Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/h_ymRrxBYxxt2Jf24kDN1HNZ96U.roa
File: h_ymRrxBYxxt2Jf24kDN1HNZ96U.roa (raw, json)
Hash identifier: LXvyekl2idjP1OaVoqHe9Hcr3y6BCmF2uV+3qjTz3zw=
Subject key identifier: 87:FC:A6:46:BC:41:63:1C:6D:D8:97:F6:E2:40:CD:D4:73:59:F7:A5
Certificate issuer: /CN=c2d2a234e224bf87996f2f0df559ead882f9e651
Certificate serial: 018E9664B166389419EF78FD62E0E741B34C
Authority key identifier: C2:D2:A2:34:E2:24:BF:87:99:6F:2F:0D:F5:59:EA:D8:82:F9:E6:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wtKiNOIkv4eZby8N9Vnq2IL55lE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/h_ymRrxBYxxt2Jf24kDN1HNZ96U.roa
Signing time: Sun 31 Mar 2024 21:22:45 +0000
ROA not before: Sun 31 Mar 2024 21:22:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50926
IP address blocks: 5.175.40.0/21 maxlen: 24
31.24.40.0/21 maxlen: 24
31.24.152.0/21 maxlen: 24
84.246.208.0/21 maxlen: 24
91.142.208.0/20 maxlen: 24
91.200.140.0/22 maxlen: 24
91.213.46.0/24 maxlen: 24
94.127.184.0/21 maxlen: 24
109.68.80.0/21 maxlen: 24
149.62.168.0/21 maxlen: 24
185.23.68.0/22 maxlen: 24
185.70.92.0/22 maxlen: 24
185.101.224.0/22 maxlen: 24
185.129.248.0/22 maxlen: 24
185.176.8.0/24 maxlen: 24
185.176.9.0/24 maxlen: 24
185.176.10.0/24 maxlen: 24
185.176.11.0/24 maxlen: 24
185.222.156.0/22 maxlen: 24
188.95.112.0/21 maxlen: 24
188.164.192.0/21 maxlen: 24
194.116.147.0/24 maxlen: 24
195.5.116.0/23 maxlen: 24
212.34.156.0/22 maxlen: 24
2a00:5ac0::/44 maxlen: 44
2a00:5ac0:100::/48 maxlen: 48
2a00:5ac0:147::/48 maxlen: 48
2a00:5ac0:180::/48 maxlen: 48
2a01:4b80::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Apr 2024 16:03:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:96:64:b1:66:38:94:19:ef:78:fd:62:e0:e7:41:b3:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2d2a234e224bf87996f2f0df559ead882f9e651
Validity
Not Before: Mar 31 21:22:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=87fca646bc41631c6dd897f6e240cdd47359f7a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:bd:75:02:9d:b5:f7:92:03:2d:d5:3f:a4:5d:
1a:1c:91:6e:3f:3e:fb:77:e7:19:04:7c:f9:ed:14:
83:0b:28:d2:9f:a5:9a:39:73:6b:08:9a:3b:44:86:
da:b1:52:68:4a:b6:7e:44:64:97:bf:91:4a:ef:ae:
76:5e:88:8d:84:02:11:90:ee:64:c2:8f:75:c8:a0:
1a:1c:5c:9c:f7:58:bb:d0:13:8b:9f:55:d4:39:0b:
74:a3:aa:28:b7:d8:27:57:d4:7b:a6:da:a1:82:d7:
0d:e6:53:66:8f:c7:8f:39:19:68:4f:c2:27:fa:38:
99:b7:3d:42:3a:c3:61:a6:35:e6:fb:5d:67:3a:89:
a7:67:93:8c:84:72:da:70:18:f4:45:13:2a:0d:b4:
2a:47:18:b1:b3:c2:8f:0d:ca:4b:02:35:53:38:13:
44:a6:d6:43:d9:fc:2d:5d:1f:f3:45:b6:23:22:e4:
e2:60:cc:25:bd:2d:ef:f5:c0:12:da:02:0f:e7:20:
a2:8a:4e:6b:d3:43:97:d1:8f:23:20:35:37:9d:84:
dd:b6:3a:d5:7e:14:d6:68:1f:fb:14:78:ce:6f:41:
af:90:28:4f:5f:61:a0:ad:31:48:28:de:af:49:c5:
4a:15:2a:2d:6a:04:6b:48:b9:97:c0:68:eb:b7:f0:
66:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:FC:A6:46:BC:41:63:1C:6D:D8:97:F6:E2:40:CD:D4:73:59:F7:A5
X509v3 Authority Key Identifier:
keyid:C2:D2:A2:34:E2:24:BF:87:99:6F:2F:0D:F5:59:EA:D8:82:F9:E6:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtKiNOIkv4eZby8N9Vnq2IL55lE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/h_ymRrxBYxxt2Jf24kDN1HNZ96U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/wtKiNOIkv4eZby8N9Vnq2IL55lE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.175.40.0/21
31.24.40.0/21
31.24.152.0/21
84.246.208.0/21
91.142.208.0/20
91.200.140.0/22
91.213.46.0/24
94.127.184.0/21
109.68.80.0/21
149.62.168.0/21
185.23.68.0/22
185.70.92.0/22
185.101.224.0/22
185.129.248.0/22
185.176.8.0/22
185.222.156.0/22
188.95.112.0/21
188.164.192.0/21
194.116.147.0/24
195.5.116.0/23
212.34.156.0/22
IPv6:
2a00:5ac0::/44
2a00:5ac0:100::/48
2a00:5ac0:147::/48
2a00:5ac0:180::/48
2a01:4b80::/32
Signature Algorithm: sha256WithRSAEncryption
23:9e:70:4f:68:5e:dd:2e:76:0e:f4:10:2f:75:42:b9:52:74:
67:d1:e0:8b:c9:d5:ac:59:a2:f5:34:47:41:b8:24:26:39:66:
71:6d:b1:20:5a:65:ca:f0:6e:63:c8:4e:52:2a:21:e5:e9:8e:
eb:f5:ed:1b:1e:68:c4:53:e4:60:27:1c:c4:a6:1d:f2:d7:60:
a1:65:01:e4:fc:19:12:28:38:c4:60:68:78:16:e8:a3:84:d0:
df:ad:33:2d:95:a1:3a:9d:45:7f:3a:00:ee:e1:8d:c5:55:f1:
2b:65:a0:4e:dd:50:ef:16:24:33:ce:ff:d7:a2:b1:b3:4f:2f:
1c:50:df:8b:d1:54:94:6b:22:c3:49:33:11:3a:68:c0:f8:75:
a1:ae:d4:d0:2e:08:68:ee:e2:8e:29:9b:6c:ca:35:7c:11:24:
2e:77:f5:c2:59:6e:62:30:47:86:69:c4:c2:11:ad:53:d5:ec:
06:9c:4d:1d:74:1c:84:ad:b6:b3:3c:7e:3f:ab:2c:07:15:e6:
7a:56:f1:6a:42:26:0a:29:37:36:6c:0a:0f:e1:6d:0f:d8:c5:
d5:44:5d:8f:7e:56:f7:b5:09:bf:e4:16:bb:86:2a:7d:fa:96:
48:6e:cb:00:1b:03:67:54:1e:5a:d1:d2:d2:65:a6:18:a5:24:
58:88:c8:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:04 2024 by rpki-client on console-fra.rpki-client.org