Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/T5jLpMt6t_oZ-W-ono1CgACyRDc.roa
File: T5jLpMt6t_oZ-W-ono1CgACyRDc.roa (raw, json)
Hash identifier: eOipcycHYylPKE8OfgPN2RyYxuzOo3AXewgRdP727p8=
Subject key identifier: 4F:98:CB:A4:CB:7A:B7:FA:19:F9:6F:A8:9E:8D:42:80:00:B2:44:37
Certificate issuer: /CN=abc8dbe52083ad335c9f1fde6016ec8b49293140
Certificate serial: 01886E220CAF2B857DDC50B7860F3A4A0CC2
Authority key identifier: AB:C8:DB:E5:20:83:AD:33:5C:9F:1F:DE:60:16:EC:8B:49:29:31:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q8jb5SCDrTNcnx_eYBbsi0kpMUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/T5jLpMt6t_oZ-W-ono1CgACyRDc.roa
Signing time: Tue 30 May 2023 19:28:25 +0000
ROA not before: Tue 30 May 2023 19:28:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15785
IP address blocks: 194.146.199.0/24 maxlen: 24
188.0.71.0/24 maxlen: 24
188.0.69.0/24 maxlen: 24
188.0.70.0/24 maxlen: 24
188.0.68.0/24 maxlen: 24
31.128.65.0/24 maxlen: 24
188.0.76.0/24 maxlen: 24
188.0.75.0/24 maxlen: 24
188.0.74.0/24 maxlen: 24
188.0.72.0/24 maxlen: 24
194.110.79.0/24 maxlen: 24
5.1.3.0/24 maxlen: 24
5.1.2.0/24 maxlen: 24
2a01:758:8306::/48 maxlen: 48
2a01:758:8301::/48 maxlen: 48
2a01:758:8305::/48 maxlen: 48
2a01:758:8300::/48 maxlen: 48
2a01:758::/48 maxlen: 48
2a01:758:8303::/48 maxlen: 48
2a01:758:8304::/48 maxlen: 48
2a01:758:8307::/48 maxlen: 48
2a01:758:8302::/48 maxlen: 48
2a01:758:8308::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 31 Aug 2023 08:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:6e:22:0c:af:2b:85:7d:dc:50:b7:86:0f:3a:4a:0c:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abc8dbe52083ad335c9f1fde6016ec8b49293140
Validity
Not Before: May 30 19:28:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4f98cba4cb7ab7fa19f96fa89e8d428000b24437
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:7d:69:66:50:1a:19:cf:a6:8c:38:36:10:d3:
70:86:6c:d0:81:6e:ed:c1:56:31:92:e1:ed:d7:8a:
9c:76:bd:65:5b:39:66:27:e5:d6:b4:ad:b5:9e:63:
a9:be:42:a7:9e:8d:98:a6:ec:ac:a3:06:02:bf:36:
0c:34:bf:5d:02:ee:c1:62:db:54:0c:ee:f2:95:70:
fe:0e:a1:e6:28:65:c4:00:37:47:81:87:ab:42:be:
15:35:55:02:ca:e7:82:ad:1a:de:8f:8b:ac:f7:e7:
a4:36:90:c9:b6:58:8b:02:af:f2:e3:66:41:49:e9:
aa:06:1a:e8:90:97:65:68:05:e1:79:6d:d3:7c:ed:
28:7e:e9:b4:b8:e9:6c:1b:6b:7a:d8:64:2e:31:65:
21:20:18:c3:23:12:cf:95:fd:b8:bb:f2:e9:ba:3c:
12:46:b9:7b:e8:fa:38:69:78:a3:46:62:29:38:7b:
e6:93:5a:68:85:04:b2:94:e3:cc:a5:81:3d:dd:28:
c4:bf:15:3f:c0:81:29:f4:f2:a3:1b:ff:bf:a4:31:
2e:f4:f2:fa:15:3e:21:32:45:9a:cf:f9:e5:b9:ee:
0c:30:a9:c7:55:2b:a1:63:c2:eb:e2:e1:49:b6:83:
80:78:bf:9e:dc:af:4c:00:10:bc:d6:a5:81:09:6d:
28:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:98:CB:A4:CB:7A:B7:FA:19:F9:6F:A8:9E:8D:42:80:00:B2:44:37
X509v3 Authority Key Identifier:
keyid:AB:C8:DB:E5:20:83:AD:33:5C:9F:1F:DE:60:16:EC:8B:49:29:31:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q8jb5SCDrTNcnx_eYBbsi0kpMUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/T5jLpMt6t_oZ-W-ono1CgACyRDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/q8jb5SCDrTNcnx_eYBbsi0kpMUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.2.0/23
31.128.65.0/24
188.0.68.0-188.0.72.255
188.0.74.0-188.0.76.255
194.110.79.0/24
194.146.199.0/24
IPv6:
2a01:758::/48
2a01:758:8300::-2a01:758:8308:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
a2:08:41:56:e9:42:83:4c:fc:17:32:09:c3:f4:6a:6a:ea:0e:
7a:6a:65:3a:0f:e1:9a:0c:59:36:a0:79:f4:c7:ab:e2:ba:8b:
b2:f5:33:5c:c5:e0:bd:a5:3b:58:d1:17:35:83:c8:f1:89:e6:
28:c0:6c:54:35:bf:a6:11:74:67:c5:58:d0:5a:66:3c:f6:02:
2a:81:41:e6:0b:99:64:1b:3b:62:ab:6d:38:16:c9:c5:80:aa:
6c:4a:42:2a:e8:d9:ae:6d:fd:12:76:d5:81:96:27:18:df:7d:
cb:9e:1a:96:83:14:d0:a1:29:1c:25:9a:61:64:4c:5b:75:5d:
22:cd:29:1a:f4:69:d5:16:3c:e2:1c:66:6d:46:84:bb:f2:6f:
74:10:df:92:a1:62:74:82:c3:fe:ad:c5:b1:7a:17:4b:45:00:
2e:8a:09:58:55:47:af:29:69:45:52:a2:d6:ce:5c:32:f8:22:
3e:f1:0c:23:b3:06:27:80:24:50:0b:38:ac:49:d5:ed:a7:66:
15:78:d3:f3:b6:d7:2b:6d:bf:b2:6e:9a:e0:0e:be:6c:cc:c7:
5c:47:dc:42:7d:f2:bc:54:93:1e:41:98:b4:38:98:43:e6:b8:
b2:86:61:56:e7:67:33:27:25:49:2d:17:79:3f:28:3e:6f:0d:
5b:ce:7a:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:32 2024 by rpki-client on console-fra.rpki-client.org