Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/xE-Do6TgbUwGAkILRFcyRlBOUPM.roa
File: xE-Do6TgbUwGAkILRFcyRlBOUPM.roa (raw, json)
Hash identifier: LAXtrwOwrg8buhOGG/2aj84rpAkH34K0Hm/0deD3gqU=
Subject key identifier: C4:4F:83:A3:A4:E0:6D:4C:06:02:42:0B:44:57:32:46:50:4E:50:F3
Certificate issuer: /CN=b307c87e7b6e294f2700790eef19e82939d85cd6
Certificate serial: 018571FA1CC3C467DFC2BBABFD24E3060E38
Authority key identifier: B3:07:C8:7E:7B:6E:29:4F:27:00:79:0E:EF:19:E8:29:39:D8:5C:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/swfIfntuKU8nAHkO7xnoKTnYXNY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/xE-Do6TgbUwGAkILRFcyRlBOUPM.roa
Signing time: Mon 02 Jan 2023 10:14:54 +0000
ROA not before: Mon 02 Jan 2023 10:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212330
IP address blocks: 45.113.239.0/24 maxlen: 24
103.229.80.0/24 maxlen: 24
185.16.25.0/24 maxlen: 24
193.3.137.0/24 maxlen: 24
94.176.40.0/24 maxlen: 24
128.0.45.0/24 maxlen: 24
185.96.160.0/24 maxlen: 24
86.111.151.0/24 maxlen: 24
86.111.150.0/24 maxlen: 24
185.113.104.0/24 maxlen: 24
31.223.185.0/24 maxlen: 24
185.113.106.0/24 maxlen: 24
86.105.220.0/24 maxlen: 24
93.115.252.0/24 maxlen: 24
2a10:fa43::/32 maxlen: 32
2a10:fa42::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 15 Jun 2023 17:41:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:fa:1c:c3:c4:67:df:c2:bb:ab:fd:24:e3:06:0e:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b307c87e7b6e294f2700790eef19e82939d85cd6
Validity
Not Before: Jan 2 10:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c44f83a3a4e06d4c0602420b44573246504e50f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f1:02:3b:4a:59:94:02:b1:4b:74:ec:32:ac:
03:39:a6:b2:d3:d9:55:ba:54:c2:4f:c2:02:eb:16:
47:8a:2b:a5:85:71:7e:a9:b6:94:51:19:20:8e:e4:
18:da:75:10:f4:2c:27:ba:81:68:85:a0:b8:d1:06:
69:54:d6:1f:e5:e9:42:a5:59:38:6b:69:11:13:af:
8e:1f:dd:bd:4d:c7:58:fa:a5:4f:bd:3e:5b:3c:29:
40:20:03:29:48:e1:9a:2a:8f:29:d6:50:67:a0:96:
bf:4a:dc:d3:f0:2a:4c:16:f8:50:4f:b0:9b:9a:1d:
4d:eb:5a:9c:f9:65:1a:4b:d3:30:09:40:7e:5f:02:
24:13:43:6d:10:52:72:76:8e:0f:89:ef:a3:bb:e9:
52:0f:c7:17:ae:b5:0c:07:1c:c9:75:d1:32:12:24:
cf:26:1a:74:e4:23:02:fd:db:df:2c:0b:cc:af:0f:
e9:19:0d:0d:0f:17:07:8e:ef:7c:34:81:07:e9:a0:
cb:81:c1:f9:72:55:4d:12:a8:b8:35:5e:d3:f0:57:
8c:6f:db:ce:8c:18:e6:28:27:91:fd:28:26:58:2b:
2d:07:8d:63:f9:fb:1f:34:65:64:8f:45:53:1f:69:
ef:e7:9a:b7:14:35:37:74:ae:1b:63:ec:68:24:65:
87:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:4F:83:A3:A4:E0:6D:4C:06:02:42:0B:44:57:32:46:50:4E:50:F3
X509v3 Authority Key Identifier:
keyid:B3:07:C8:7E:7B:6E:29:4F:27:00:79:0E:EF:19:E8:29:39:D8:5C:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/swfIfntuKU8nAHkO7xnoKTnYXNY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/xE-Do6TgbUwGAkILRFcyRlBOUPM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/swfIfntuKU8nAHkO7xnoKTnYXNY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.223.185.0/24
45.113.239.0/24
86.105.220.0/24
86.111.150.0/23
93.115.252.0/24
94.176.40.0/24
103.229.80.0/24
128.0.45.0/24
185.16.25.0/24
185.96.160.0/24
185.113.104.0/24
185.113.106.0/24
193.3.137.0/24
IPv6:
2a10:fa42::/31
Signature Algorithm: sha256WithRSAEncryption
99:35:7c:26:7a:18:88:37:cd:6d:79:69:43:f4:c6:73:21:b5:
ce:b2:6a:4d:5e:21:e7:67:5d:3c:ab:37:15:20:2e:68:13:aa:
0a:63:6b:70:b9:64:72:ca:a6:f2:7e:9b:fb:67:22:60:a6:c1:
0f:df:59:76:e7:99:d7:8a:62:7f:9e:60:9b:a0:73:61:d9:98:
00:a2:6d:7b:54:29:80:9b:15:f4:b6:33:c1:62:d3:fa:3e:42:
57:c5:c0:c4:13:34:8d:a8:4a:a4:fc:7d:25:e7:56:5f:96:c0:
1e:f2:9c:fd:fa:a1:94:fd:89:e4:24:c0:7c:fb:8c:9f:19:5b:
2f:ca:86:e2:a3:47:9d:b5:ff:78:7a:e2:d2:81:ea:f8:59:cd:
b9:9c:6e:88:a5:4d:b6:ab:10:f3:4e:c3:f7:f0:83:e4:86:fc:
c7:83:eb:80:e8:43:8e:15:ce:1e:15:de:24:34:51:ec:92:df:
9e:37:e1:94:0a:8e:6a:7a:5b:9a:ec:9e:b8:57:dc:f1:df:b0:
23:95:b8:89:c8:d7:81:21:22:4a:01:27:99:33:b4:9a:2f:5c:
9b:8f:36:c1:ff:15:c1:d8:ec:93:fa:3d:57:a3:56:63:6a:b3:
ae:3b:b1:29:6c:02:48:43:3a:b9:00:05:08:5a:5c:8a:b5:a8:
66:e2:16:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:43 2024 by rpki-client on console-ams.rpki-client.org