Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/FrynfGIFeQStbiGLDNNKAW73vqw.roa
File: FrynfGIFeQStbiGLDNNKAW73vqw.roa (raw, json)
Hash identifier: ZEJdvTpXZG6eF++VjI48STpESGchZ/yM0NyDCqwOcjI=
Subject key identifier: 16:BC:A7:7C:62:05:79:04:AD:6E:21:8B:0C:D3:4A:01:6E:F7:BE:AC
Certificate issuer: /CN=7df132df13e4be53d8250c8c48420264eef6c14c
Certificate serial: 018E3E5C11EB49942C302F6494CFFF7C23C8
Authority key identifier: 7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/FrynfGIFeQStbiGLDNNKAW73vqw.roa
Signing time: Thu 14 Mar 2024 19:06:44 +0000
ROA not before: Thu 14 Mar 2024 19:06:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31362
IP address blocks: 31.14.43.0/24 maxlen: 24
31.14.53.0/24 maxlen: 24
31.14.54.0/24 maxlen: 24
31.14.100.0/23 maxlen: 23
37.156.245.0/24 maxlen: 24
84.247.29.0/24 maxlen: 24
84.247.55.0/24 maxlen: 24
84.247.56.0/24 maxlen: 24
86.104.124.0/24 maxlen: 24
86.105.169.0/24 maxlen: 24
86.105.170.0/24 maxlen: 24
86.106.156.0/24 maxlen: 24
86.107.31.0/24 maxlen: 24
89.33.45.0/24 maxlen: 24
89.33.238.0/23 maxlen: 23
89.34.5.0/24 maxlen: 24
89.34.93.0/24 maxlen: 24
89.35.55.0/24 maxlen: 24
89.35.117.0/24 maxlen: 24
89.36.19.0/24 maxlen: 24
89.36.92.0/24 maxlen: 24
89.36.148.0/23 maxlen: 23
89.36.196.0/24 maxlen: 24
89.37.41.0/24 maxlen: 24
89.37.159.0/24 maxlen: 24
89.38.138.0/23 maxlen: 23
89.40.77.0/24 maxlen: 24
89.40.136.0/23 maxlen: 23
89.41.63.0/24 maxlen: 24
89.42.14.0/24 maxlen: 24
89.42.35.0/24 maxlen: 24
89.42.214.0/24 maxlen: 24
89.44.104.0/24 maxlen: 24
94.176.128.0/24 maxlen: 24
185.99.91.0/24 maxlen: 24
188.211.27.0/24 maxlen: 24
188.211.30.0/24 maxlen: 24
188.211.31.0/24 maxlen: 24
188.240.12.0/24 maxlen: 24
188.241.104.0/24 maxlen: 24
188.241.105.0/24 maxlen: 24
188.241.184.0/23 maxlen: 23
217.19.9.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 Jul 2024 20:34:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:3e:5c:11:eb:49:94:2c:30:2f:64:94:cf:ff:7c:23:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7df132df13e4be53d8250c8c48420264eef6c14c
Validity
Not Before: Mar 14 19:06:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=16bca77c62057904ad6e218b0cd34a016ef7beac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:e8:62:18:0c:98:e3:de:c6:22:16:af:e2:36:
7f:8b:c1:75:77:90:4f:10:d1:f4:61:4a:9f:5c:72:
8b:a2:87:17:23:aa:e0:40:df:37:32:cf:97:e2:2c:
0a:11:92:73:0d:63:28:c6:b5:23:23:db:5f:03:85:
