Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/237947-70c2-4661-a36f-6b497b2c0b38/1/w5uPL_BOAv6xglcHNNRbCv7GAaY.roa
File: w5uPL_BOAv6xglcHNNRbCv7GAaY.roa (raw, json)
Hash identifier: ktAi9a+vYJ/9U6MiTLs1jxxHrK2IPZCPtj6VnvNT2GM=
Subject key identifier: C3:9B:8F:2F:F0:4E:02:FE:B1:82:57:07:34:D4:5B:0A:FE:C6:01:A6
Certificate issuer: /CN=10a8c6e9308bb00083100171e00dbb6140f4f580
Certificate serial: 01864BA2DCCD98C30C6B13182AD1FB58405F
Authority key identifier: 10:A8:C6:E9:30:8B:B0:00:83:10:01:71:E0:0D:BB:61:40:F4:F5:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EKjG6TCLsACDEAFx4A27YUD09YA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/237947-70c2-4661-a36f-6b497b2c0b38/1/w5uPL_BOAv6xglcHNNRbCv7GAaY.roa
Signing time: Mon 13 Feb 2023 16:36:49 +0000
ROA not before: Mon 13 Feb 2023 16:36:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57948
IP address blocks: 185.70.44.0/24 maxlen: 24
185.70.45.0/24 maxlen: 24
185.70.46.0/24 maxlen: 24
185.70.47.0/24 maxlen: 24
91.236.244.0/24 maxlen: 24
91.236.245.0/24 maxlen: 24
171.25.229.0/24 maxlen: 24
2.57.42.0/24 maxlen: 24
2.57.43.0/24 maxlen: 24
2.57.41.0/24 maxlen: 24
2.57.40.0/24 maxlen: 24
2a05:2600::/32 maxlen: 32
2a05:2603::/32 maxlen: 32
2a05:2605::/32 maxlen: 32
2a05:2600::/29 maxlen: 29
2a05:2602::/32 maxlen: 32
2a05:2606::/32 maxlen: 32
2a05:2601::/32 maxlen: 32
2a05:2607::/32 maxlen: 32
2a05:2604::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:31:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:4b:a2:dc:cd:98:c3:0c:6b:13:18:2a:d1:fb:58:40:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10a8c6e9308bb00083100171e00dbb6140f4f580
Validity
Not Before: Feb 13 16:36:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c39b8f2ff04e02feb182570734d45b0afec601a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:20:9a:b6:fb:8c:65:4a:af:bb:02:51:2e:3b:
0e:5d:3c:67:d3:89:1b:ab:48:18:c4:ac:cf:d7:10:
17:f6:9b:88:35:95:54:fd:37:53:2f:e3:c5:09:4b:
21:c4:0f:00:9f:b9:db:22:51:1e:da:0e:e3:da:23:
f2:e5:23:ac:99:0a:06:73:25:3c:6f:4f:70:66:16:
17:58:ed:eb:64:b2:6f:f6:d2:c3:09:1e:86:4c:76:
92:a6:0f:f6:1d:9b:2a:71:fd:c4:bb:0d:8b:e2:8e:
d2:4c:52:0f:a1:91:33:35:35:31:81:23:bb:5e:d9:
2b:9e:a7:f0:54:b5:bf:14:96:e0:d2:82:ea:68:12:
71:0c:0c:b7:5e:62:9b:04:59:93:51:15:fc:84:1f:
41:63:9f:b3:27:7a:7d:5b:23:36:87:ac:c3:8b:bf:
68:d6:10:1e:e9:76:2b:54:ca:4a:19:14:8e:9a:d3:
38:f9:00:c7:27:ef:00:b6:f9:99:8d:68:ad:c4:90:
71:e1:df:b4:b0:a8:37:bd:8b:34:20:cb:f7:cf:9e:
60:ec:bd:e1:9d:55:d8:aa:47:29:4a:43:83:6d:5c:
19:b4:26:7e:1f:b7:2c:c4:03:5d:8c:14:ac:7b:4a:
71:79:cd:47:74:44:a2:4e:eb:1c:ba:64:e0:34:41:
c1:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:9B:8F:2F:F0:4E:02:FE:B1:82:57:07:34:D4:5B:0A:FE:C6:01:A6
X509v3 Authority Key Identifier:
keyid:10:A8:C6:E9:30:8B:B0:00:83:10:01:71:E0:0D:BB:61:40:F4:F5:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EKjG6TCLsACDEAFx4A27YUD09YA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/237947-70c2-4661-a36f-6b497b2c0b38/1/w5uPL_BOAv6xglcHNNRbCv7GAaY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/237947-70c2-4661-a36f-6b497b2c0b38/1/EKjG6TCLsACDEAFx4A27YUD09YA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.40.0/22
91.236.244.0/23
171.25.229.0/24
185.70.44.0/22
IPv6:
2a05:2600::/29
Signature Algorithm: sha256WithRSAEncryption
d0:fb:d4:1a:5a:65:a3:4d:54:76:8c:c7:bc:8f:df:fd:44:fb:
41:ea:75:46:99:bd:d7:9d:d4:9d:7e:90:cd:5d:25:5e:19:6f:
3b:34:cf:32:83:a4:97:1b:ec:8e:e3:b7:d0:6c:46:16:5e:80:
c5:8c:b3:78:9b:c4:45:f2:23:25:8a:7f:29:7f:8f:7c:98:37:
56:b6:5a:98:e6:55:15:28:5a:a4:e9:93:5f:e4:a6:a4:64:bd:
aa:fe:3b:63:56:e2:20:7d:15:a3:a6:ea:30:1b:4a:db:8d:57:
ab:23:e4:d8:60:cb:68:2c:90:a7:44:56:87:6b:19:1b:1e:bf:
65:3f:7f:3e:3e:83:86:b0:6a:06:c0:03:74:79:44:1a:b5:31:
59:2b:1e:b5:7e:33:f8:37:2c:e4:10:1a:39:3c:75:ef:a1:ec:
18:d4:10:77:4d:b0:81:69:7a:28:46:93:ca:68:73:2b:83:87:
40:db:c5:98:26:90:0d:0e:f3:f7:af:9e:47:00:5a:14:db:d8:
73:8a:b8:3e:38:07:9f:a9:76:ff:ea:30:34:95:5b:15:a1:f1:
fa:00:b9:08:ce:49:c4:7f:71:67:72:31:28:06:44:27:97:9a:
31:50:45:3d:77:d8:74:08:aa:31:1e:7d:37:eb:64:7e:e0:a4:
22:08:91:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:38 2024 by rpki-client on console-ams.rpki-client.org