Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/e01285-660d-4cd2-ad1f-625245a00abf/1/P3d183vDA-PuEKpA8QbqSTrMwbk.roa
File: P3d183vDA-PuEKpA8QbqSTrMwbk.roa (raw, json)
Hash identifier: 5Z0CpKy47hjBjsC3GHUOYig20NC4n+cedXxScWoqRHw=
Subject key identifier: 3F:77:75:F3:7B:C3:03:E3:EE:10:AA:40:F1:06:EA:49:3A:CC:C1:B9
Certificate issuer: /CN=c61953c08980adc94f2fa3a3c1ba95c40d21e7d3
Certificate serial: 0191E1371472081C297E49B3FF059EEA917B
Authority key identifier: C6:19:53:C0:89:80:AD:C9:4F:2F:A3:A3:C1:BA:95:C4:0D:21:E7:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhlTwImArclPL6OjwbqVxA0h59M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/e01285-660d-4cd2-ad1f-625245a00abf/1/P3d183vDA-PuEKpA8QbqSTrMwbk.roa
Signing time: Wed 11 Sep 2024 13:12:48 +0000
ROA not before: Wed 11 Sep 2024 13:12:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 1820
IP address blocks: 31.172.136.0/21 maxlen: 32
31.172.142.0/24 maxlen: 32
31.223.224.0/21 maxlen: 32
80.92.224.0/20 maxlen: 32
82.117.244.0/24 maxlen: 32
85.90.211.0/24 maxlen: 32
85.90.223.0/24 maxlen: 32
91.226.1.0/24 maxlen: 32
92.60.176.0/20 maxlen: 32
92.119.220.0/22 maxlen: 32
128.0.168.0/21 maxlen: 32
185.16.228.0/22 maxlen: 32
185.38.208.0/23 maxlen: 32
185.39.196.0/22 maxlen: 32
185.45.244.0/22 maxlen: 32
185.170.192.0/22 maxlen: 32
193.16.47.0/24 maxlen: 32
193.104.182.0/24 maxlen: 32
193.111.0.0/23 maxlen: 32
193.111.48.0/22 maxlen: 32
195.66.93.0/24 maxlen: 32
195.177.72.0/22 maxlen: 32
212.110.129.0/24 maxlen: 32
212.110.130.0/23 maxlen: 32
212.110.132.0/23 maxlen: 32
212.110.134.0/23 maxlen: 32
212.110.136.0/22 maxlen: 32
212.110.140.0/23 maxlen: 32
212.110.142.0/23 maxlen: 32
212.110.152.0/23 maxlen: 32
212.110.154.0/23 maxlen: 32
217.20.160.0/19 maxlen: 32
217.20.164.0/22 maxlen: 32
217.20.176.0/20 maxlen: 32
217.20.184.0/22 maxlen: 32
2a01:6b0::/32 maxlen: 128
2a13:8800::/29 maxlen: 128
Validation: Failed, certificate revoked on Fri 27 Sep 2024 14:37:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:e1:37:14:72:08:1c:29:7e:49:b3:ff:05:9e:ea:91:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c61953c08980adc94f2fa3a3c1ba95c40d21e7d3
Validity
Not Before: Sep 11 13:12:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3f7775f37bc303e3ee10aa40f106ea493accc1b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:9e:00:b9:5a:bc:b1:57:42:1d:55:9e:35:e1:
b5:a4:b7:06:da:eb:a7:4b:84:4a:35:40:b4:f5:e5:
79:bd:92:49:70:a6:de:68:60:36:d1:79:6a:97:a2:
ef:40:99:6f:c4:5f:9f:af:bd:44:f6:14:57:7e:89:
