Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/5RjUcEgLQkysJoylhDopbPS5QOw.roa
File: 5RjUcEgLQkysJoylhDopbPS5QOw.roa (raw, json)
Hash identifier: JQ/ArPoGNGLQK7YUUSulLUE8gAiqhiyniqw3mDGTKuk=
Subject key identifier: E5:18:D4:70:48:0B:42:4C:AC:26:8C:A5:84:3A:29:6C:F4:B9:40:EC
Certificate issuer: /CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Certificate serial: 0190822F08DB423E7A28F470F6ED51F3C6C6
Authority key identifier: 6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/5RjUcEgLQkysJoylhDopbPS5QOw.roa
Signing time: Fri 05 Jul 2024 09:17:18 +0000
ROA not before: Fri 05 Jul 2024 09:17:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 19905
IP address blocks: 62.171.192.0/18 maxlen: 24
185.192.228.0/22 maxlen: 24
194.154.0.0/19 maxlen: 24
194.238.32.0/19 maxlen: 24
194.238.64.0/19 maxlen: 24
213.18.192.0/18 maxlen: 24
217.177.0.0/18 maxlen: 24
217.177.64.0/19 maxlen: 24
217.179.0.0/17 maxlen: 24
217.179.192.0/18 maxlen: 24
217.180.0.0/21 maxlen: 24
217.180.8.0/22 maxlen: 24
217.180.24.0/21 maxlen: 24
217.180.32.0/22 maxlen: 24
217.180.48.0/22 maxlen: 24
217.181.0.0/18 maxlen: 24
217.181.64.0/19 maxlen: 24
2a02:fb0::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 10 Sep 2024 21:18:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:82:2f:08:db:42:3e:7a:28:f4:70:f6:ed:51:f3:c6:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Validity
Not Before: Jul 5 09:17:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e518d470480b424cac268ca5843a296cf4b940ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:48:d2:81:df:64:52:26:5d:90:da:10:4d:7b:
9e:68:2c:a8:ea:0c:f8:ef:f1:57:05:a0:e3:21:a7:
c7:80:0b:6d:54:e2:9e:29:c1:ff:a9:7b:d6:89:f3:
cb:d7:cb:be:3b:49:2f:8f:c4:68:0d:40:ba:cb:18:
3f:68:78:28:bf:a3:f9:16:75:b9:d3:43:81:2c:30:
57:fb:b9:67:1a:ae:af:49:be:e7:69:d7:ff:c4:ba:
11:19:11:09:53:8c:fe:28:e0:b8:dd:34:34:6a:1b:
e2:4d:c4:ea:78:e5:5e:fc:e2:2e:a6:c6:68:83:90:
02:02:03:56:93:5d:ea:e1:b4:cd:39:ea:89:31:2e:
04:53:03:7f:e7:8b:29:79:ea:15:bc:a7:eb:a3:8b:
97:07:eb:0c:70:18:23:14:1c:bb:2c:40:94:44:e3:
a7:2f:8d:0e:db:f6:d4:82:cc:f9:ab:cd:20:af:14:
9d:2c:f6:79:55:9f:89:7d:8a:e7:98:40:37:79:2d:
91:ea:1b:82:be:56:23:a4:24:39:4a:97:01:cc:c6:
17:ca:9a:58:71:e2:74:aa:47:db:3f:93:05:bd:02:
87:cc:94:23:b4:e8:12:0c:92:4c:70:47:ac:07:09:
c2:f6:1a:8a:20:0d:67:5d:4d:b3:9d:db:e3:42:bc:
07:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:18:D4:70:48:0B:42:4C:AC:26:8C:A5:84:3A:29:6C:F4:B9:40:EC
X509v3 Authority Key Identifier:
keyid:6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/5RjUcEgLQkysJoylhDopbPS5QOw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/alg23em52u81qKf3TWMm9rQtp00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.171.192.0/18
185.192.228.0/22
194.154.0.0/19
194.238.32.0-194.238.95.255
213.18.192.0/18
217.177.0.0-217.177.95.255
217.179.0.0/17
217.179.192.0-217.180.11.255
217.180.24.0-217.180.35.255
217.180.48.0/22
217.181.0.0-217.181.95.255
IPv6:
2a02:fb0::/32
Signature Algorithm: sha256WithRSAEncryption
55:9b:53:48:e8:43:c8:4f:4e:8b:23:8f:13:0a:90:5e:79:4d:
54:82:78:ab:91:5b:3b:02:94:c9:e1:6c:a5:62:90:74:00:4e:
26:cc:56:04:3a:19:af:90:e8:74:a1:e5:5e:d0:83:b5:1f:c8:
08:30:98:d8:94:36:af:c4:19:94:16:3d:f1:b8:37:cd:c8:eb:
d3:c8:da:2c:54:48:d1:23:95:ef:73:93:64:3c:d4:ac:0a:86:
43:79:47:be:df:07:8d:c7:ee:38:68:43:43:c2:72:8a:66:94:
9d:fd:d2:a9:32:90:b2:69:2f:8d:f3:6f:a8:ed:1b:16:0f:bf:
f0:15:77:80:b4:29:92:c9:69:10:50:c8:57:05:67:df:20:7c:
52:e9:df:c2:62:ea:8d:74:d7:fe:cf:e8:3d:ca:70:e2:9d:42:
5b:3e:44:56:4c:78:9c:8c:34:fa:ba:58:cd:95:94:32:e9:7b:
b4:62:ad:e9:13:7e:e8:3a:7c:4a:28:7e:20:75:43:7c:39:2f:
50:f1:31:1e:62:33:35:73:94:72:62:45:66:86:a9:ed:46:f7:
4a:ec:c5:6b:2e:84:c1:db:86:3b:f7:7b:a2:56:47:fa:bc:84:
44:8f:80:8f:76:9e:e1:31:f1:8a:ff:6f:e9:d8:de:d0:9a:d2:
22:e2:32:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 11 01:02:12 2024 by rpki-client on console-ams.rpki-client.org