50:e5:ad:55:26:10:f0:3c:db:48:ef:92:69:9c:db:
78:23:e4:00:d9:d6:2f:cd:19:b7:ba:49:67:1e:3e:
b1:f4:52:97:9f:80:da:05:82:19:d7:2f:d0:0c:d0:
2d:0a:b5:74:87:73:55:2e:46:18:b6:c2:c3:a8:05:
d4:67:a2:73:27:99:17:21:91:f9:01:7f:d3:ee:ce:
9c:83:26:a5:fd:38:c8:2f:e8:f5:8e:8b:45:40:51:
20:2f:ef:af:50:88:58:e8:d7:80:27:12:b9:ec:7d:
bb:95:fb:43:a1:a2:0a:1d:85:d2:67:e5:c6:e2:15:
5b:1b:81:44:5d:47:07:83:5d:6e:12:d6:52:9d:09:
eb:ca:9d:9a:fa:36:3f:05:9c:85:06:5f:56:fe:9f:
d0:8f:31:87:bc:48:7e:e1:03:8e:5b:e8:ee:1f:3e:
aa:80:13:6d:9b:cf:f0:09:54:c6:59:aa:ec:32:7b:
a5:a0:6a:36:e9:0d:8b:0f:03:6e:a4:64:88:3c:5f:
5c:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:BC:A7:7C:62:05:79:04:AD:6E:21:8B:0C:D3:4A:01:6E:F7:BE:AC
X509v3 Authority Key Identifier:
keyid:7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/FrynfGIFeQStbiGLDNNKAW73vqw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.43.0/24
31.14.53.0-31.14.54.255
31.14.100.0/23
37.156.245.0/24
84.247.29.0/24
84.247.55.0-84.247.56.255
86.104.124.0/24
86.105.169.0-86.105.170.255
86.106.156.0/24
86.107.31.0/24
89.33.45.0/24
89.33.238.0/23
89.34.5.0/24
89.34.93.0/24
89.35.55.0/24
89.35.117.0/24
89.36.19.0/24
89.36.92.0/24
89.36.148.0/23
89.36.196.0/24
89.37.41.0/24
89.37.159.0/24
89.38.138.0/23
89.40.77.0/24
89.40.136.0/23
89.41.63.0/24
89.42.14.0/24
89.42.35.0/24
89.42.214.0/24
89.44.104.0/24
94.176.128.0/24
185.99.91.0/24
188.211.27.0/24
188.211.30.0/23
188.240.12.0/24
188.241.104.0/23
188.241.184.0/23
217.19.9.0/24
Signature Algorithm: sha256WithRSAEncryption
73:dc:4f:c2:87:db:a2:35:ac:b6:ab:12:89:62:cb:3f:f4:20:
f8:0d:ae:b4:5c:78:38:ab:d0:8f:aa:68:9e:cb:f1:74:93:d4:
f9:75:7e:04:5f:89:2f:07:e7:f7:fc:4e:0b:1c:37:27:6f:66:
00:05:55:02:d6:1c:9a:2e:6d:e8:40:0f:7a:24:bb:cd:96:f0:
42:a6:3f:d2:3a:dd:8b:e3:a9:c7:c9:ed:f3:e8:22:95:f6:2e:
56:58:12:ca:1a:dc:28:3b:ce:5c:bb:5a:61:de:99:67:58:4c:
a6:78:1e:00:08:b4:b5:44:8e:6e:df:9b:52:6c:17:df:f7:14:
97:56:63:f7:3b:3e:da:a0:70:0d:e5:0b:ff:12:0f:39:36:ec:
53:1a:0e:3f:1a:4a:9f:9f:cd:29:a9:46:2b:ae:36:82:d4:6f:
77:42:e3:1f:4d:9f:09:19:05:c2:dc:7e:d1:5d:12:56:96:de:
b1:ce:13:5a:ce:41:ec:d7:07:56:09:48:0f:e4:f7:8a:4b:fd:
32:4f:c3:2d:f4:ed:41:c1:7c:7c:75:12:61:3c:ff:68:68:fd:
66:93:a9:0e:fc:dc:3f:7b:23:fd:1e:f6:ba:ce:84:41:eb:d6:
ad:91:42:31:65:51:6e:65:0e:54:60:d3:b6:c8:e8:39:27:22:
3e:7b:19:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 22 21:47:39 2024 by rpki-client on console-ams.rpki-client.org