Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/b1a82a-490f-43fb-986e-26170da4a0b1/1/4SHqqKQPc9Hw600T3ErOnKxSAZ0.roa
File: 4SHqqKQPc9Hw600T3ErOnKxSAZ0.roa (raw, json)
Hash identifier: Lr1oqtidGc9ctQozk8wl4qOEtIRZL2jDbXAb8f1NSAI=
Subject key identifier: E1:21:EA:A8:A4:0F:73:D1:F0:EB:4D:13:DC:4A:CE:9C:AC:52:01:9D
Certificate issuer: /CN=6d69da44ae067fc1a98a5f6f05f12e545d0fc62a
Certificate serial: 018FC3E085EC8A0F9474AA5BE375E47D642A
Authority key identifier: 6D:69:DA:44:AE:06:7F:C1:A9:8A:5F:6F:05:F1:2E:54:5D:0F:C6:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bWnaRK4Gf8Gpil9vBfEuVF0Pxio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/b1a82a-490f-43fb-986e-26170da4a0b1/1/4SHqqKQPc9Hw600T3ErOnKxSAZ0.roa
Signing time: Wed 29 May 2024 10:23:42 +0000
ROA not before: Wed 29 May 2024 10:23:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56582
IP address blocks: 31.169.64.0/24 maxlen: 24
31.169.65.0/24 maxlen: 24
31.169.66.0/24 maxlen: 24
31.169.67.0/24 maxlen: 24
31.169.69.0/24 maxlen: 24
31.169.70.0/24 maxlen: 24
31.169.71.0/24 maxlen: 24
31.169.72.0/24 maxlen: 24
31.169.74.0/24 maxlen: 24
31.169.76.0/24 maxlen: 24
31.169.77.0/24 maxlen: 24
31.169.78.0/24 maxlen: 24
31.169.81.0/24 maxlen: 24
31.169.82.0/24 maxlen: 24
31.169.84.0/24 maxlen: 24
31.169.88.0/24 maxlen: 24
31.169.92.0/24 maxlen: 24
31.169.93.0/24 maxlen: 24
31.169.94.0/24 maxlen: 24
31.169.95.0/24 maxlen: 24
185.33.63.0/24 maxlen: 24
2a00:5740::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 05 Nov 2024 11:47:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c3:e0:85:ec:8a:0f:94:74:aa:5b:e3:75:e4:7d:64:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d69da44ae067fc1a98a5f6f05f12e545d0fc62a
Validity
Not Before: May 29 10:23:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e121eaa8a40f73d1f0eb4d13dc4ace9cac52019d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:66:d4:f8:5b:4c:9d:c0:8b:a0:29:7c:49:37:
44:59:26:22:14:cf:da:d0:ea:26:5d:c1:f7:2e:7d:
18:91:b4:99:36:84:35:01:9f:d7:cf:61:b8:2b:47:
55:bb:48:b0:ea:5c:e7:a8:27:c0:79:a4:9f:1b:e7:
07:cc:5b:84:4a:d5:63:0e:d8:d9:96:8b:8e:19:c2:
1c:69:fc:d7:d5:55:36:af:42:de:9e:fc:6d:e8:51:
96:5f:be:66:49:3b:68:20:95:f8:05:5c:d4:ba:bb:
df:be:20:5f:c2:02:a0:aa:e8:d8:00:a4:f0:bd:54:
5f:8c:0e:76:9e:6a:57:5c:c1:6b:13:bc:23:84:c2:
82:de:1c:61:00:2c:cf:94:8b:25:4f:17:c8:15:f4:
06:cd:3f:72:b7:08:ba:dd:a0:9b:f7:aa:b1:ef:e4:
68:36:c5:d5:94:2b:39:e4:db:78:81:82:aa:3c:3b:
1d:44:d9:ec:21:83:83:03:6b:5d:e8:68:04:b9:e4:
26:21:ed:7f:3a:f3:1b:94:c2:46:14:5f:a3:3f:a7:
f5:34:82:d7:9c:cf:06:a5:68:ee:70:9b:d8:38:26:
18:63:5e:0f:f3:47:78:a4:f5:25:1d:1d:ee:42:46:
ae:ab:4a:30:6c:ec:ab:66:7e:58:c6:b2:71:fc:3d:
37:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:21:EA:A8:A4:0F:73:D1:F0:EB:4D:13:DC:4A:CE:9C:AC:52:01:9D
X509v3 Authority Key Identifier:
keyid:6D:69:DA:44:AE:06:7F:C1:A9:8A:5F:6F:05:F1:2E:54:5D:0F:C6:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bWnaRK4Gf8Gpil9vBfEuVF0Pxio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b1a82a-490f-43fb-986e-26170da4a0b1/1/4SHqqKQPc9Hw600T3ErOnKxSAZ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b1a82a-490f-43fb-986e-26170da4a0b1/1/bWnaRK4Gf8Gpil9vBfEuVF0Pxio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.169.64.0/22
