Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/699292-3da0-4772-af82-8334e362236d/1/4rNJ767yrWv6FRToAm9UGOGz7gY.roa
File: 4rNJ767yrWv6FRToAm9UGOGz7gY.roa (raw, json)
Hash identifier: PeSLt4BHMILwa0m4flMbvVRP5did285nF/JV+OlEgOg=
Subject key identifier: E2:B3:49:EF:AE:F2:AD:6B:FA:15:14:E8:02:6F:54:18:E1:B3:EE:06
Certificate issuer: /CN=8ceb23e2c5d9f2c734488904505835ef2809fb3b
Certificate serial: 01892A0311DD0A34D78E7544FA69BA9E452F
Authority key identifier: 8C:EB:23:E2:C5:D9:F2:C7:34:48:89:04:50:58:35:EF:28:09:FB:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jOsj4sXZ8sc0SIkEUFg17ygJ-zs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/699292-3da0-4772-af82-8334e362236d/1/4rNJ767yrWv6FRToAm9UGOGz7gY.roa
Signing time: Thu 06 Jul 2023 07:03:11 +0000
ROA not before: Thu 06 Jul 2023 07:03:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49813
IP address blocks: 109.105.128.0/20 maxlen: 20
109.105.137.0/24 maxlen: 24
109.105.139.0/24 maxlen: 24
109.105.138.0/24 maxlen: 24
109.105.133.0/24 maxlen: 24
109.105.144.0/23 maxlen: 23
109.105.144.0/21 maxlen: 21
109.105.146.0/24 maxlen: 24
109.105.147.0/24 maxlen: 24
5.63.132.0/24 maxlen: 24
5.63.128.0/21 maxlen: 21
Validation: Failed, certificate revoked on Thu 14 Sep 2023 12:39:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:2a:03:11:dd:0a:34:d7:8e:75:44:fa:69:ba:9e:45:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ceb23e2c5d9f2c734488904505835ef2809fb3b
Validity
Not Before: Jul 6 07:03:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e2b349efaef2ad6bfa1514e8026f5418e1b3ee06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:27:ff:05:b1:c6:0b:f9:8f:81:a2:a8:e9:6c:
58:b4:26:ed:bb:2f:61:71:3d:06:87:ba:40:79:a0:
39:be:4e:08:51:9c:7f:8d:ca:8b:11:0c:b0:8b:5a:
9e:c6:68:3c:c4:ee:fa:e7:f0:c0:bb:b9:12:b4:1f:
fa:fe:50:45:af:79:4f:8c:45:a7:5f:73:31:4a:53:
f3:50:f4:db:71:56:2d:39:4e:f7:6d:ef:a7:4d:67:
54:7f:e8:5c:d7:b7:82:20:bb:da:0c:0d:f8:b0:fb:
b3:d6:cb:3a:2d:0b:f0:66:7c:f6:2a:b5:d6:bc:74:
b3:9c:61:3b:27:8a:ab:8f:ff:39:46:40:11:13:5f:
f1:55:07:53:02:f4:b0:54:75:8b:7f:79:e3:98:aa:
53:8f:49:a6:f6:24:ce:bc:63:13:8c:98:11:f0:4a:
72:a8:d7:14:d1:be:8a:3a:0c:00:4b:1b:52:b3:37:
47:69:ef:c8:3d:f7:2d:23:27:78:1f:65:ad:a1:43:
f7:af:9f:71:f6:89:2c:2f:6d:a5:19:ae:42:49:46:
6f:2d:f3:2c:1e:c4:bd:09:46:eb:bd:73:37:96:3d:
c7:d1:31:1e:f5:dc:f7:05:48:b9:2a:ea:37:cd:36:
d5:32:68:8d:bb:52:d8:70:f8:54:16:a7:94:90:9f:
18:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:B3:49:EF:AE:F2:AD:6B:FA:15:14:E8:02:6F:54:18:E1:B3:EE:06
X509v3 Authority Key Identifier:
keyid:8C:EB:23:E2:C5:D9:F2:C7:34:48:89:04:50:58:35:EF:28:09:FB:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jOsj4sXZ8sc0SIkEUFg17ygJ-zs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/699292-3da0-4772-af82-8334e362236d/1/4rNJ767yrWv6FRToAm9UGOGz7gY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/699292-3da0-4772-af82-8334e362236d/1/jOsj4sXZ8sc0SIkEUFg17ygJ-zs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.63.128.0/21
109.105.128.0-109.105.151.255
Signature Algorithm: sha256WithRSAEncryption
49:d4:56:ab:1d:a0:67:74:6c:88:42:be:2d:f5:9e:e9:85:c8:
de:2f:3e:43:89:7f:03:0b:5c:b8:4d:18:cb:4d:80:3b:e2:fc:
18:b6:c1:c9:81:90:58:76:f2:54:40:d8:9d:a7:d6:2e:a9:4b:
e6:ff:b5:53:5a:49:6b:3b:5a:e7:5a:bd:5b:dd:5c:4c:80:79:
f0:1e:42:4c:11:48:1c:8e:80:4f:09:79:84:31:2d:2e:72:b0:
53:49:12:01:cc:e1:93:8c:9b:3b:ef:c0:3f:09:26:ec:f5:0f:
d4:38:ed:46:de:80:0a:6b:a4:28:15:60:29:21:f9:1d:7e:20:
c7:ef:75:f8:26:b6:a2:fd:49:59:bc:c5:ba:69:23:04:07:be:
f1:5b:6e:58:80:32:78:3a:5f:5b:63:92:9c:33:cc:1b:93:95:
49:a4:6b:78:5f:28:79:5c:3d:00:7e:ea:e7:bf:6b:30:91:ff:
bb:aa:6b:91:9a:4e:05:42:91:1f:30:c8:82:fb:f3:eb:10:c6:
b6:a2:6f:04:f6:76:ad:46:84:a1:66:e5:d0:62:31:c2:fc:3b:
fa:56:22:a9:36:13:82:e5:bc:28:71:50:d1:44:2c:11:6a:3b:
8e:93:ad:f1:0d:b9:6f:9f:a7:49:f3:00:8f:90:d6:32:8d:90:
b0:ff:08:fa
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:32 2024 by rpki-client on console-fra.rpki-client.org