Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/3M3jGScqJYn-lFKk6d3iMjTL5Qw.roa
File: 3M3jGScqJYn-lFKk6d3iMjTL5Qw.roa (raw, json)
Hash identifier: xaWISeDOYP86MpU6frMyjK8sh6OstbfgOEvIdDORtSk=
Subject key identifier: DC:CD:E3:19:27:2A:25:89:FE:94:52:A4:E9:DD:E2:32:34:CB:E5:0C
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 018E86E1232B79C988DCDEF0F4EBFF8B6B72
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/3M3jGScqJYn-lFKk6d3iMjTL5Qw.roa
Signing time: Thu 28 Mar 2024 21:04:45 +0000
ROA not before: Thu 28 Mar 2024 21:04:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49581
IP address blocks: 2.56.247.0/24 maxlen: 24
5.253.246.0/24 maxlen: 24
37.221.92.0/24 maxlen: 24
37.221.94.0/24 maxlen: 24
45.13.227.0/24 maxlen: 24
45.84.196.0/24 maxlen: 24
45.84.198.0/24 maxlen: 24
45.131.108.0/24 maxlen: 24
45.131.111.0/24 maxlen: 24
45.137.201.0/24 maxlen: 24
45.137.203.0/24 maxlen: 24
45.142.104.0/24 maxlen: 24
45.142.107.0/24 maxlen: 24
45.147.7.0/24 maxlen: 24
45.151.56.0/24 maxlen: 24
92.118.207.0/24 maxlen: 24
185.117.3.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 05 Apr 2024 15:23:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:86:e1:23:2b:79:c9:88:dc:de:f0:f4:eb:ff:8b:6b:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Mar 28 21:04:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dccde319272a2589fe9452a4e9dde23234cbe50c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:67:a6:81:57:b8:57:2c:74:71:17:3b:2f:68:
49:f5:e1:b1:ec:ea:1c:e0:4c:b6:39:d3:d3:5f:05:
83:87:f6:ec:05:19:29:05:f2:35:88:64:97:0c:a9:
87:26:a1:d0:cb:de:20:b7:e4:34:34:d1:56:dc:15:
ab:30:f2:c1:2d:59:96:a4:ee:ed:b2:f5:5e:9c:a9:
96:b5:9e:3b:cd:f0:74:39:f5:01:03:42:81:ea:88:
33:37:8e:c7:94:7c:4f:f5:ba:18:94:49:68:a0:69:
10:a1:d6:1b:d9:90:4c:02:df:09:98:0f:92:e4:cb:
6e:93:07:6f:40:81:1e:8a:24:5f:9e:fe:4e:f0:84:
f5:de:ee:ac:b3:a3:df:e0:e8:3a:17:06:ab:a1:68:
c3:0a:04:ed:09:5c:ba:6c:7c:aa:98:82:b3:28:eb:
fb:58:80:6a:d2:7d:83:ce:93:17:5a:7d:43:39:3a:
4b:d3:c7:00:85:03:05:f6:07:08:c0:5d:42:bb:d8:
41:0d:0e:0c:33:35:78:7a:2d:c6:dc:4a:a0:40:ec:
9e:0c:e1:82:6d:d3:46:67:ed:ca:81:c9:3e:c7:74:
b4:05:43:ad:9f:06:b2:28:38:d7:4b:6d:e6:12:a3:
07:cd:18:27:e5:39:a6:27:86:99:65:c8:a8:d3:df:
a1:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:CD:E3:19:27:2A:25:89:FE:94:52:A4:E9:DD:E2:32:34:CB:E5:0C
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/3M3jGScqJYn-lFKk6d3iMjTL5Qw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.247.0/24
5.253.246.0/24
37.221.92.0/24
37.221.94.0/24
45.13.227.0/24
45.84.196.0/24
45.84.198.0/24
45.131.108.0/24
45.131.111.0/24
45.137.201.0/24
45.137.203.0/24
45.142.104.0/24
45.142.107.0/24
45.147.7.0/24
45.151.56.0/24
92.118.207.0/24
185.117.3.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:76:f3:dc:84:80:ed:6e:8e:23:28:00:2e:89:e9:0e:f3:a1:
0e:db:1b:23:4e:0b:7b:96:dd:88:13:fd:6f:6e:94:f2:cb:12:
71:ab:29:0d:6c:2c:b5:69:02:8c:e9:e6:86:19:38:f7:72:7d:
d5:c1:c6:5d:b8:d8:7c:c0:0d:5e:68:2c:e2:54:0e:ed:ca:fb:
f8:8e:55:0c:6b:c5:86:3f:8f:36:19:de:c9:73:09:ef:ab:13:
d6:52:60:b8:ac:97:a1:a9:76:a7:7d:d6:37:13:bd:11:1e:29:
c3:3a:8d:18:8d:62:01:8b:91:e8:9d:d6:27:62:90:8e:42:a4:
fd:fa:92:b4:af:32:28:c6:83:54:d7:36:a3:5d:04:5d:4a:e6:
39:02:50:4f:e3:0d:aa:7c:b5:5f:75:3f:25:9e:23:42:22:72:
d8:e0:e6:ff:ad:00:8b:d3:ff:64:df:f7:4b:c1:36:21:3d:f0:
b7:c7:49:c8:f5:49:1e:b1:94:65:31:f8:9f:af:bd:c9:cd:42:
2e:c2:0d:28:32:a2:41:ed:a3:b7:fb:94:70:7c:3c:4b:ec:e2:
63:36:2a:c9:17:fb:ac:87:cf:4c:a6:7a:f2:94:f1:53:74:f0:
ae:99:02:05:39:4f:82:b7:5f:fc:65:5c:b7:51:3e:29:9e:c4:
fb:39:9f:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 5 18:37:49 2024 by rpki-client on console-fra.rpki-client.org