Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/qf23dqlv1lz9Jr2vrLtNEwafeeQ.roa
File: qf23dqlv1lz9Jr2vrLtNEwafeeQ.roa (raw, json)
Hash identifier: 6Z2qUMF6hEMvCRbo4cb1a49wGRFnGP7u9wOWRzoJ8+E=
Subject key identifier: A9:FD:B7:76:A9:6F:D6:5C:FD:26:BD:AF:AC:BB:4D:13:06:9F:79:E4
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 018CC9BB07129D08812666CD7769639F8FD7
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/qf23dqlv1lz9Jr2vrLtNEwafeeQ.roa
Signing time: Tue 02 Jan 2024 10:32:06 +0000
ROA not before: Tue 02 Jan 2024 10:32:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41436
IP address blocks: 83.229.83.0/24 maxlen: 24
83.229.82.0/24 maxlen: 24
103.13.210.0/24 maxlen: 24
63.250.56.0/24 maxlen: 24
63.250.57.0/24 maxlen: 24
185.220.204.0/24 maxlen: 24
185.220.205.0/24 maxlen: 24
195.238.121.0/24 maxlen: 24
45.91.168.0/24 maxlen: 24
45.91.169.0/24 maxlen: 24
194.146.38.0/24 maxlen: 24
194.146.39.0/24 maxlen: 24
5.180.180.0/24 maxlen: 24
103.45.247.0/24 maxlen: 24
5.180.182.0/24 maxlen: 24
5.180.183.0/24 maxlen: 24
5.180.181.0/24 maxlen: 24
2a06:c5c0:200::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 18 Feb 2024 13:58:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bb:07:12:9d:08:81:26:66:cd:77:69:63:9f:8f:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Jan 2 10:32:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a9fdb776a96fd65cfd26bdafacbb4d13069f79e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:36:c0:53:52:77:2e:91:ed:bb:52:ce:cb:fd:
20:f1:48:99:b2:07:53:3c:09:1d:cf:60:61:20:de:
96:08:9b:65:4c:74:b8:cf:6d:4c:29:68:45:bc:db:
87:88:99:65:db:79:3b:97:ac:39:99:b0:37:20:f2:
1c:15:72:3e:6c:4f:21:86:6d:d3:b4:be:36:b1:f9:
19:41:c7:b7:3c:cf:c0:d9:5f:51:24:82:80:ef:ec:
a4:0e:a4:24:76:0e:44:79:10:e5:53:6d:9d:7d:5c:
7f:9a:14:fc:c7:9c:77:b1:b8:6a:25:87:f7:85:be:
f7:8a:51:cd:08:0d:a3:7b:1d:a6:7d:d3:21:70:d0:
75:0c:05:6a:d0:81:5f:6d:6e:09:ca:6c:fd:c3:58:
8f:e2:09:c0:ad:48:3f:eb:57:a8:aa:fb:99:ed:72:
ce:83:f4:76:6b:5f:9a:2f:b7:76:1a:3f:de:36:08:
c9:1a:fa:36:2c:ba:33:76:3d:ba:f6:ae:30:21:f6:
af:53:75:d0:68:59:c5:28:b0:30:a8:62:d7:b0:2b:
ad:5c:4d:a8:f4:b6:2b:34:f5:78:a4:b9:6e:4e:1a:
77:e6:74:bd:ac:62:74:fe:d8:7b:c7:d5:bd:84:91:
75:61:58:ed:5c:12:02:44:2d:cc:97:0b:5b:f0:49:
b6:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:FD:B7:76:A9:6F:D6:5C:FD:26:BD:AF:AC:BB:4D:13:06:9F:79:E4
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/qf23dqlv1lz9Jr2vrLtNEwafeeQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.180.0/22
45.91.168.0/23
63.250.56.0/23
83.229.82.0/23
103.13.210.0/24
103.45.247.0/24
185.220.204.0/23
194.146.38.0/23
195.238.121.0/24
IPv6:
2a06:c5c0:200::/48
Signature Algorithm: sha256WithRSAEncryption
59:90:59:b3:5f:f2:51:99:67:3d:07:8a:61:55:d2:0e:eb:c5:
3c:b9:91:0c:e3:44:9b:ef:af:75:17:19:f9:21:02:8d:77:a8:
7b:2d:d5:8a:01:fb:82:f7:f2:8b:49:8a:85:a7:97:c0:95:40:
c9:55:1c:6e:b3:e8:a9:d1:24:95:63:b2:9a:9a:20:7f:c6:fa:
b1:d9:2b:84:dc:18:31:9e:a5:da:08:76:08:6d:98:79:b4:77:
07:a5:fd:3e:b9:f0:46:c5:b7:1d:a7:7b:a4:88:a0:0d:a6:0f:
8f:3a:bb:4f:b3:fc:9f:16:b5:50:5e:dc:12:a5:3c:05:30:4b:
ee:7d:58:05:4a:c1:83:5e:dd:e3:a8:62:0b:53:19:fa:d9:99:
e5:cf:e3:22:a2:eb:a7:9b:7c:ef:96:3b:2d:a8:16:ef:9f:38:
67:3f:c2:e4:86:f4:b9:ff:25:34:b6:76:88:62:e3:09:28:43:
31:7e:c5:b8:75:48:20:8e:91:8d:c4:95:7e:fd:2e:a8:5e:d4:
46:ba:2e:20:8e:ae:50:1c:30:28:66:89:75:5c:ed:79:15:f1:
cc:7f:e3:04:74:2b:4d:43:51:42:76:f7:f6:01:af:fa:87:7b:
48:9d:c8:a2:78:5a:e8:cf:90:83:85:73:3b:30:a1:a1:74:0f:
05:7c:ed:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:32 2024 by rpki-client on console-fra.rpki-client.org