Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/fa3544-1025-4e8f-a8fe-7a28af29cdc2/1/5-2nd8JWP7Ep8C0iMFYwW69TuCA.roa
File: 5-2nd8JWP7Ep8C0iMFYwW69TuCA.roa (raw, json)
Hash identifier: YyxMRTRo1M2o953vqjHnMWANvzvJmqc62RULqxE1G3U=
Subject key identifier: E7:ED:A7:77:C2:56:3F:B1:29:F0:2D:22:30:56:30:5B:AF:53:B8:20
Certificate issuer: /CN=2c71c96005e13a84a3f31ef1d991777f4b6e31a7
Certificate serial: 018E095C3352B29F9F5FE5BFAD02D449A803
Authority key identifier: 2C:71:C9:60:05:E1:3A:84:A3:F3:1E:F1:D9:91:77:7F:4B:6E:31:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LHHJYAXhOoSj8x7x2ZF3f0tuMac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/fa3544-1025-4e8f-a8fe-7a28af29cdc2/1/5-2nd8JWP7Ep8C0iMFYwW69TuCA.roa
Signing time: Mon 04 Mar 2024 12:07:01 +0000
ROA not before: Mon 04 Mar 2024 12:07:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34602
IP address blocks: 31.130.128.0/21 maxlen: 21
31.130.144.0/20 maxlen: 20
45.151.60.0/22 maxlen: 24
77.50.0.0/16 maxlen: 16
77.50.0.0/23 maxlen: 23
77.50.2.0/23 maxlen: 23
77.50.4.0/22 maxlen: 22
77.50.8.0/21 maxlen: 21
77.50.16.0/20 maxlen: 20
77.50.32.0/19 maxlen: 19
77.50.53.0/24 maxlen: 24
77.50.64.0/18 maxlen: 18
77.50.128.0/17 maxlen: 17
77.233.192.0/19 maxlen: 19
77.243.96.0/20 maxlen: 20
81.17.144.0/20 maxlen: 20
91.204.128.0/22 maxlen: 22
94.141.160.0/19 maxlen: 19
185.185.140.0/22 maxlen: 22
2a00:e78::/33 maxlen: 33
2a00:e78::/34 maxlen: 34
2a00:e78:6000::/36 maxlen: 36
2a00:e79::/32 maxlen: 32
2a00:e79::/36 maxlen: 36
2a00:e7a::/31 maxlen: 31
Validation: Failed, certificate revoked on Thu 14 Mar 2024 10:33:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:09:5c:33:52:b2:9f:9f:5f:e5:bf:ad:02:d4:49:a8:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c71c96005e13a84a3f31ef1d991777f4b6e31a7
Validity
Not Before: Mar 4 12:07:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e7eda777c2563fb129f02d223056305baf53b820
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:6b:08:db:ff:2f:91:a5:10:c8:fc:0e:3d:b5:
15:d4:27:c4:51:6e:2d:dd:c3:ba:9b:4c:ef:06:80:
fd:79:98:8f:30:5e:a0:ae:60:dd:90:39:ce:c9:9c:
12:a9:6e:59:72:df:a1:37:50:d9:11:61:b5:d1:e5:
0b:5f:41:65:60:5d:a1:b8:00:e5:1e:8c:34:11:e8:
08:11:f4:85:92:52:13:96:4b:3f:d5:57:59:d5:8e:
a5:15:3b:95:84:15:1a:65:7a:bf:c7:70:6e:0c:58:
98:06:e6:15:7b:e8:12:38:54:74:37:46:02:62:98:
27:28:a1:5b:a5:8c:9f:db:1f:5a:ab:8f:5e:dd:bd:
36:4f:13:ca:ed:ef:34:a2:8c:1e:9a:c4:b3:12:5f:
3d:f9:38:79:a8:26:41:e4:50:3d:d4:5f:5d:f1:b4:
9b:b6:3d:d5:79:5b:17:bd:1a:b6:25:29:d8:c4:a8:
76:8f:68:9d:72:63:16:ec:f2:c0:f3:5d:0f:1a:61:
27:8f:46:72:7f:a3:08:e3:9d:21:b8:c4:e2:12:af:
23:84:c3:71:07:44:e3:63:06:86:0c:c7:73:42:4c:
cd:2d:d8:8b:fa:42:75:62:68:86:99:b4:d4:e1:8b:
59:f4:e1:17:20:56:a3:44:1c:a3:b3:3d:ca:cf:cc:
5f:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:ED:A7:77:C2:56:3F:B1:29:F0:2D:22:30:56:30:5B:AF:53:B8:20
X509v3 Authority Key Identifier:
