Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/sSP25UtHyuXEQK2Ki6LdE1YjwXg.roa
File: sSP25UtHyuXEQK2Ki6LdE1YjwXg.roa (raw, json)
Hash identifier: UP/RvTzVO8E6Fi3+F373x/eANyFgHgfWPVTUzBs4n8M=
Subject key identifier: B1:23:F6:E5:4B:47:CA:E5:C4:40:AD:8A:8B:A2:DD:13:56:23:C1:78
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 018AC249E5FFA869BE0157C58F89F34ED920
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/sSP25UtHyuXEQK2Ki6LdE1YjwXg.roa
Signing time: Sat 23 Sep 2023 13:45:37 +0000
ROA not before: Sat 23 Sep 2023 13:45:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 27882
IP address blocks: 181.41.144.0/21 maxlen: 21
181.41.145.0/24 maxlen: 24
181.41.144.0/24 maxlen: 24
181.41.150.0/24 maxlen: 24
181.41.151.0/24 maxlen: 24
181.41.149.0/24 maxlen: 24
181.41.147.0/24 maxlen: 24
181.41.148.0/24 maxlen: 24
181.41.146.0/24 maxlen: 24
181.41.159.0/24 maxlen: 24
181.41.157.0/24 maxlen: 24
181.41.158.0/24 maxlen: 24
181.41.156.0/24 maxlen: 24
181.41.158.0/23 maxlen: 23
181.41.156.0/23 maxlen: 23
181.41.156.0/22 maxlen: 22
189.28.64.0/24 maxlen: 24
189.28.64.0/19 maxlen: 19
189.28.71.0/24 maxlen: 24
189.28.69.0/24 maxlen: 24
189.28.70.0/24 maxlen: 24
189.28.67.0/24 maxlen: 24
189.28.68.0/24 maxlen: 24
189.28.66.0/24 maxlen: 24
189.28.65.0/24 maxlen: 24
189.28.78.0/24 maxlen: 24
189.28.76.0/24 maxlen: 24
189.28.77.0/24 maxlen: 24
189.28.74.0/24 maxlen: 24
189.28.75.0/24 maxlen: 24
189.28.73.0/24 maxlen: 24
189.28.72.0/24 maxlen: 24
189.28.83.0/24 maxlen: 24
189.28.84.0/24 maxlen: 24
189.28.81.0/24 maxlen: 24
189.28.82.0/24 maxlen: 24
189.28.80.0/24 maxlen: 24
189.28.79.0/24 maxlen: 24
189.28.85.0/24 maxlen: 24
189.28.90.0/24 maxlen: 24
189.28.91.0/24 maxlen: 24
189.28.88.0/24 maxlen: 24
189.28.89.0/24 maxlen: 24
189.28.86.0/24 maxlen: 24
189.28.87.0/24 maxlen: 24
189.28.95.0/24 maxlen: 24
189.28.93.0/24 maxlen: 24
189.28.94.0/24 maxlen: 24
189.28.92.0/24 maxlen: 24
203.88.98.0/23 maxlen: 23
203.88.96.0/23 maxlen: 23
203.88.96.0/22 maxlen: 22
203.88.97.0/24 maxlen: 24
203.88.98.0/24 maxlen: 24
203.88.96.0/24 maxlen: 24
203.88.99.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 23 Sep 2023 13:47:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:c2:49:e5:ff:a8:69:be:01:57:c5:8f:89:f3:4e:d9:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Sep 23 13:45:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b123f6e54b47cae5c440ad8a8ba2dd135623c178
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:a7:72:a4:a1:00:b0:19:9f:09:5a:0f:7d:dc:
be:69:5a:6f:30:a5:f9:97:42:ba:ac:d7:5a:eb:d5:
03:0e:24:b3:6c:ca:d9:c8:f1:4c:80:66:9c:ef:4b:
ad:88:d2:c2:04:45:a4:51:83:1c:c8:2a:63:d4:b0:
d8:33:f8:37:2f:d2:42:54:f3:ee:b4:38:e7:8d:d6:
d3:a6:34:04:70:61:4d:8f:07:41:df:4c:26:c4:06:
13:45:8b:1b:79:e2:a2:fc:07:83:a7:f5:16:38:65:
eb:23:aa:a3:e7:7e:0d:f1:37:7a:ae:ce:d6:a9:a6:
17:37:1f:39:e0:d1:cb:c5:3b:61:5c:ad:b3:c6:ff:
d4:2a:aa:17:de:b2:d3:59:6a:2b:e1:39:54:c2:1c:
89:db:a4:07:08:47:71:af:f4:5d:0b:a8:e4:3c:91:
3f:30:23:10:28:b9:df:a1:9d:c5:5d:fb:4a:c8:53:
62:eb:2c:47:8b:69:1c:10:28:04:77:a9:18:dd:a2:
0c:e9:eb:ec:04:1c:28:50:07:d4:03:d4:76:46:23:
3e:e9:0f:91:ff:39:1f:a1:50:f0:85:db:c5:96:6e:
a3:a6:17:cd:4c:e0:0a:0a:31:e8:43:e8:d7:5d:e8:
e0:a2:bf:18:aa:b1:08:f6:3b:3f:88:87:f0:07:b4:
db:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:23:F6:E5:4B:47:CA:E5:C4:40:AD:8A:8B:A2:DD:13:56:23:C1:78
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/sSP25UtHyuXEQK2Ki6LdE1YjwXg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.41.144.0/21
181.41.156.0/22
189.28.64.0/19
203.88.96.0/22
Signature Algorithm: sha256WithRSAEncryption
42:27:10:5c:0d:89:a0:e9:c2:ad:8d:71:f2:70:4e:a5:38:00:
e9:77:69:28:cc:b7:16:23:fa:b4:a0:95:0a:4d:2e:ac:6c:ac:
2d:6a:32:18:03:b5:04:a0:72:2c:75:1f:9c:55:e2:11:de:be:
c4:89:c1:68:58:53:97:25:2b:1c:7b:ac:1a:96:15:55:5e:8e:
bb:d9:4a:92:87:c8:08:82:f8:6f:7e:a1:62:4c:59:f8:23:60:
ed:46:cf:38:88:b7:23:a6:ee:70:42:17:4a:3d:51:5a:b6:b0:
f0:4e:ae:62:06:a0:bf:7b:3e:cd:50:4d:50:07:b6:b6:5f:7f:
57:94:63:b0:fc:04:a6:d3:98:54:ff:81:36:b1:91:08:6f:f3:
cf:24:aa:b0:cf:10:62:3a:15:13:0f:cf:8a:c2:f4:06:a2:13:
b9:4f:98:6a:fd:34:37:8b:d6:bc:24:90:af:56:74:29:ad:86:
f2:c5:af:ae:6a:90:d5:c8:fb:af:28:cf:c8:da:30:51:58:9b:
92:75:93:93:e8:28:d6:34:d2:f6:0f:a2:c9:93:82:60:e2:d8:
54:1d:2d:36:21:b7:b9:08:e7:a2:3b:20:b8:b6:c6:f3:7e:8d:
61:35:06:cd:a0:64:e6:ac:59:26:40:d4:3c:f4:c5:c7:ec:b1:
e9:28:56:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:56 2024 by rpki-client on console-fra.rpki-client.org