Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/dc5a62-064b-45b0-b89d-c01f80a1c805/1/hGEylMRoE3aaSlGrbg-xiLzGudY.roa
File: hGEylMRoE3aaSlGrbg-xiLzGudY.roa (raw, json)
Hash identifier: HVYhKhyhhiMpEqu2BY1H9I4bpKlJagB1vAEZo8sJCFo=
Subject key identifier: 84:61:32:94:C4:68:13:76:9A:4A:51:AB:6E:0F:B1:88:BC:C6:B9:D6
Certificate issuer: /CN=0e0f4872ad1c1f4fcb213b6b2edb388a2d9c9a23
Certificate serial: 018E1AC4125072F263F84C7DA7DF5C49CCBD
Authority key identifier: 0E:0F:48:72:AD:1C:1F:4F:CB:21:3B:6B:2E:DB:38:8A:2D:9C:9A:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dg9Icq0cH0_LITtrLts4ii2cmiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/dc5a62-064b-45b0-b89d-c01f80a1c805/1/hGEylMRoE3aaSlGrbg-xiLzGudY.roa
Signing time: Thu 07 Mar 2024 21:14:01 +0000
ROA not before: Thu 07 Mar 2024 21:14:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5391
IP address blocks: 31.216.192.0/19 maxlen: 19
31.217.0.0/17 maxlen: 17
31.217.0.0/19 maxlen: 19
31.217.32.0/19 maxlen: 19
31.217.64.0/19 maxlen: 19
31.217.96.0/19 maxlen: 19
46.188.128.0/17 maxlen: 17
46.188.128.0/19 maxlen: 19
46.188.160.0/19 maxlen: 19
46.188.192.0/19 maxlen: 19
46.188.224.0/19 maxlen: 19
78.0.0.0/16 maxlen: 16
78.1.0.0/16 maxlen: 16
78.2.0.0/16 maxlen: 16
78.3.0.0/16 maxlen: 16
83.131.0.0/16 maxlen: 16
83.131.0.0/18 maxlen: 18
83.131.8.0/24 maxlen: 24
87.252.128.0/19 maxlen: 24
89.172.0.0/16 maxlen: 16
93.136.0.0/16 maxlen: 16
93.137.0.0/16 maxlen: 18
93.138.0.0/16 maxlen: 16
93.139.0.0/16 maxlen: 16
93.140.0.0/16 maxlen: 16
93.141.0.0/16 maxlen: 16
93.142.0.0/16 maxlen: 16
93.143.0.0/16 maxlen: 16
93.159.64.0/19 maxlen: 19
178.160.0.0/17 maxlen: 17
188.125.0.0/20 maxlen: 20
194.152.192.0/18 maxlen: 18
194.152.198.0/24 maxlen: 24
195.29.0.0/16 maxlen: 18
2a00:c30::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 24 Apr 2024 08:25:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:1a:c4:12:50:72:f2:63:f8:4c:7d:a7:df:5c:49:cc:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e0f4872ad1c1f4fcb213b6b2edb388a2d9c9a23
Validity
Not Before: Mar 7 21:14:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=84613294c46813769a4a51ab6e0fb188bcc6b9d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:74:40:a4:58:8b:1f:15:dd:6a:95:97:f9:8e:
05:28:3a:b7:b6:70:85:8b:da:9f:28:30:0f:ce:7f:
46:99:cc:b8:02:e1:66:54:52:59:1b:04:fe:a6:a4:
68:66:93:af:1a:d2:05:7c:db:6d:1f:da:8b:62:d6:
9b:98:52:f2:d3:82:47:5a:07:a2:d5:23:69:6b:11:
a9:4e:63:e9:95:10:68:e9:1e:df:b8:ef:4b:00:f0:
84:0d:83:c4:06:07:a9:c1:3a:69:ea:5f:26:6c:b2:
76:be:8d:10:48:3e:e7:b8:a5:27:8a:ca:3e:ac:87:
c1:9f:4c:11:ed:ab:6d:ed:64:78:da:b1:51:8a:13:
8f:b0:9c:0d:8d:75:07:d1:04:bf:ea:2c:ae:29:66:
3e:73:9c:c7:c0:6e:f2:4a:f0:83:24:80:02:60:dc:
0a:93:8b:57:59:b4:97:0d:d5:40:c3:b4:06:b4:45:
07:1f:fa:b5:23:d7:9e:82:77:d0:04:ff:2d:52:51:
08:54:7c:3a:e6:86:9c:9a:4b:94:d1:26:b8:c6:e3:
ab:32:9b:af:98:0e:0b:3e:99:e0:65:ae:49:41:0d:
61:93:bd:07:5c:6a:3c:57:fd:e2:47:98:3d:80:b1:
24:f5:35:d6:94:c4:45:e2:bd:60:99:8a:eb:f1:8b:
43:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:61:32:94:C4:68:13:76:9A:4A:51:AB:6E:0F:B1:88:BC:C6:B9:D6
X509v3 Authority Key Identifier:
keyid:0E:0F:48:72:AD:1C:1F:4F:CB:21:3B:6B:2E:DB:38:8A:2D:9C:9A:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dg9Icq0cH0_LITtrLts4ii2cmiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/dc5a62-064b-45b0-b89d-c01f80a1c805/1/hGEylMRoE3aaSlGrbg-xiLzGudY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/dc5a62-064b-45b0-b89d-c01f80a1c805/1/Dg9Icq0cH0_LITtrLts4ii2cmiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.216.192.0/19
31.217.0.0/17
46.188.128.0/17
78.0.0.0/14
83.131.0.0/16
87.252.128.0/19
89.172.0.0/16
93.136.0.0/13
93.159.64.0/19
178.160.0.0/17
188.125.0.0/20
194.152.192.0/18
195.29.0.0/16
IPv6:
2a00:c30::/32
Signature Algorithm: sha256WithRSAEncryption
68:fd:19:33:69:6b:1a:8d:75:1c:43:c8:88:5e:69:74:e1:a1:
26:b2:ed:51:4c:ce:1d:03:6e:67:e4:15:40:a8:a2:cd:16:e9:
f5:cb:af:26:5c:6e:d8:59:44:c1:61:b9:d3:68:68:b4:dd:f6:
83:1f:d9:37:e3:1d:1d:bc:34:ec:fd:6a:d3:a7:d3:e3:fd:a6:
d7:d8:89:fa:99:4f:02:6c:0c:a7:f5:86:cc:35:15:a1:c1:ae:
7a:b6:6a:d3:05:bb:08:5e:45:90:9c:de:c5:76:d5:bb:21:70:
57:dc:50:66:56:7f:1e:7c:a1:ce:29:84:30:a3:9c:f7:e0:0f:
e2:03:3b:40:26:fb:31:0a:e8:72:bc:6c:2d:ef:02:a3:05:8c:
95:66:ea:d1:0b:bd:a3:1d:f0:74:b4:78:bf:db:19:67:4b:4a:
55:20:04:2c:90:06:8f:01:3b:3c:61:36:1f:36:ed:42:43:da:
c3:5f:53:18:ce:83:bd:61:89:28:e4:ba:1d:70:ad:03:1e:8a:
5a:c1:12:de:74:54:13:07:de:d8:41:fa:54:ee:23:31:6a:f8:
2f:84:af:ba:b5:e6:2c:d1:f9:b6:dd:e9:82:23:28:c0:a5:5f:
46:15:05:4f:a8:37:1d:14:3f:df:df:5f:df:fb:bd:60:04:36:
12:e1:ee:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 12:34:47 2024 by rpki-client on console-ams.rpki-client.org