Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/276c24-2a7f-4726-8d9f-8bf4fe4c7732/1/N4Up7lXUE2W5zZ3M9z0XvtYsHQw.roa
File: N4Up7lXUE2W5zZ3M9z0XvtYsHQw.roa (raw, json)
Hash identifier: m4wj7GYgaCeJ1hYWchZjpRa6G4MTs/Ez7/qGIOg9Gr0=
Subject key identifier: 37:85:29:EE:55:D4:13:65:B9:CD:9D:CC:F7:3D:17:BE:D6:2C:1D:0C
Certificate issuer: /CN=fa56c7e660b1c74e3b0318b14338c3f00dd7bc72
Certificate serial: 0186F12D5C17245635F8FF486AE8AB58360E
Authority key identifier: FA:56:C7:E6:60:B1:C7:4E:3B:03:18:B1:43:38:C3:F0:0D:D7:BC:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-lbH5mCxx047AxixQzjD8A3XvHI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/276c24-2a7f-4726-8d9f-8bf4fe4c7732/1/N4Up7lXUE2W5zZ3M9z0XvtYsHQw.roa
Signing time: Fri 17 Mar 2023 20:05:27 +0000
ROA not before: Fri 17 Mar 2023 20:05:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57704
IP address blocks: 45.158.156.0/24 maxlen: 24
45.158.158.0/24 maxlen: 24
45.158.157.0/24 maxlen: 24
45.158.159.0/24 maxlen: 24
176.106.40.0/21 maxlen: 24
192.145.120.0/22 maxlen: 22
192.145.120.0/24 maxlen: 24
192.145.122.0/24 maxlen: 24
192.145.121.0/24 maxlen: 24
192.145.123.0/24 maxlen: 24
45.130.98.0/24 maxlen: 24
45.130.96.0/24 maxlen: 24
45.130.97.0/24 maxlen: 24
45.130.99.0/24 maxlen: 24
152.89.42.0/24 maxlen: 24
152.89.41.0/24 maxlen: 24
152.89.43.0/24 maxlen: 24
152.89.40.0/24 maxlen: 24
185.5.221.0/24 maxlen: 24
185.5.220.0/22 maxlen: 22
185.5.220.0/24 maxlen: 24
185.5.223.0/24 maxlen: 24
185.5.222.0/24 maxlen: 24
2a03:7c0::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:f1:2d:5c:17:24:56:35:f8:ff:48:6a:e8:ab:58:36:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa56c7e660b1c74e3b0318b14338c3f00dd7bc72
Validity
Not Before: Mar 17 20:05:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=378529ee55d41365b9cd9dccf73d17bed62c1d0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ae:9a:82:c3:0a:0f:38:06:f2:54:13:3e:a2:
44:0a:3e:1d:a6:7f:64:79:8b:1b:7c:e2:66:92:c3:
87:1b:44:44:07:bf:3b:03:19:c0:ff:b5:e7:a3:79:
df:32:7a:b2:dd:0d:0c:1b:5d:19:e5:83:55:c2:a5:
a0:d6:f9:46:87:23:2f:f3:64:96:11:b9:c1:4d:0f:
90:11:45:18:ce:27:29:26:9a:ee:38:dd:4e:6a:df:
b4:ec:67:72:e2:67:85:18:02:e7:b2:33:56:85:05:
19:93:23:0c:43:5b:b7:bd:d8:04:d9:1a:5c:4c:1c:
00:32:c1:be:e0:63:12:d8:73:6b:5f:76:9f:5d:17:
2f:6e:43:da:f7:0b:48:da:90:80:bb:80:15:36:1b:
2c:18:5b:b6:b1:dc:4f:ea:81:c2:16:97:2c:2d:84:
b5:bd:90:4a:71:31:2e:f2:fc:2f:b5:30:12:76:b7:
0a:5b:07:b1:0f:90:01:89:38:f0:69:6f:39:4c:f7:
33:1c:91:52:77:b8:e3:98:bc:84:43:70:0e:fc:c5:
ba:5c:2b:6e:3e:71:a6:c5:bc:38:0c:ae:d9:09:ad:
7a:80:bf:22:38:62:31:5f:4b:ad:27:48:50:62:63:
84:e8:d6:f8:63:2d:66:0f:88:37:6c:be:da:ad:c5:
77:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:85:29:EE:55:D4:13:65:B9:CD:9D:CC:F7:3D:17:BE:D6:2C:1D:0C
X509v3 Authority Key Identifier:
keyid:FA:56:C7:E6:60:B1:C7:4E:3B:03:18:B1:43:38:C3:F0:0D:D7:BC:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-lbH5mCxx047AxixQzjD8A3XvHI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/276c24-2a7f-4726-8d9f-8bf4fe4c7732/1/N4Up7lXUE2W5zZ3M9z0XvtYsHQw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/276c24-2a7f-4726-8d9f-8bf4fe4c7732/1/1-lbH5mCxx047AxixQzjD8A3XvHI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.96.0/22
45.158.156.0/22
152.89.40.0/22
176.106.40.0/21
185.5.220.0/22
192.145.120.0/22
IPv6:
2a03:7c0::/32
Signature Algorithm: sha256WithRSAEncryption
32:8a:30:fb:2b:79:f5:0c:5a:e8:11:ba:4a:b0:83:8e:10:97:
85:2b:68:82:c0:96:dd:c8:6b:f7:eb:5e:a8:60:76:63:79:d7:
24:7f:1e:4d:0b:bc:23:c8:17:ae:4e:bd:5b:e5:86:54:b0:bd:
dd:a9:2a:fa:6f:36:65:95:58:14:12:c4:4f:62:8e:fb:4c:d4:
8f:4e:72:cc:5d:aa:65:cf:4b:33:8f:7c:2c:3d:55:c2:ce:7a:
18:f2:72:d5:03:4f:bc:ed:91:bc:a6:4e:a1:a7:8e:ce:b9:e5:
21:32:5b:13:f4:ce:47:e3:db:b5:3b:3b:48:2b:43:0d:e3:23:
99:61:a1:f3:45:75:7c:45:d4:2f:3a:33:ed:99:43:20:87:09:
ed:da:20:94:c9:d7:9a:63:2f:4e:79:7b:41:17:58:2d:70:4f:
c3:a6:a3:ff:ac:a1:1c:ca:bc:1e:a4:d8:85:13:62:8f:17:67:
86:ee:91:fb:8a:9d:ab:17:d6:08:7f:b1:fe:3d:9c:9f:e9:2f:
67:cb:00:fe:9a:14:29:8e:0c:01:6c:e8:0d:b6:8c:7e:56:34:
4a:d9:49:35:b3:6c:90:3c:93:49:ab:5e:6c:eb:ba:14:23:f8:
15:6e:c0:79:07:c5:de:ff:98:07:c8:09:f5:aa:49:e2:59:59:
ad:e8:69:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:50 2024 by rpki-client on console-ams.rpki-client.org