31.169.69.0-31.169.72.255
31.169.74.0/24
31.169.76.0-31.169.78.255
31.169.81.0-31.169.82.255
31.169.84.0/24
31.169.88.0/24
31.169.92.0/22
185.33.63.0/24
IPv6:
2a00:5740::/29
Signature Algorithm: sha256WithRSAEncryption
0e:87:dd:39:10:72:da:39:4c:6d:52:0e:2a:f6:b7:50:24:db:
27:0d:ff:56:20:1f:c9:33:e3:d7:2e:35:c7:35:c4:75:72:84:
b5:4e:f9:aa:81:32:c4:d1:4c:1d:d2:e4:e2:81:22:18:a0:aa:
27:50:9d:d4:a2:95:8f:68:e7:78:38:b3:c9:b2:06:7d:99:5c:
90:f2:89:93:e7:3d:d1:e8:13:81:c6:72:58:93:4d:c4:e8:b7:
6b:9b:a6:78:3c:5b:1d:5c:23:06:d9:26:ea:73:df:81:c3:d5:
f2:e5:be:53:02:1a:4f:75:02:3d:8a:df:c6:91:cd:45:a6:94:
02:35:85:a8:68:bb:e1:f3:45:b5:7c:be:26:c1:ca:fd:00:c5:
e2:92:d1:0e:9c:90:ac:8d:a3:8a:14:36:c0:3a:84:f5:67:8c:
d0:e7:d5:64:96:20:90:f7:42:09:27:71:6d:8d:a3:a6:1e:b3:
ef:2c:5c:06:3b:06:67:3f:e0:c5:ec:3e:c4:e9:c9:6c:a9:cf:
9b:e8:39:68:13:65:a3:bf:46:6e:dd:d5:b5:43:ba:d5:9f:12:
36:31:a5:aa:61:a3:00:3c:c9:76:27:c8:3f:e0:5c:9c:ef:85:
5b:7b:89:a1:16:fd:b7:a0:46:a2:6e:8f:32:fc:c6:bc:75:a7:
3f:eb:39:78
-----BEGIN CERTIFICATE-----
MIIFVDCCBDygAwIBAgISAY/D4IXsig+UdKpb43XkfWQqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkNjlkYTQ0YWUwNjdmYzFhOThhNWY2ZjA1ZjEyZTU0NWQw
ZmM2MmEwHhcNMjQwNTI5MTAyMzQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMTIxZWFhOGE0MGY3M2QxZjBlYjRkMTNkYzRhY2U5Y2FjNTIwMTlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArmbU+FtMncCLoCl8STdEWSYiFM/a
0OomXcH3Ln0YkbSZNoQ1AZ/Xz2G4K0dVu0iw6lznqCfAeaSfG+cHzFuEStVjDtjZ
louOGcIcafzX1VU2r0Lenvxt6FGWX75mSTtoIJX4BVzUurvfviBfwgKgqujYAKTw
vVRfjA52nmpXXMFrE7wjhMKC3hxhACzPlIslTxfIFfQGzT9ytwi63aCb96qx7+Ro
NsXVlCs55Nt4gYKqPDsdRNnsIYODA2td6GgEueQmIe1/OvMblMJGFF+jP6f1NILX
nM8GpWjucJvYOCYYY14P80d4pPUlHR3uQkauq0owbOyrZn5YxrJx/D03XQIDAQAB
o4ICYDCCAlwwHQYDVR0OBBYEFOEh6qikD3PR8OtNE9xKzpysUgGdMB8GA1UdIwQY
MBaAFG1p2kSuBn/BqYpfbwXxLlRdD8YqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYlduYVJLNEdmOEdwaWw5dkJmRXVWRjBQeGlvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS9iMWE4MmEtNDkwZi00M2ZiLTk4NmUt
MjYxNzBkYTRhMGIxLzEvNFNIcXFLUVBjOUh3NjAwVDNFck9uS3hTQVowLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS9iMWE4MmEtNDkwZi00M2ZiLTk4NmUtMjYxNzBkYTRhMGIx
LzEvYlduYVJLNEdmOEdwaWw5dkJmRXVWRjBQeGlvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHYGCCsGAQUFBwEHAQH/BGcwZTBUBAIAATBOAwQCH6lAMAwD
BAAfqUUDBAAfqUgDBAAfqUowDAMEAh+pTAMEAB+pTjAMAwQAH6lRAwQAH6lSAwQA
H6lUAwQAH6lYAwQCH6lcAwQAuSE/MA0EAgACMAcDBQMqAFdAMA0GCSqGSIb3DQEB
CwUAA4IBAQAOh905EHLaOUxtUg4q9rdQJNsnDf9WIB/JM+PXLjXHNcR1coS1Tvmq
gTLE0Uwd0uTigSIYoKonUJ3UopWPaOd4OLPJsgZ9mVyQ8omT5z3R6BOBxnJYk03E
6Ldrm6Z4PFsdXCMG2Sbqc9+Bw9Xy5b5TAhpPdQI9it/Gkc1FppQCNYWoaLvh80W1
fL4mwcr9AMXiktEOnJCsjaOKFDbAOoT1Z4zQ59VkliCQ90IJJ3FtjaOmHrPvLFwG
OwZnP+DF7D7E6clsqc+b6DloE2Wjv0Zu3dW1Q7rVnxI2MaWqYaMAPMl2J8g/4Fyc
74Vbe4mhFv23oEaibo8y/Ma8dac/6zl4
-----END CERTIFICATE-----
Generated at Tue Nov 5 16:38:35 2024 by rpki-client on console-fra.rpki-client.org