Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/eb013f-5774-4e06-a5d4-ed5d6ce8d7e8/1/5dZdzLyx07QIFilk7As0VM3GobM.roa
File: 5dZdzLyx07QIFilk7As0VM3GobM.roa (raw, json)
Hash identifier: 7YMP8sBjEBM23l6xfM10it2uNPsQUdfvqaolSIZMXYg=
Subject key identifier: E5:D6:5D:CC:BC:B1:D3:B4:08:16:29:64:EC:0B:34:54:CD:C6:A1:B3
Certificate issuer: /CN=c7c24de99101fafdf74bca293fd6d95060d50a63
Certificate serial: 018BCD2072351CB20FBBA0F4003EF491125E
Authority key identifier: C7:C2:4D:E9:91:01:FA:FD:F7:4B:CA:29:3F:D6:D9:50:60:D5:0A:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x8JN6ZEB-v33S8opP9bZUGDVCmM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/eb013f-5774-4e06-a5d4-ed5d6ce8d7e8/1/5dZdzLyx07QIFilk7As0VM3GobM.roa
Signing time: Tue 14 Nov 2023 09:18:57 +0000
ROA not before: Tue 14 Nov 2023 09:18:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5410
IP address blocks: 31.32.0.0/13 maxlen: 24
213.44.0.0/16 maxlen: 24
62.201.128.0/19 maxlen: 24
80.214.248.0/21 maxlen: 24
195.36.128.0/17 maxlen: 24
80.215.0.0/16 maxlen: 24
62.34.0.0/15 maxlen: 24
212.194.0.0/15 maxlen: 24
176.128.0.0/10 maxlen: 24
80.214.192.0/19 maxlen: 24
194.158.96.0/19 maxlen: 24
5.48.0.0/14 maxlen: 24
80.214.0.0/17 maxlen: 24
164.177.0.0/17 maxlen: 24
194.117.192.0/20 maxlen: 24
89.80.0.0/12 maxlen: 24
87.88.0.0/14 maxlen: 24
128.78.0.0/15 maxlen: 24
94.238.0.0/15 maxlen: 24
80.214.128.0/18 maxlen: 24
2a04:cec0::/29 maxlen: 48
2001:860::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:cd:20:72:35:1c:b2:0f:bb:a0:f4:00:3e:f4:91:12:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7c24de99101fafdf74bca293fd6d95060d50a63
Validity
Not Before: Nov 14 09:18:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e5d65dccbcb1d3b408162964ec0b3454cdc6a1b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:99:7b:0f:a4:6c:84:5c:84:99:81:85:d1:aa:
22:11:58:90:55:4b:ae:f6:03:f4:70:1e:69:22:0b:
18:60:c0:b3:48:7a:48:f9:40:a7:98:5e:07:98:1f:
c1:b1:e4:79:17:d7:97:96:91:b4:27:e0:d7:91:86:
f9:50:91:06:d0:e4:38:09:e8:c7:72:da:87:e1:ac:
fd:69:87:09:88:d7:54:34:2d:ed:46:0d:6f:08:3c:
2c:a1:64:7c:05:1d:74:67:17:b2:63:52:6d:e7:c6:
0f:74:68:93:42:73:98:82:fd:da:cb:5e:0a:0c:1e:
21:0f:77:5a:ad:9a:3f:38:f9:c3:26:c3:08:1f:ff:
6f:a7:e5:b5:98:b3:03:72:82:c3:39:bc:42:22:15:
04:4a:c5:00:fe:be:88:58:e3:63:22:73:e8:dd:19:
d3:f3:f1:2a:0f:50:1d:5a:aa:a8:9a:14:77:08:04:
bb:80:44:03:7a:a2:2f:fe:b2:34:ad:c1:01:4f:be:
82:80:17:df:14:61:32:62:a0:76:c1:b9:e1:c0:49:
2b:aa:ed:70:87:4f:76:f2:64:a2:bb:51:18:5e:75:
27:22:1d:95:c2:29:96:16:97:ef:1b:1c:24:6c:8d:
a6:6e:14:07:39:4d:63:95:6d:d9:06:ae:22:33:d0:
43:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:D6:5D:CC:BC:B1:D3:B4:08:16:29:64:EC:0B:34:54:CD:C6:A1:B3
X509v3 Authority Key Identifier:
keyid:C7:C2:4D:E9:91:01:FA:FD:F7:4B:CA:29:3F:D6:D9:50:60:D5:0A:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x8JN6ZEB-v33S8opP9bZUGDVCmM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/eb013f-5774-4e06-a5d4-ed5d6ce8d7e8/1/5dZdzLyx07QIFilk7As0VM3GobM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/eb013f-5774-4e06-a5d4-ed5d6ce8d7e8/1/x8JN6ZEB-v33S8opP9bZUGDVCmM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.48.0.0/14
31.32.0.0/13
62.34.0.0/15
62.201.128.0/19
80.214.0.0-80.214.223.255
80.214.248.0-80.215.255.255
87.88.0.0/14
89.80.0.0/12
94.238.0.0/15
128.78.0.0/15
164.177.0.0/17
176.128.0.0/10
194.117.192.0/20
194.158.96.0/19
195.36.128.0/17
212.194.0.0/15
213.44.0.0/16
IPv6:
2001:860::/29
2a04:cec0::/29
Signature Algorithm: sha256WithRSAEncryption
06:69:d5:c4:47:dc:db:05:6c:2e:a9:b7:1e:e4:7d:ab:d7:f0:
4d:7d:f3:91:12:75:e8:a0:4d:17:7c:ab:5c:c9:6a:1f:57:49:
4a:75:a3:b3:17:bb:f7:cd:80:f3:b0:92:38:37:5d:59:8a:fb:
ce:6a:71:e1:fd:d2:49:8d:4e:a5:9d:6b:36:45:f8:d0:76:cb:
42:be:e5:2f:e5:1f:eb:bd:54:ae:64:01:b7:78:7d:35:3e:01:
69:f5:d4:f2:ab:01:bd:bd:9b:33:c5:e3:50:ce:b8:84:d5:7c:
18:ab:d5:a2:22:ef:99:c5:01:0e:54:90:5f:b3:8d:b3:dd:f0:
4d:f7:7f:62:11:dd:bd:be:70:3a:68:9c:af:b6:37:72:4e:54:
87:de:55:0c:b6:49:32:19:5c:d5:bb:af:c8:cf:9c:3a:42:97:
c5:9b:9e:51:60:62:06:ad:bb:9b:d4:d4:0f:24:42:d1:76:c3:
ea:a7:1b:af:10:61:03:ad:8d:48:26:17:c7:f2:65:b1:aa:7d:
89:c8:ea:a6:c0:9e:38:71:81:99:f1:e6:e8:7d:31:e4:74:ae:
13:b9:4d:ab:90:e1:40:cd:6b:fd:33:70:bc:2b:36:a7:5a:fa:
e3:7e:8e:fd:92:c4:5a:5e:78:27:06:be:6b:86:1c:f2:3e:84:
cf:a7:a2:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:00 2024 by rpki-client on console-ams.rpki-client.org