Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/30282c-3c82-4730-b95e-e745948983ed/1/b8pDreOvp0U0GZgkeWIUnlA8Obg.roa
File: b8pDreOvp0U0GZgkeWIUnlA8Obg.roa (raw, json)
Hash identifier: Sh8biXjIQCMXMKvX/zKoJgH5sDQgbcU2VlP1tp2daGo=
Subject key identifier: 6F:CA:43:AD:E3:AF:A7:45:34:19:98:24:79:62:14:9E:50:3C:39:B8
Certificate issuer: /CN=09e5518e68467b4290c3509268b6d6d664962c86
Certificate serial: 0188FBE5E9BD33C887E1BC9EDED985AFE87D
Authority key identifier: 09:E5:51:8E:68:46:7B:42:90:C3:50:92:68:B6:D6:D6:64:96:2C:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CeVRjmhGe0KQw1CSaLbW1mSWLIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/30282c-3c82-4730-b95e-e745948983ed/1/b8pDreOvp0U0GZgkeWIUnlA8Obg.roa
Signing time: Tue 27 Jun 2023 08:08:48 +0000
ROA not before: Tue 27 Jun 2023 08:08:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31515
IP address blocks: 161.30.169.0/24 maxlen: 24
161.30.130.0/24 maxlen: 24
161.30.129.0/24 maxlen: 24
161.30.28.0/24 maxlen: 24
161.30.33.0/24 maxlen: 24
161.30.40.0/23 maxlen: 23
161.30.44.0/24 maxlen: 24
161.30.203.0/24 maxlen: 24
161.30.8.0/24 maxlen: 24
161.30.9.0/24 maxlen: 24
161.30.7.0/24 maxlen: 24
161.30.5.0/24 maxlen: 24
161.30.16.0/22 maxlen: 22
161.30.12.0/22 maxlen: 22
161.30.22.0/23 maxlen: 23
161.30.237.0/24 maxlen: 24
161.30.238.0/24 maxlen: 24
161.30.236.0/22 maxlen: 24
2a11:ae00::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 25 Aug 2023 13:15:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:fb:e5:e9:bd:33:c8:87:e1:bc:9e:de:d9:85:af:e8:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09e5518e68467b4290c3509268b6d6d664962c86
Validity
Not Before: Jun 27 08:08:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6fca43ade3afa745341998247962149e503c39b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:97:b6:7a:30:ec:80:d7:e1:eb:d1:81:21:9c:
f3:1d:6a:0b:18:4c:44:40:f8:50:60:5c:91:26:c9:
3f:2a:18:49:99:e4:2e:15:2f:f8:4c:a5:98:2d:11:
b4:b7:0b:46:9a:54:c2:03:17:81:52:3f:a2:5a:dd:
8f:90:4b:72:fe:50:9e:c4:42:d8:aa:1b:9c:a2:71:
86:2e:17:98:c0:db:dc:f3:c6:6a:2f:d6:22:95:02:
9d:8e:37:33:fb:cc:e1:8e:cf:17:99:e0:77:74:b2:
83:9f:b0:b7:2f:ef:49:c5:8f:63:a4:45:82:e7:48:
7f:ae:45:96:ad:73:1c:5a:90:71:26:4f:d0:b1:35:
cf:93:81:21:35:27:bb:ff:d2:ff:19:1d:50:7c:ff:
60:4b:fd:63:08:99:54:6a:9b:2d:10:2e:74:39:6c:
e3:64:72:e9:26:65:7e:7d:ea:09:bd:25:b1:f2:aa:
93:5a:fc:23:89:c8:c9:fc:3c:bf:93:e8:72:49:db:
6c:96:ce:43:0e:4b:27:c3:9a:fb:66:cc:a6:17:79:
a1:cb:ed:a6:5f:93:c4:a9:00:07:57:01:56:9a:12:
30:12:78:50:b0:c4:2e:84:c7:c2:da:70:e4:1f:04:
5b:e0:a8:67:97:f2:0d:21:86:4b:9e:fb:48:a0:0b:
e4:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:CA:43:AD:E3:AF:A7:45:34:19:98:24:79:62:14:9E:50:3C:39:B8
X509v3 Authority Key Identifier:
keyid:09:E5:51:8E:68:46:7B:42:90:C3:50:92:68:B6:D6:D6:64:96:2C:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CeVRjmhGe0KQw1CSaLbW1mSWLIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/30282c-3c82-4730-b95e-e745948983ed/1/b8pDreOvp0U0GZgkeWIUnlA8Obg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/30282c-3c82-4730-b95e-e745948983ed/1/CeVRjmhGe0KQw1CSaLbW1mSWLIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
161.30.5.0/24
161.30.7.0-161.30.9.255
161.30.12.0-161.30.19.255
161.30.22.0/23
161.30.28.0/24
161.30.33.0/24
161.30.40.0/23
161.30.44.0/24
161.30.129.0-161.30.130.255
161.30.169.0/24
161.30.203.0/24
161.30.236.0/22
IPv6:
2a11:ae00::/32
Signature Algorithm: sha256WithRSAEncryption
93:c1:af:55:e5:56:12:5b:30:34:aa:27:4b:5d:5d:cf:0b:10:
d3:21:3a:e1:21:3f:6e:0a:53:d5:5e:ab:4f:80:93:cb:0f:de:
bc:30:07:c5:24:86:f1:e2:f1:b4:5e:6b:c6:38:e1:31:ee:29:
69:a6:d1:4c:9d:da:cb:35:2e:61:64:13:9b:7d:61:e5:d2:ca:
3a:3e:5a:b7:6f:c9:2d:1b:c3:b6:f0:39:92:b6:74:f3:07:4c:
c3:6f:aa:c7:2c:d4:8f:4d:4b:1d:8a:50:5a:08:fb:30:3b:ac:
fa:ba:89:e6:6c:62:a0:97:fb:1e:38:d4:b2:da:c9:48:61:e5:
69:99:ed:69:12:61:71:e0:02:29:cd:69:ec:bb:4e:d8:f8:11:
16:f4:ce:8c:81:90:b0:bd:64:7a:08:81:a7:df:bf:a9:75:16:
96:4c:4f:1c:83:a4:ed:8e:c4:5d:6d:93:8f:8e:86:81:08:81:
68:e9:87:b1:9b:a3:49:22:d2:54:d7:d6:75:10:f5:67:89:06:
c1:91:0c:25:50:17:76:93:c2:3b:3a:49:9f:7e:0a:ee:a1:3f:
fc:72:db:7e:48:d2:14:1b:ff:e6:d4:b4:3c:6e:ce:68:7f:c4:
58:e9:77:70:ed:34:5e:9d:89:5a:e0:04:f3:09:ab:72:37:8d:
78:12:02:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:25 2024 by rpki-client on console-fra.rpki-client.org