Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/e01285-660d-4cd2-ad1f-625245a00abf/1/y2Vz4JuCXr2-PdhKFXLJAhx129A.roa
File: y2Vz4JuCXr2-PdhKFXLJAhx129A.roa (raw, json)
Hash identifier: D/tJJgtdDMktxBfM5STGd8XR/WRhbaRpfB2Pxk65c7o=
Subject key identifier: CB:65:73:E0:9B:82:5E:BD:BE:3D:D8:4A:15:72:C9:02:1C:75:DB:D0
Certificate issuer: /CN=c61953c08980adc94f2fa3a3c1ba95c40d21e7d3
Certificate serial: 0191E145BAA083F4C2A30BF716A3FB0EEC83
Authority key identifier: C6:19:53:C0:89:80:AD:C9:4F:2F:A3:A3:C1:BA:95:C4:0D:21:E7:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhlTwImArclPL6OjwbqVxA0h59M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/e01285-660d-4cd2-ad1f-625245a00abf/1/y2Vz4JuCXr2-PdhKFXLJAhx129A.roa
Signing time: Wed 11 Sep 2024 13:28:48 +0000
ROA not before: Wed 11 Sep 2024 13:28:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24685
IP address blocks: 31.172.136.0/23 maxlen: 32
31.172.136.0/24 maxlen: 32
31.172.137.0/24 maxlen: 32
31.172.140.0/24 maxlen: 32
31.172.141.0/24 maxlen: 32
80.92.231.0/24 maxlen: 32
80.92.233.0/24 maxlen: 32
80.92.234.0/24 maxlen: 32
80.92.235.0/24 maxlen: 32
82.117.229.0/24 maxlen: 32
92.60.178.0/23 maxlen: 32
92.60.178.0/24 maxlen: 32
92.60.179.0/24 maxlen: 32
128.0.170.0/24 maxlen: 32
128.0.172.0/24 maxlen: 32
128.0.174.0/24 maxlen: 32
185.38.209.0/24 maxlen: 32
185.39.196.0/24 maxlen: 32
193.111.0.0/24 maxlen: 32
193.111.48.0/23 maxlen: 32
Validation: Failed, certificate revoked on Mon 14 Oct 2024 13:48:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:e1:45:ba:a0:83:f4:c2:a3:0b:f7:16:a3:fb:0e:ec:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c61953c08980adc94f2fa3a3c1ba95c40d21e7d3
Validity
Not Before: Sep 11 13:28:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cb6573e09b825ebdbe3dd84a1572c9021c75dbd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:bc:49:ad:dd:b2:d1:e4:37:e0:b0:0b:71:c0:
9d:aa:80:b6:76:35:68:fd:e4:1c:3e:49:e5:1b:a0:
b0:87:9c:1f:8f:10:ef:35:4e:94:9c:8d:b9:41:7a:
30:7e:ee:13:6d:15:f8:c6:7d:e9:8d:03:b9:8b:0c:
d2:5c:f5:17:f9:48:6b:de:db:cf:5c:db:f1:94:2e:
45:b2:4f:eb:2e:3a:45:b6:f5:27:59:fa:74:ce:9e:
ce:7e:ba:1a:f9:bc:4c:f9:e3:81:e9:42:36:b5:06:
11:eb:fa:2e:2a:18:8f:00:b2:fd:21:d4:e2:34:5a:
c2:49:a9:9d:32:ed:0e:df:6f:68:a4:37:04:23:aa:
91:23:5e:c1:e9:36:fd:04:5c:96:91:df:b2:95:2f:
28:83:c0:aa:62:5a:b6:b6:28:33:cf:0d:10:27:66:
e2:d9:06:49:bc:81:a1:c9:52:84:38:42:47:58:92:
8e:f3:31:47:7b:6e:c7:0d:df:6b:ab:a2:f9:06:4a:
f0:8f:a3:86:43:cc:2d:59:13:f0:25:7d:32:fc:cf:
d5:6c:e7:4a:c4:d1:26:a9:bc:76:9e:96:08:93:fe:
af:ac:3f:2a:56:d8:6f:d8:cb:ab:9d:17:b6:0f:12:
43:71:00:79:98:a0:1e:1d:5f:27:5f:21:41:7a:81:
23:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:65:73:E0:9B:82:5E:BD:BE:3D:D8:4A:15:72:C9:02:1C:75:DB:D0
X509v3 Authority Key Identifier:
keyid:C6:19:53:C0:89:80:AD:C9:4F:2F:A3:A3:C1:BA:95:C4:0D:21:E7:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhlTwImArclPL6OjwbqVxA0h59M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/e01285-660d-4cd2-ad1f-625245a00abf/1/y2Vz4JuCXr2-PdhKFXLJAhx129A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/e01285-660d-4cd2-ad1f-625245a00abf/1/xhlTwImArclPL6OjwbqVxA0h59M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.172.136.0/23
31.172.140.0/23
80.92.231.0/24
80.92.233.0-80.92.235.255
82.117.229.0/24
92.60.178.0/23
128.0.170.0/24
128.0.172.0/24
128.0.174.0/24
185.38.209.0/24
185.39.196.0/24
193.111.0.0/24
193.111.48.0/23
Signature Algorithm: sha256WithRSAEncryption
39:12:17:86:e8:ff:0a:5f:9e:10:49:c6:19:cb:e1:74:2d:86:
dc:5e:e4:12:14:82:2f:ef:7d:05:64:5c:d6:3b:a8:82:76:89:
71:d4:a2:26:46:68:06:34:92:99:38:02:f3:6a:80:19:03:f5:
d1:6c:63:6a:34:ce:9f:bc:6b:f2:30:63:58:b0:c8:3b:87:87:
ac:62:79:61:e7:d2:cb:40:f9:20:c7:4b:65:5f:69:75:27:5c:
b3:69:00:79:6b:4b:78:33:7b:77:bf:f3:ab:63:fa:a5:e3:e2:
76:e4:73:63:97:7b:be:bb:d5:26:2e:06:72:dd:47:71:fb:26:
e2:c5:ca:49:96:49:f6:cf:9d:a5:82:61:0c:0e:9d:39:8c:59:
ca:8d:4e:10:1b:c1:b1:e3:cf:7d:c8:01:14:b5:e2:36:e5:6e:
50:b2:60:3e:04:3f:fd:ec:55:49:cd:3d:a0:59:36:19:b4:c5:
43:79:47:ef:75:55:8b:df:60:be:cd:1c:70:4d:4b:c1:64:28:
fe:05:1f:68:d8:f2:fd:0b:ec:cd:52:2f:27:b3:df:d8:c8:69:
4e:38:8d:cd:d6:e5:0c:5c:2d:d0:3c:6f:62:72:74:29:8a:fd:
0a:58:0f:29:73:79:38:ef:8f:d8:16:37:d5:2a:6b:4e:65:09:
7b:fa:8f:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 14 17:39:51 2024 by rpki-client on console-fra.rpki-client.org