Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/KGVGmme7AJssJEU7xj0lnjAxWZU.roa
File: KGVGmme7AJssJEU7xj0lnjAxWZU.roa (raw, json)
Hash identifier: Xd0jjj/5zR/ntJcZVhx8A0D2rQsZxCCnpYKZ91OyF9U=
Subject key identifier: 28:65:46:9A:67:BB:00:9B:2C:24:45:3B:C6:3D:25:9E:30:31:59:95
Certificate issuer: /CN=e7133dcaf2b1ebf5dade5a33aa1b2fb99d2689ba
Certificate serial: 018FCAC2B0AF8C54064827A8D8696E295F4D
Authority key identifier: E7:13:3D:CA:F2:B1:EB:F5:DA:DE:5A:33:AA:1B:2F:B9:9D:26:89:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5xM9yvKx6_Xa3lozqhsvuZ0mibo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/KGVGmme7AJssJEU7xj0lnjAxWZU.roa
Signing time: Thu 30 May 2024 18:28:27 +0000
ROA not before: Thu 30 May 2024 18:28:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 151.186.160.0/21 maxlen: 24
151.186.160.0/24 maxlen: 24
151.186.161.0/24 maxlen: 24
151.186.162.0/24 maxlen: 24
151.186.163.0/24 maxlen: 24
151.186.164.0/24 maxlen: 24
151.186.165.0/24 maxlen: 24
151.186.166.0/24 maxlen: 24
151.186.167.0/24 maxlen: 24
151.186.168.0/22 maxlen: 24
151.186.168.0/24 maxlen: 24
151.186.169.0/24 maxlen: 24
151.186.170.0/24 maxlen: 24
151.186.171.0/24 maxlen: 24
151.186.172.0/22 maxlen: 24
151.186.172.0/24 maxlen: 24
151.186.173.0/24 maxlen: 24
151.186.174.0/24 maxlen: 24
151.186.175.0/24 maxlen: 24
151.186.176.0/20 maxlen: 24
151.186.176.0/24 maxlen: 24
151.186.177.0/24 maxlen: 24
151.186.178.0/24 maxlen: 24
151.186.179.0/24 maxlen: 24
151.186.180.0/24 maxlen: 24
151.186.181.0/24 maxlen: 24
151.186.182.0/24 maxlen: 24
151.186.183.0/24 maxlen: 24
151.186.184.0/24 maxlen: 24
151.186.185.0/24 maxlen: 24
151.186.186.0/24 maxlen: 24
151.186.187.0/24 maxlen: 24
151.186.188.0/24 maxlen: 24
151.186.189.0/24 maxlen: 24
151.186.190.0/24 maxlen: 24
151.186.191.0/24 maxlen: 24
151.186.192.0/20 maxlen: 24
151.186.192.0/24 maxlen: 24
151.186.193.0/24 maxlen: 24
151.186.194.0/24 maxlen: 24
151.186.195.0/24 maxlen: 24
151.186.196.0/24 maxlen: 24
151.186.197.0/24 maxlen: 24
151.186.198.0/24 maxlen: 24
151.186.199.0/24 maxlen: 24
151.186.200.0/24 maxlen: 24
151.186.201.0/24 maxlen: 24
151.186.202.0/24 maxlen: 24
151.186.203.0/24 maxlen: 24
151.186.204.0/24 maxlen: 24
151.186.205.0/24 maxlen: 24
151.186.206.0/24 maxlen: 24
151.186.207.0/24 maxlen: 24
2a04:e4c4:5::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 12 Jun 2024 12:40:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ca:c2:b0:af:8c:54:06:48:27:a8:d8:69:6e:29:5f:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7133dcaf2b1ebf5dade5a33aa1b2fb99d2689ba