c8:63:ff:78:01:d2:51:e3:dd:2d:c5:6a:34:f2:28:
94:db:1e:b9:39:7d:38:82:06:93:54:00:92:59:f2:
39:ce:6d:79:aa:6a:d6:19:a4:53:a9:ed:08:99:78:
d2:e1:71:33:af:be:92:e7:b3:08:b5:17:8a:1f:ef:
16:dd:8d:3f:39:b5:2a:c0:6b:e6:e2:08:31:c3:72:
23:e1:aa:7c:cd:ad:77:5b:52:c4:c3:7d:1b:c2:2f:
a4:bd:b4:e6:fb:29:92:8a:22:9e:84:60:08:b6:1c:
d7:2f:7a:6f:82:82:6e:3d:ac:a9:24:49:4b:10:01:
dc:de:7d:67:ba:68:a6:14:86:e2:0c:d0:82:cc:57:
5a:a1:f4:c3:03:23:84:f6:a0:99:7d:58:b2:56:33:
16:58:9b:e0:ae:66:7a:c3:6e:66:04:eb:2d:c4:1c:
70:85:e0:11:77:4c:bd:d2:20:ed:08:62:66:43:32:
02:d4:1c:90:d0:11:87:fe:27:bc:e5:42:02:42:a8:
22:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:77:75:F3:7B:C3:03:E3:EE:10:AA:40:F1:06:EA:49:3A:CC:C1:B9
X509v3 Authority Key Identifier:
keyid:C6:19:53:C0:89:80:AD:C9:4F:2F:A3:A3:C1:BA:95:C4:0D:21:E7:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhlTwImArclPL6OjwbqVxA0h59M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/e01285-660d-4cd2-ad1f-625245a00abf/1/P3d183vDA-PuEKpA8QbqSTrMwbk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/e01285-660d-4cd2-ad1f-625245a00abf/1/xhlTwImArclPL6OjwbqVxA0h59M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.172.136.0/21
31.223.224.0/21
80.92.224.0/20
82.117.244.0/24
85.90.211.0/24
85.90.223.0/24
91.226.1.0/24
92.60.176.0/20
92.119.220.0/22
128.0.168.0/21
185.16.228.0/22
185.38.208.0/23
185.39.196.0/22
185.45.244.0/22
185.170.192.0/22
193.16.47.0/24
193.104.182.0/24
193.111.0.0/23
193.111.48.0/22
195.66.93.0/24
195.177.72.0/22
212.110.129.0-212.110.143.255
212.110.152.0/22
217.20.160.0/19
IPv6:
2a01:6b0::/32
2a13:8800::/29
Signature Algorithm: sha256WithRSAEncryption
9c:60:cd:ec:e9:67:c2:7c:00:f0:12:8f:f1:1f:9f:f5:60:22:
fe:2d:b5:a9:35:04:ed:a3:2b:3f:55:26:88:9c:d0:bf:5f:f2:
d7:e1:6d:23:ea:2c:1e:60:19:4f:27:1f:d6:64:db:41:7d:1a:
2f:eb:91:df:46:99:ca:ee:b8:62:c4:81:35:56:17:90:6c:bf:
d7:39:09:1b:c5:e4:20:72:f1:63:53:5d:e2:6c:9f:0f:35:14:
a1:46:36:4c:9e:e0:7c:5b:d0:99:38:6e:85:c5:56:9c:a9:78:
a2:ac:67:32:78:9a:2a:9a:22:e8:43:76:15:d1:0f:58:8a:ed:
b5:e2:8a:59:83:96:03:16:f7:48:35:28:e4:2c:6c:4b:c4:2b:
f7:1c:2d:57:a3:5f:1b:d0:ed:54:55:90:36:7f:67:c0:c7:60:
8b:7a:01:ba:98:0a:99:5b:bd:62:3d:f8:43:f5:e1:7e:9b:a1:
08:61:68:68:b0:33:e4:1c:97:23:20:6b:20:6e:89:9a:e1:4e:
3a:67:fc:51:c1:70:03:15:26:85:82:51:5f:c0:21:8a:1e:14:
d2:82:e7:e0:24:5d:19:11:ff:89:6d:bc:06:01:1f:9d:af:d0:
96:cc:52:f1:5b:a2:2d:4f:18:7d:a8:1e:fd:a1:9a:56:4d:0b:
9d:12:22:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 27 17:43:17 2024 by rpki-client on console-fra.rpki-client.org