Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/160a77-756d-441a-86c3-0e5392757f82/1/TX0BpmQZe9MxTeiU8xv-O67hwIA.roa
File: TX0BpmQZe9MxTeiU8xv-O67hwIA.roa (raw, json)
Hash identifier: CQt2mLj9xZA1zNmchRSoMKzFBi8ix5mpaZ5SGYlq80c=
Subject key identifier: 4D:7D:01:A6:64:19:7B:D3:31:4D:E8:94:F3:1B:FE:3B:AE:E1:C0:80
Certificate issuer: /CN=e39f1a6e84c0277efcb56d942b0eb5e456471129
Certificate serial: 018CC7274E2AE14987982B09E83AF61392EC
Authority key identifier: E3:9F:1A:6E:84:C0:27:7E:FC:B5:6D:94:2B:0E:B5:E4:56:47:11:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/458aboTAJ378tW2UKw615FZHESk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/160a77-756d-441a-86c3-0e5392757f82/1/TX0BpmQZe9MxTeiU8xv-O67hwIA.roa
Signing time: Mon 01 Jan 2024 22:31:31 +0000
ROA not before: Mon 01 Jan 2024 22:31:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39835
IP address blocks: 81.20.112.0/20 maxlen: 24
5.34.224.0/21 maxlen: 24
5.34.226.0/24 maxlen: 24
188.74.32.0/22 maxlen: 24
188.74.32.0/20 maxlen: 24
188.74.36.0/24 maxlen: 24
188.74.37.0/24 maxlen: 24
188.74.38.0/24 maxlen: 24
188.74.44.0/22 maxlen: 24
212.101.32.0/19 maxlen: 24
81.90.192.0/20 maxlen: 24
185.75.150.0/24 maxlen: 24
185.75.148.0/24 maxlen: 24
185.75.149.0/24 maxlen: 24
185.94.36.0/22 maxlen: 24
130.193.96.0/21 maxlen: 24
2a03:4b20::/29 maxlen: 40
2a03:6880::/32 maxlen: 32
2a03:4b20:f000::/36 maxlen: 36
2a03:4b20::/32 maxlen: 32
2a03:4b21::/32 maxlen: 32
2a02:1318::/32 maxlen: 32
2a03:4b22::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 31 Jan 2024 03:38:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:4e:2a:e1:49:87:98:2b:09:e8:3a:f6:13:92:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e39f1a6e84c0277efcb56d942b0eb5e456471129
Validity
Not Before: Jan 1 22:31:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4d7d01a664197bd3314de894f31bfe3baee1c080
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:b8:4a:85:91:86:b0:ca:42:b4:17:4b:77:91:
f8:ab:a2:20:88:84:c8:ae:fd:29:38:1f:94:91:ae:
59:7e:c7:34:22:1e:f6:c5:9c:3f:a3:6d:d5:88:f7:
d1:d0:44:18:39:02:8e:48:63:6f:d4:e6:f0:2e:50:
bb:3a:8d:1f:44:25:0b:c3:eb:06:db:d0:c9:9a:98:
55:87:9a:3f:0d:e5:94:0e:03:2c:5f:f7:1c:5e:91:
cc:a8:a8:ea:db:e3:b6:ab:39:18:20:b2:65:6f:dd:
c8:c0:79:22:dc:c4:02:d8:89:bd:34:2e:cb:37:5f:
8a:e0:0b:c9:53:30:91:18:b0:83:56:94:6d:2f:23:
b3:0f:cd:78:8e:58:0d:84:d6:c5:9c:0b:05:d4:65:
72:66:7c:5a:4e:0b:87:15:05:11:c8:1d:8a:01:09:
57:62:c3:12:1b:6b:07:bd:fd:4e:0b:76:22:62:40:
09:70:42:f1:69:6a:63:d0:64:2d:9b:00:7b:4a:52:
25:a3:98:e8:fb:f4:b9:0a:3c:11:51:77:86:3a:c0:
9a:a7:5c:23:7e:27:c7:86:ef:01:4c:67:12:7e:ba:
36:1f:01:36:a6:5e:da:f2:18:61:c6:5d:f4:d3:12:
0f:27:a5:70:69:36:16:59:df:a3:6e:8f:f5:84:5a:
cb:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:7D:01:A6:64:19:7B:D3:31:4D:E8:94:F3:1B:FE:3B:AE:E1:C0:80
X509v3 Authority Key Identifier:
keyid:E3:9F:1A:6E:84:C0:27:7E:FC:B5:6D:94:2B:0E:B5:E4:56:47:11:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/458aboTAJ378tW2UKw615FZHESk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/160a77-756d-441a-86c3-0e5392757f82/1/TX0BpmQZe9MxTeiU8xv-O67hwIA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/160a77-756d-441a-86c3-0e5392757f82/1/458aboTAJ378tW2UKw615FZHESk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.34.224.0/21
81.20.112.0/20
81.90.192.0/20
130.193.96.0/21
185.75.148.0-185.75.150.255
185.94.36.0/22
188.74.32.0/20
212.101.32.0/19
IPv6:
2a02:1318::/32
2a03:4b20::/29
2a03:6880::/32
Signature Algorithm: sha256WithRSAEncryption
77:26:fa:ec:26:3e:da:ee:82:04:6f:3b:bf:ff:fe:0c:a2:6e:
9b:82:19:a6:f5:db:36:d2:70:af:c8:79:91:5e:16:d7:bc:20:
e0:95:61:1f:f3:f6:71:bd:a3:3e:7f:0b:63:bb:37:e6:b6:34:
2e:6e:1e:a2:56:9b:e1:8f:a1:69:b2:63:27:60:ec:1e:cd:4e:
63:70:80:14:84:01:f8:c2:c6:ec:36:68:d3:7f:60:01:07:80:
d2:9c:69:15:ad:24:60:64:de:aa:41:4a:62:84:1f:13:79:55:
f4:f2:a4:59:ea:74:83:2e:1d:bb:8e:9b:84:55:6a:11:25:41:
fb:48:e4:68:01:03:13:40:1a:01:f1:a8:f2:67:66:2e:59:71:
ef:a5:f5:cc:fa:6e:98:cc:c2:25:eb:b7:4c:17:a3:4f:76:fa:
b2:f8:c2:b8:e6:c8:60:e6:b9:75:eb:e1:09:45:75:46:46:94:
57:1d:9e:0b:20:b2:f5:5f:63:75:4b:cc:a5:96:20:ac:7a:2c:
10:e1:4c:08:d5:c4:a7:a1:8f:62:99:5c:ba:98:bc:3c:8d:08:
ab:ff:b0:12:d7:f8:88:8d:7f:06:81:fa:f6:53:d0:7e:7d:50:
a9:07:aa:5d:90:1b:15:9d:8d:40:0c:58:e7:e1:2f:a0:34:31:
ca:bc:1a:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:27 2024 by rpki-client on console-ams.rpki-client.org