Validity
Not Before: May 30 18:28:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2865469a67bb009b2c24453bc63d259e30315995
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:03:a2:5b:69:a0:d3:33:be:8a:c0:1e:9c:d3:
43:45:75:dd:95:6e:0a:e9:6c:f4:71:b0:23:34:f8:
ff:e5:6c:1e:9c:84:bc:6f:89:4e:a5:bb:49:a5:82:
c3:c7:25:18:88:30:54:27:9e:af:38:cf:3f:4c:6d:
25:9e:68:9d:e4:41:c1:3a:62:7b:77:6f:fc:c3:c7:
b5:c9:33:47:b1:06:dc:bd:48:99:c8:4e:05:dd:97:
6f:4a:1a:a8:5b:a4:e9:91:d9:2e:92:3b:36:45:60:
ce:94:c5:09:72:aa:f8:1c:cb:d0:ea:62:1e:65:cc:
7d:80:8c:2f:75:78:e2:54:3d:49:57:0c:71:99:5b:
a7:be:ce:67:a2:dd:f2:37:a7:c7:c3:0c:4e:11:17:
67:4e:f0:fd:ae:e6:1a:f2:24:1a:e1:a7:f8:06:98:
dc:e3:14:9e:66:18:bb:da:59:6b:3a:5b:ec:76:58:
fa:72:df:d1:a3:0e:37:68:6a:6d:c6:57:6d:eb:8d:
41:a5:c6:0d:f5:27:a2:09:bc:6c:a4:4d:24:3c:a6:
df:d2:14:9e:82:56:a6:f4:5e:9e:53:42:30:0a:1e:
66:2a:b2:26:ef:77:26:c8:4d:48:e8:f2:e3:78:0b:
2d:ad:a2:21:e3:a0:da:b8:4b:54:ea:4b:45:03:27:
6f:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:65:46:9A:67:BB:00:9B:2C:24:45:3B:C6:3D:25:9E:30:31:59:95
X509v3 Authority Key Identifier:
keyid:E7:13:3D:CA:F2:B1:EB:F5:DA:DE:5A:33:AA:1B:2F:B9:9D:26:89:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5xM9yvKx6_Xa3lozqhsvuZ0mibo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/KGVGmme7AJssJEU7xj0lnjAxWZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/5xM9yvKx6_Xa3lozqhsvuZ0mibo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.186.160.0-151.186.207.255
IPv6:
2a04:e4c4:5::/48
Signature Algorithm: sha256WithRSAEncryption
6f:30:b5:66:82:8f:38:4c:42:d7:90:ff:56:af:d6:8f:c5:3b:
3f:6d:8a:5d:c6:4d:f5:82:50:c3:f9:b2:dd:1e:80:16:d2:db:
ca:60:c9:bf:3d:f8:5a:ce:ba:27:ce:7b:2d:cb:b0:d6:90:3f:
1b:1a:c5:c6:33:1a:e5:0b:c5:cf:04:21:40:c2:a4:92:e0:e2:
d5:5c:bd:f2:1d:83:c6:33:d9:f4:21:3f:2d:a5:01:9e:a5:35:
f6:d3:db:6c:b9:f5:c2:40:60:7a:4c:23:21:24:a0:e7:85:19:
ef:20:18:08:36:57:28:1f:76:53:9a:54:f4:a3:f5:27:11:41:
32:fc:6a:f6:3b:08:2c:7f:77:a1:53:53:37:60:b4:93:83:6e:
6f:45:30:87:86:ce:ae:16:3d:54:0d:e6:f7:22:be:b6:be:eb:
f6:ec:0d:c9:45:e7:5f:8f:44:6a:f1:ea:d8:f6:f7:5e:31:d9:
bc:96:31:dd:32:43:5f:ae:c0:ee:ee:76:31:ca:00:ef:e9:fa:
9d:36:4e:c9:6d:51:92:c7:8d:9b:de:59:c5:44:17:2d:ed:0e:
61:de:87:26:7b:e4:c3:55:83:2e:4d:17:75:bb:4b:71:63:f6:
c1:cb:d6:fd:4c:7a:f7:a6:be:df:89:f4:cb:8a:bc:9c:0d:49:
6b:0e:a5:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 12 18:13:01 2024 by rpki-client on console-ams.rpki-client.org