keyid:2C:71:C9:60:05:E1:3A:84:A3:F3:1E:F1:D9:91:77:7F:4B:6E:31:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LHHJYAXhOoSj8x7x2ZF3f0tuMac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/fa3544-1025-4e8f-a8fe-7a28af29cdc2/1/5-2nd8JWP7Ep8C0iMFYwW69TuCA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/fa3544-1025-4e8f-a8fe-7a28af29cdc2/1/LHHJYAXhOoSj8x7x2ZF3f0tuMac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.130.128.0/21
31.130.144.0/20
45.151.60.0/22
77.50.0.0/16
77.233.192.0/19
77.243.96.0/20
81.17.144.0/20
91.204.128.0/22
94.141.160.0/19
185.185.140.0/22
IPv6:
2a00:e78::/33
2a00:e79::-2a00:e7b:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
2c:bf:e9:5b:7e:a0:0a:b6:7e:d1:55:88:b7:8f:90:04:fb:55:
bc:90:3e:c7:a9:3a:1b:12:7b:6e:a2:32:8a:e2:c0:b0:81:f1:
9c:0d:26:88:34:2f:80:4c:2f:1c:71:66:a4:33:da:ef:ae:53:
d6:20:31:b7:14:10:c2:ee:e0:f5:14:45:30:3d:43:56:06:25:
f1:01:80:92:b9:c6:23:ab:be:cb:de:2d:42:37:f1:f9:ff:bd:
1c:93:f8:de:d4:65:af:29:13:cc:17:61:06:f6:c5:f5:e6:a4:
96:a1:8d:ff:3d:5b:9f:82:a1:ca:76:3b:3e:4f:7a:f6:b6:f6:
b4:cd:95:fe:ee:15:17:04:c3:a9:93:11:b2:0b:67:af:68:eb:
a9:6f:96:2e:8c:cc:02:2e:b6:aa:6d:e3:0d:13:45:47:78:5a:
bc:18:3f:5e:f8:79:f7:56:79:36:b8:1c:9e:fb:a2:f1:ca:89:
15:b2:9c:3d:75:07:0b:5a:72:6d:d6:c4:8e:89:df:9b:4a:99:
a2:9b:68:f3:9d:f3:d3:63:df:49:fb:71:b5:e9:c6:1a:12:47:
a8:3b:00:c5:2d:b0:75:70:56:b7:12:62:be:8b:ea:8d:16:c3:
3f:4b:c9:b6:bf:30:24:fc:ad:f5:5c:6e:f3:5a:40:b7:f9:80:
ca:fd:fd:af
-----BEGIN CERTIFICATE-----
MIIFUjCCBDqgAwIBAgISAY4JXDNSsp+fX+W/rQLUSagDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJjNzFjOTYwMDVlMTNhODRhM2YzMWVmMWQ5OTE3NzdmNGI2
ZTMxYTcwHhcNMjQwMzA0MTIwNzAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlN2VkYTc3N2MyNTYzZmIxMjlmMDJkMjIzMDU2MzA1YmFmNTNiODIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjmsI2/8vkaUQyPwOPbUV1CfEUW4t
3cO6m0zvBoD9eZiPMF6grmDdkDnOyZwSqW5Zct+hN1DZEWG10eULX0FlYF2huADl
How0EegIEfSFklITlks/1VdZ1Y6lFTuVhBUaZXq/x3BuDFiYBuYVe+gSOFR0N0YC
YpgnKKFbpYyf2x9aq49e3b02TxPK7e80oowemsSzEl89+Th5qCZB5FA91F9d8bSb
tj3VeVsXvRq2JSnYxKh2j2idcmMW7PLA810PGmEnj0Zyf6MI450huMTiEq8jhMNx
B0TjYwaGDMdzQkzNLdiL+kJ1YmiGmbTU4YtZ9OEXIFajRByjsz3Kz8xfRwIDAQAB
o4ICXjCCAlowHQYDVR0OBBYEFOftp3fCVj+xKfAtIjBWMFuvU7ggMB8GA1UdIwQY
MBaAFCxxyWAF4TqEo/Me8dmRd39LbjGnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTEhISllBWGhPb1NqOHg3eDJaRjNmMHR1TWFjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi9mYTM1NDQtMTAyNS00ZThmLWE4ZmUt
N2EyOGFmMjljZGMyLzEvNS0ybmQ4SldQN0VwOEMwaU1GWXdXNjlUdUNBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZi9mYTM1NDQtMTAyNS00ZThmLWE4ZmUtN2EyOGFmMjljZGMy
LzEvTEhISllBWGhPb1NqOHg3eDJaRjNmMHR1TWFjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHQGCCsGAQUFBwEHAQH/BGUwYzBBBAIAATA7AwQDH4KAAwQE
H4KQAwQCLZc8AwMATTIDBAVN6cADBARN82ADBARREZADBAJbzIADBAVejaADBAK5
uYwwHgQCAAIwGAMGByoADngAMA4DBQAqAA55AwUCKgAOeDANBgkqhkiG9w0BAQsF
AAOCAQEALL/pW36gCrZ+0VWIt4+QBPtVvJA+x6k6GxJ7bqIyiuLAsIHxnA0miDQv
gEwvHHFmpDPa765T1iAxtxQQwu7g9RRFMD1DVgYl8QGAkrnGI6u+y94tQjfx+f+9
HJP43tRlrykTzBdhBvbF9eaklqGN/z1bn4KhynY7Pk969rb2tM2V/u4VFwTDqZMR
sgtnr2jrqW+WLozMAi62qm3jDRNFR3havBg/Xvh591Z5Nrgcnvui8cqJFbKcPXUH
C1pybdbEjonfm0qZopto853z02PfSftxtenGGhJHqDsAxS2wdXBWtxJivovqjRbD
P0vJtr8wJPyt9Vxu81pAt/mAyv39rw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:45 2024 by rpki-client on console-ams.rpki-client.org