Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/vCCecRxvQML-NBNcTTJaPqXwFe0.roa
File: vCCecRxvQML-NBNcTTJaPqXwFe0.roa (raw, json)
Hash identifier: LzzZFQLzKKY/lVq1fvZkFU5atT3ORppcNwbEyZw0GV8=
Subject key identifier: BC:20:9E:71:1C:6F:40:C2:FE:34:13:5C:4D:32:5A:3E:A5:F0:15:ED
Certificate issuer: /CN=e4a9308742e7eb66506219d829d86185899a1e34
Certificate serial: 018D542187BD10B0416351E18294932378A0
Authority key identifier: E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/vCCecRxvQML-NBNcTTJaPqXwFe0.roa
Signing time: Mon 29 Jan 2024 07:31:39 +0000
ROA not before: Mon 29 Jan 2024 07:31:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211559
IP address blocks: 31.11.48.0/21 maxlen: 21
37.186.60.0/22 maxlen: 22
37.186.60.0/24 maxlen: 24
80.76.165.0/24 maxlen: 24
80.76.166.0/23 maxlen: 23
80.76.166.0/24 maxlen: 24
80.76.167.0/24 maxlen: 24
80.76.168.0/23 maxlen: 23
103.14.208.0/22 maxlen: 22
103.225.72.0/24 maxlen: 24
103.225.73.0/24 maxlen: 24
103.225.74.0/24 maxlen: 24
185.247.88.0/22 maxlen: 22
212.70.100.0/24 maxlen: 24
212.70.101.0/24 maxlen: 24
212.70.102.0/24 maxlen: 24
212.70.103.0/24 maxlen: 24
212.70.104.0/24 maxlen: 24
212.70.105.0/24 maxlen: 24
212.70.120.0/24 maxlen: 24
212.70.123.0/24 maxlen: 24
212.70.124.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 21 Feb 2024 06:29:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:54:21:87:bd:10:b0:41:63:51:e1:82:94:93:23:78:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a9308742e7eb66506219d829d86185899a1e34
Validity
Not Before: Jan 29 07:31:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bc209e711c6f40c2fe34135c4d325a3ea5f015ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:73:5f:7b:79:05:92:5a:04:13:eb:a7:c1:26:
ef:fc:af:8d:18:27:c9:cc:29:74:20:cd:95:f7:3e:
68:a7:70:64:2c:29:95:4f:09:bf:2a:4b:b8:a6:dc:
c4:4b:26:da:c9:c3:91:ad:9f:ac:b2:d1:2d:2d:78:
8d:e3:3d:e4:c2:0e:64:a7:21:59:6c:65:75:d0:e2:
b3:45:25:7a:89:7d:14:c6:a4:c0:e7:da:1a:57:1d:
ed:cc:e6:0d:83:5d:78:8f:a9:f8:ad:cb:95:27:a8:
96:3e:35:23:3d:c7:68:57:08:1b:5e:60:3c:2b:04:
2b:84:be:f1:f6:2d:f0:54:40:43:dc:a3:3d:46:f3:
f8:b9:7b:d8:98:91:f2:da:e6:a5:35:51:8e:27:5c:
11:f1:d7:75:93:21:e5:57:e0:c5:4f:dd:50:33:4d:
c3:6b:23:57:ed:d6:79:53:4b:38:c4:88:56:ca:b1:
e1:cd:a1:07:e5:6e:46:8f:70:cd:98:4b:db:0c:b1:
94:9d:4a:6c:a2:00:a4:bf:c7:7a:8c:93:97:47:8c:
db:bb:9e:f2:2f:1b:26:d9:0a:71:ff:c1:1e:aa:74:
02:17:8b:8d:99:1c:88:60:db:c5:d0:ea:6a:04:3a:
20:a3:3b:c3:98:33:e5:45:77:46:84:6b:c5:3b:9f:
04:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:20:9E:71:1C:6F:40:C2:FE:34:13:5C:4D:32:5A:3E:A5:F0:15:ED
X509v3 Authority Key Identifier:
keyid:E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/vCCecRxvQML-NBNcTTJaPqXwFe0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.11.48.0/21
37.186.60.0/22
80.76.165.0-80.76.169.255
103.14.208.0/22
103.225.72.0-103.225.74.255
185.247.88.0/22
212.70.100.0-212.70.105.255
212.70.120.0/24
212.70.123.0-212.70.124.255
Signature Algorithm: sha256WithRSAEncryption
be:a8:0a:3d:c4:76:67:ea:75:b2:d1:f6:b9:93:26:01:ba:52:
ee:43:7b:94:b0:13:bf:1f:ce:12:40:51:b8:81:8c:0a:d2:99:
c9:ed:9e:d4:71:c2:4c:c2:e0:44:6b:50:fe:f0:27:ca:e7:d4:
d6:4f:a8:39:17:6e:cd:ed:fa:32:ac:e8:cf:58:9f:2f:5e:27:
2e:d5:a9:5d:4d:13:da:a8:d5:88:f6:19:69:a5:14:f0:a9:d4:
4f:ae:e4:d3:85:4f:5d:41:a8:3e:cf:a6:2f:ee:f9:f5:81:56:
ad:80:e1:e2:e9:a4:8a:bf:1f:b8:50:0c:6b:91:b8:b6:44:d5:
65:9d:bc:46:e6:4f:67:87:87:a3:da:73:3e:88:31:b6:c5:ef:
f3:f0:a9:ff:4b:9e:58:f3:be:cc:7a:66:01:95:de:20:35:ce:
3c:70:6b:96:db:13:ca:7a:0e:c9:45:c7:ed:45:33:25:34:d3:
44:9f:bf:87:a1:02:17:b8:98:28:e4:56:d3:42:75:33:62:30:
dd:36:36:d8:f7:ca:77:1a:e1:c9:8c:65:99:15:17:89:78:32:
b1:02:c5:5e:7f:29:85:04:92:1a:4d:84:9d:9c:36:60:d9:ac:
c5:5f:e5:18:4f:f5:e6:4e:c2:80:d4:4a:22:8d:3e:92:bd:24:
69:ee:12:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 14:03:25 2025 by rpki-client