:e0:ae:57:
ee:fe:e7:66:e9:14:14:5c:2a:88:4d:6c:ad:5a:10:
27:3d:ab:88:4f:a9:f0:69:79:97:85:5d:51:1d:e5:
2b:7a:3f:53:12:50:30:3d:ff:6b:5e:a9:ae:ab:45:
a3:cf:90:91:5b:b0:2b:62:87:e0:f2:93:4d:a6:5a:
15:58:32:ef:18:e0:a2:ea:c9:93:c9:d8:6c:5a:aa:
fe:23:f0:72:68:f1:eb:83:ef:4e:c4:e8:f0:9d:46:
32:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:91:D2:55:49:09:BF:AE:68:BC:73:DD:CC:C0:AC:89:FB:07:A4:D4
X509v3 Authority Key Identifier:
keyid:E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/bJHSVUkJv65ovHPdzMCsifsHpNQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.11.48.0/21
37.186.60.0/22
80.76.165.0-80.76.169.255
103.14.208.0/22
103.225.72.0-103.225.74.255
185.247.88.0/22
212.70.100.0-212.70.105.255
212.70.120.0/24
212.70.123.0-212.70.124.255
Signature Algorithm: sha256WithRSAEncryption
2c:3c:93:42:bb:2b:30:f3:62:72:2b:08:88:cf:ca:77:a0:1f:
36:ef:6c:95:59:87:9b:5c:ce:70:2c:91:ef:73:3e:b6:10:73:
b7:aa:a8:f8:a0:ed:47:33:95:40:51:c1:49:47:30:d3:04:37:
48:df:8c:b4:8f:40:73:7d:10:41:e2:c9:6b:62:28:38:a0:90:
e3:e1:73:d6:6d:aa:ca:27:eb:8d:ba:ec:d9:45:fc:34:be:57:
05:a4:8e:bd:09:f5:10:1f:b7:d3:a3:95:b6:93:f6:89:21:f3:
b1:60:6a:46:09:11:19:9c:03:2c:08:ba:12:08:a9:e0:37:64:
ed:66:a3:d2:1b:dd:46:7e:79:09:c9:e0:7b:83:72:30:23:53:
2e:ec:7c:70:1d:5f:a4:94:31:a4:b8:64:15:35:d3:30:96:c2:
44:df:94:05:be:08:4a:1a:61:09:c4:84:86:66:a1:89:2d:c6:
47:c0:3b:cc:9b:5c:46:06:49:ac:0e:13:eb:82:95:b0:7d:9a:
0e:a1:76:72:ed:b1:8a:33:48:7e:6d:7d:ae:c0:e3:b6:4e:be:
43:4a:42:d8:a1:13:56:cb:28:3c:1d:0c:a3:db:60:75:c8:12:
36:d6:13:be:50:21:2b:a6:48:ff:b8:1c:58:f3:7e:4a:e9:5f:
f4:a9:ca:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 3 11:17:14 2024 by rpki-client on console-ams.rpki-client.org