Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/a4c294-6b52-484e-8265-fc2f5fa77555/1/b5JkyjojpWM5RaI4DbA7DE03kz0.roa
File: b5JkyjojpWM5RaI4DbA7DE03kz0.roa (raw, json)
Hash identifier: IpyPcOiiHhLvEFuXeWLxa7n4J+ATa830DQ3wt1pEgiM=
Subject key identifier: 6F:92:64:CA:3A:23:A5:63:39:45:A2:38:0D:B0:3B:0C:4D:37:93:3D
Certificate issuer: /CN=8c7f325f9aaeb93a83c39e78145c41937d586b77
Certificate serial: 0189403DAD0B61A49D188933AE7FA673E9E7
Authority key identifier: 8C:7F:32:5F:9A:AE:B9:3A:83:C3:9E:78:14:5C:41:93:7D:58:6B:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jH8yX5quuTqDw554FFxBk31Ya3c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/a4c294-6b52-484e-8265-fc2f5fa77555/1/b5JkyjojpWM5RaI4DbA7DE03kz0.roa
Signing time: Mon 10 Jul 2023 14:38:51 +0000
ROA not before: Mon 10 Jul 2023 14:38:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16039
IP address blocks: 31.177.50.0/24 maxlen: 24
31.177.49.0/24 maxlen: 24
31.177.51.0/24 maxlen: 24
31.177.48.0/24 maxlen: 24
31.177.48.0/21 maxlen: 21
31.177.53.0/24 maxlen: 24
31.177.52.0/24 maxlen: 24
31.177.55.0/24 maxlen: 24
31.177.54.0/24 maxlen: 24
82.199.37.0/24 maxlen: 24
82.199.38.0/24 maxlen: 24
82.199.32.0/24 maxlen: 24
82.199.32.0/20 maxlen: 24
193.42.28.0/22 maxlen: 22
82.199.44.0/24 maxlen: 24
82.199.43.0/24 maxlen: 24
82.199.40.0/24 maxlen: 24
82.199.39.0/24 maxlen: 24
82.199.41.0/24 maxlen: 24
82.199.45.0/24 maxlen: 24
82.199.51.0/24 maxlen: 24
82.199.50.0/24 maxlen: 24
82.199.47.0/24 maxlen: 24
82.199.49.0/24 maxlen: 24
82.199.48.0/20 maxlen: 24
82.199.48.0/24 maxlen: 24
82.199.58.0/24 maxlen: 24
82.199.57.0/24 maxlen: 24
82.199.54.0/24 maxlen: 24
82.199.53.0/24 maxlen: 24
82.199.56.0/24 maxlen: 24
82.199.55.0/24 maxlen: 24
82.199.52.0/24 maxlen: 24
82.199.59.0/24 maxlen: 24
82.199.61.0/24 maxlen: 24
82.199.60.0/24 maxlen: 24
82.199.63.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:40:3d:ad:0b:61:a4:9d:18:89:33:ae:7f:a6:73:e9:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c7f325f9aaeb93a83c39e78145c41937d586b77
Validity
Not Before: Jul 10 14:38:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6f9264ca3a23a5633945a2380db03b0c4d37933d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:86:87:b8:7e:f7:76:87:41:a0:8b:5b:09:7e:
87:b5:40:5d:c7:74:72:4b:ce:5a:21:fc:5e:78:2e:
de:14:bb:03:4c:80:cb:9d:b6:60:79:4a:15:a3:14:
09:0c:e6:d9:eb:0a:60:34:d2:40:8e:17:b5:78:55:
8a:f3:47:17:37:84:27:5f:77:f2:af:9a:49:7d:9e:
d3:48:78:2a:14:ee:33:4f:90:5e:8f:2f:db:ac:d9:
3d:eb:8c:d4:b4:11:e3:e9:7b:bd:92:fe:6b:ef:49:
b7:45:44:3c:f8:ba:79:99:86:41:b5:1d:87:bb:c2:
1f:1a:e8:20:e5:76:60:41:2d:ba:d4:cb:4d:f4:83:
46:11:56:10:2c:9f:e3:57:8e:35:92:6c:74:fd:c3:
91:65:a3:e6:ab:9c:e3:64:d6:86:85:32:91:26:80:
6c:35:b6:af:cf:7a:c0:00:c0:b3:54:c7:f5:ed:81:
ff:90:36:86:41:94:7f:95:a2:53:af:a0:3a:27:5d:
d9:24:46:ac:30:98:e1:d4:b3:75:5b:fd:4a:3f:7d:
d8:a5:0a:e2:fb:5b:df:4e:6a:5c:44:42:88:30:85:
37:ca:30:c3:64:9f:56:31:66:e6:91:13:32:18:d0:
52:1a:86:9a:19:30:6d:69:65:65:8e:35:92:2c:11:
da:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:92:64:CA:3A:23:A5:63:39:45:A2:38:0D:B0:3B:0C:4D:37:93:3D
X509v3 Authority Key Identifier:
keyid:8C:7F:32:5F:9A:AE:B9:3A:83:C3:9E:78:14:5C:41:93:7D:58:6B:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jH8yX5quuTqDw554FFxBk31Ya3c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/a4c294-6b52-484e-8265-fc2f5fa77555/1/b5JkyjojpWM5RaI4DbA7DE03kz0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/a4c294-6b52-484e-8265-fc2f5fa77555/1/jH8yX5quuTqDw554FFxBk31Ya3c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.177.48.0/21
82.199.32.0/19
193.42.28.0/22
Signature Algorithm: sha256WithRSAEncryption
35:64:95:ae:1f:d5:d0:d9:fe:a5:e1:15:a7:c8:f3:ce:e6:ec:
84:c6:51:ee:4e:1e:d7:85:0c:7c:74:d2:c6:24:6c:17:80:ed:
49:05:79:43:40:33:c7:ea:00:97:3a:30:52:f5:86:cc:1e:ac:
5d:87:3d:18:40:bc:b8:69:cd:11:44:82:85:ef:bb:b3:0e:cc:
6b:cc:e0:45:77:2d:d0:da:9b:2c:36:a9:68:5e:db:e7:9d:b8:
28:7d:b6:78:db:67:67:96:aa:ff:d8:fe:c0:5e:03:02:f6:21:
76:3c:eb:7b:54:87:91:0e:ce:b8:59:e7:94:d0:93:9e:22:92:
fd:ed:7a:05:34:8e:44:c1:ed:5d:d5:dd:b1:a7:8e:a6:32:d1:
93:22:27:3b:aa:85:0a:43:0a:b5:9b:bf:2c:de:96:b1:87:01:
7a:45:a3:3c:d9:cf:86:40:07:37:e2:60:1b:7a:38:55:5d:5b:
fb:d0:9e:8b:b8:2b:dd:ed:01:db:ed:d6:37:5a:89:23:69:14:
0c:0b:3f:fa:1a:af:f4:cb:37:fc:f4:0b:a6:b9:de:4a:f6:e8:
2c:32:a8:82:b0:2d:01:44:08:79:3b:1c:2c:45:a3:9d:b2:3a:
27:a4:75:ee:9f:94:d9:dc:70:5b:75:9a:f1:7c:59:31:21:43:
0a:b1:fe:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:03:07 2024 by rpki-client on console-ams.rpki-client.org