Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/dZUUwTu-Vr125tqIuwQSUOzwpYA.roa
File: dZUUwTu-Vr125tqIuwQSUOzwpYA.roa (raw, json)
Hash identifier: rIpvnB/i9WyKfedTmoRqKNnZl3UTxFwfIBSosLkFkDs=
Subject key identifier: 75:95:14:C1:3B:BE:56:BD:76:E6:DA:88:BB:04:12:50:EC:F0:A5:80
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018B072EB74BF0094067C613DC87DC5E9498
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/dZUUwTu-Vr125tqIuwQSUOzwpYA.roa
Signing time: Fri 06 Oct 2023 22:49:43 +0000
ROA not before: Fri 06 Oct 2023 22:49:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30938
IP address blocks: 45.12.216.0/24 maxlen: 24
45.12.217.0/24 maxlen: 24
45.12.219.0/24 maxlen: 24
45.12.218.0/24 maxlen: 24
5.39.248.0/24 maxlen: 24
5.39.251.0/24 maxlen: 24
5.39.252.0/24 maxlen: 24
5.39.250.0/24 maxlen: 24
5.39.253.0/24 maxlen: 24
31.192.240.0/21 maxlen: 21
5.178.98.0/24 maxlen: 24
5.178.97.0/24 maxlen: 24
5.178.96.0/24 maxlen: 24
5.144.176.0/21 maxlen: 21
5.178.99.0/24 maxlen: 24
5.144.183.0/24 maxlen: 24
5.178.103.0/24 maxlen: 24
5.178.100.0/24 maxlen: 24
5.178.105.0/24 maxlen: 24
5.178.104.0/24 maxlen: 24
5.178.106.0/24 maxlen: 24
5.178.109.0/24 maxlen: 24
5.178.110.0/24 maxlen: 24
5.39.254.0/24 maxlen: 24
5.39.255.0/24 maxlen: 24
185.5.36.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 17 Oct 2023 08:11:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:07:2e:b7:4b:f0:09:40:67:c6:13:dc:87:dc:5e:94:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Oct 6 22:49:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=759514c13bbe56bd76e6da88bb041250ecf0a580
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:e6:00:c5:90:6b:ec:1b:2a:d4:49:51:3a:04:
49:d2:93:5e:be:f2:09:3d:53:d3:1c:c7:e0:d3:12:
48:5f:f5:ad:26:cd:7c:ff:ce:49:50:b1:71:41:a5:
89:d8:d7:87:1a:4c:48:4f:e7:9f:38:d5:15:a1:0d:
83:2e:af:06:39:09:9f:ca:a0:a6:00:34:d4:10:c0:
b5:9f:7d:00:46:00:e4:bc:ed:95:b5:71:9b:28:d4:
c5:1a:8b:32:2d:95:d8:bb:aa:fe:b7:5a:a9:90:bc:
49:8e:f9:11:66:56:12:c1:91:9c:e0:58:c2:2f:c7:
e8:32:61:14:da:f7:69:a6:9d:49:a2:92:ca:28:4d:
d3:f8:c7:34:ec:7e:81:6a:5e:ea:df:12:d9:84:4f:
4d:aa:b6:e7:e7:d2:04:94:4f:1e:b0:ad:11:7b:cb:
f5:54:e5:5a:24:b5:1d:31:36:9e:e7:53:45:f8:84:
88:63:e8:d7:46:6a:05:c8:df:d7:1f:9b:a9:83:bc:
9b:b2:4a:62:03:e9:24:68:2f:bf:0b:92:67:a8:3c:
cd:52:55:d4:f3:5f:94:34:84:07:05:dc:b6:39:17:
8e:a0:d7:1f:ed:83:f0:77:f8:6b:52:de:ba:90:4c:
7e:12:9c:4e:25:58:fb:0b:b0:57:b6:84:cc:a2:ff:
d8:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:95:14:C1:3B:BE:56:BD:76:E6:DA:88:BB:04:12:50:EC:F0:A5:80
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/dZUUwTu-Vr125tqIuwQSUOzwpYA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.39.248.0/24
5.39.250.0-5.39.255.255
5.144.176.0/21
5.178.96.0-5.178.100.255
5.178.103.0-5.178.106.255
5.178.109.0-5.178.110.255
31.192.240.0/21
45.12.216.0/22
185.5.36.0/22
Signature Algorithm: sha256WithRSAEncryption
76:13:05:4f:fe:35:aa:9e:ac:d9:29:70:55:80:6a:5b:b8:fb:
d4:8e:d7:76:a4:86:32:a0:34:3a:bf:42:30:0b:49:9b:92:99:
b6:8e:86:75:34:94:6d:9d:09:87:49:6b:f8:6a:2b:d8:df:b3:
68:df:2f:2c:1d:2c:d9:d6:8c:e9:a9:cf:fc:7d:f1:e7:ee:bf:
07:df:14:2b:b2:cb:93:01:96:c9:a8:9a:66:91:12:af:23:00:
d9:50:b0:61:8d:4a:86:6f:b3:a6:77:c4:b0:dd:00:3c:70:1a:
b4:e5:46:7d:84:6c:2a:b2:39:4e:69:e4:84:52:b9:96:e1:de:
80:26:a6:be:f6:19:57:2f:f1:25:1e:b2:64:b5:7c:5f:81:07:
b1:d7:2d:79:32:93:31:29:ee:45:ef:c2:0b:a6:13:b6:a5:3f:
6f:6a:94:b3:70:4c:0b:44:fd:23:ad:f8:ec:b7:a3:59:fd:13:
d0:3c:6b:cb:49:30:d8:59:22:b9:91:6b:1e:02:46:29:37:62:
f8:f0:7e:dc:c0:5d:35:08:25:f0:1b:f8:6f:52:43:42:ba:13:
ea:f5:bd:a4:08:30:51:9a:16:c5:2a:92:13:44:28:bb:1c:ca:
ce:8d:b0:a8:db:28:3d:f3:e3:f0:b2:d3:b3:0a:2e:e4:4c:78:
a6:b8:21:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:15 2024 by rpki-client on console-ams.rpki-client.org