Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/LX6kiCdM4dx4gdBMUN51h0wrISk.roa
File: LX6kiCdM4dx4gdBMUN51h0wrISk.roa (raw, json)
Hash identifier: mwr8vDlgr46iJYqeM9U06kfKff+NMGbmjh0s0N4hfTI=
Subject key identifier: 2D:7E:A4:88:27:4C:E1:DC:78:81:D0:4C:50:DE:75:87:4C:2B:21:29
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018E3C0BB95997D13B31592F5C92E15D6F23
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/LX6kiCdM4dx4gdBMUN51h0wrISk.roa
Signing time: Thu 14 Mar 2024 08:19:45 +0000
ROA not before: Thu 14 Mar 2024 08:19:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 5.181.84.0/24 maxlen: 24
5.181.85.0/24 maxlen: 24
5.181.87.0/24 maxlen: 24
45.88.139.0/24 maxlen: 24
45.94.170.0/24 maxlen: 24
45.94.171.0/24 maxlen: 24
45.132.181.0/24 maxlen: 24
45.151.3.0/24 maxlen: 24
85.209.120.0/23 maxlen: 24
85.209.122.0/24 maxlen: 24
85.209.123.0/24 maxlen: 24
146.19.125.0/24 maxlen: 24
193.30.241.0/24 maxlen: 24
193.57.41.0/24 maxlen: 24
194.242.97.0/24 maxlen: 24
195.177.95.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Mar 2024 06:47:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:3c:0b:b9:59:97:d1:3b:31:59:2f:5c:92:e1:5d:6f:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Mar 14 08:19:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2d7ea488274ce1dc7881d04c50de75874c2b2129
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:f3:06:9e:0d:59:6f:3b:72:4c:69:13:7c:bc:
a3:33:0f:ae:b1:83:e2:bb:ed:65:bc:84:21:76:5b:
7b:38:7e:49:df:4a:4d:43:6d:35:80:2b:27:79:7f:
41:56:67:90:bb:cf:8c:d6:39:4d:60:7d:1a:de:be:
d4:76:69:f3:27:e7:aa:60:51:e0:8f:7e:b2:ff:0c:
ff:c2:4e:76:58:75:67:05:3b:d3:59:5d:61:ad:e4:
5a:dd:9e:1c:b8:8b:bc:cd:40:a9:d8:d2:dc:45:ea:
70:cc:de:04:69:b2:b8:d8:71:1f:3e:19:eb:61:b2:
9a:eb:c8:ae:7d:bc:26:d7:fd:6a:c3:f0:20:23:33:
0c:da:d5:42:2d:6d:74:b1:27:52:4b:01:91:5d:7e:
04:bd:72:33:69:c5:c4:68:f0:d8:d0:87:29:70:9b:
e9:7d:fd:fc:e3:cd:a6:51:13:64:29:4a:42:55:32:
2f:b2:e4:a2:1b:c5:8f:84:cb:1c:1b:3c:2a:b0:dc:
91:3c:8a:d3:2c:d3:74:7b:cf:38:ee:95:1a:5d:4a:
74:dd:24:ed:05:7d:6d:a5:30:7e:a2:b9:9c:7c:e0:
f4:92:44:da:2a:05:06:92:2c:ff:48:35:89:cd:cb:
6f:26:43:37:ee:5a:cb:2f:53:00:1d:25:da:12:91:
27:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:7E:A4:88:27:4C:E1:DC:78:81:D0:4C:50:DE:75:87:4C:2B:21:29
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/LX6kiCdM4dx4gdBMUN51h0wrISk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.84.0/23
5.181.87.0/24
45.88.139.0/24
45.94.170.0/23
45.132.181.0/24
45.151.3.0/24
85.209.120.0/22
146.19.125.0/24
193.30.241.0/24
193.57.41.0/24
194.242.97.0/24
195.177.95.0/24
Signature Algorithm: sha256WithRSAEncryption
47:8b:59:e4:11:0e:66:80:c3:00:fb:cb:48:8c:55:70:3e:bd:
55:9d:93:8c:95:59:91:5d:aa:63:22:5c:2b:63:61:c0:79:4a:
1b:c4:93:3c:2e:33:9a:f5:44:83:7d:88:ae:9f:93:ec:e7:69:
76:51:a8:44:26:39:53:f7:74:95:df:aa:53:52:ac:01:e4:79:
11:12:af:ac:42:c8:f8:e3:7a:b3:7c:2f:ea:4e:47:c0:4d:1d:
ec:e9:c7:16:6f:44:42:44:47:c2:2f:7c:e9:9d:e5:9e:ae:0c:
d4:0a:33:1c:2b:86:60:85:2f:1c:c7:cc:e5:ad:05:f8:c2:b1:
22:d0:87:48:e9:16:75:f0:73:0f:28:01:89:fc:f5:03:3f:9f:
10:70:aa:52:91:da:ba:72:cc:3c:ce:c5:e5:e0:23:c4:3d:c6:
93:49:95:44:d9:cd:8c:43:54:58:a8:b5:cf:7d:a6:c4:2c:04:
a1:39:36:c3:ad:78:f4:ae:86:01:0f:f0:6a:f6:6f:c2:9a:43:
cd:df:a6:3f:7f:21:bb:11:b4:f5:ba:eb:a1:fc:dd:0d:a7:23:
5f:42:ed:17:49:e3:5c:9b:14:56:87:79:76:b7:8e:f2:e5:f2:
e5:d2:75:e8:64:d6:15:34:ae:4f:d3:9f:df:04:f1:12:3e:45:
a5:5c:09:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:18 2024 by rpki-client on console-ams.rpki-client.org