Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/zUEDBbGLuZiySjGm7nDjdQurbHI.roa
File: zUEDBbGLuZiySjGm7nDjdQurbHI.roa (raw, json)
Hash identifier: USV7qdmg1nMNiQziLKQtORzmEekLx9kyDR10/7TVm1I=
Subject key identifier: CD:41:03:05:B1:8B:B9:98:B2:4A:31:A6:EE:70:E3:75:0B:AB:6C:72
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 018DBC82C06FA27C79AD045FB0667ECE7ABD
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/zUEDBbGLuZiySjGm7nDjdQurbHI.roa
Signing time: Sun 18 Feb 2024 13:58:22 +0000
ROA not before: Sun 18 Feb 2024 13:58:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41436
IP address blocks: 5.180.180.0/24 maxlen: 24
5.180.181.0/24 maxlen: 24
5.180.182.0/24 maxlen: 24
5.180.183.0/24 maxlen: 24
45.91.168.0/24 maxlen: 24
45.91.169.0/24 maxlen: 24
63.250.56.0/24 maxlen: 24
63.250.57.0/24 maxlen: 24
83.229.82.0/24 maxlen: 24
83.229.83.0/24 maxlen: 24
103.13.210.0/24 maxlen: 24
103.45.247.0/24 maxlen: 24
185.220.204.0/24 maxlen: 24
185.220.205.0/24 maxlen: 24
193.168.173.0/24 maxlen: 24
193.168.174.0/24 maxlen: 24
194.146.38.0/24 maxlen: 24
194.146.39.0/24 maxlen: 24
195.238.121.0/24 maxlen: 24
2a06:c5c0:200::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 28 Feb 2024 09:45:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:bc:82:c0:6f:a2:7c:79:ad:04:5f:b0:66:7e:ce:7a:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Feb 18 13:58:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cd410305b18bb998b24a31a6ee70e3750bab6c72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:ac:a1:8d:cd:6f:80:5c:a8:93:ab:f8:99:b9:
17:1f:16:13:74:c5:86:06:73:a4:83:87:c8:8f:8a:
03:af:84:4c:db:4a:1c:d1:14:2f:dd:77:c8:9b:ff:
10:ac:b0:39:af:fe:22:af:3b:7f:37:19:9e:14:0f:
23:3f:1c:2e:24:12:66:6e:da:83:e1:6e:f5:62:08:
40:a0:a3:01:1b:40:e5:61:5f:ac:4e:ef:89:6b:e0:
b0:e6:c3:ed:2b:f5:46:2e:d7:94:ac:0a:b3:39:ef:
94:82:2b:b5:4a:ef:9c:a1:3d:0d:b9:db:86:52:f8:
9c:3b:c0:55:5a:75:d3:ea:04:11:24:34:86:f4:01:
c9:c1:f5:87:57:e7:8d:d9:40:e6:53:d3:89:7f:9a:
09:39:7f:03:b4:c3:de:4c:50:b0:d3:34:fe:08:74:
36:ec:50:1b:a6:a7:2a:89:8b:05:2b:9f:02:84:bb:
9f:a9:ce:49:f4:f5:4d:90:9d:45:14:ec:35:d3:12:
6f:0a:20:0d:10:e1:1d:3a:7c:80:86:1f:c2:be:a6:
aa:73:45:5f:a3:29:d1:b2:c8:aa:f2:7f:23:12:7e:
f3:26:82:78:21:eb:b6:8d:73:69:5e:c9:29:35:44:
34:d9:d3:9c:8d:f3:95:ba:6b:8a:22:15:d4:7b:26:
3c:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:41:03:05:B1:8B:B9:98:B2:4A:31:A6:EE:70:E3:75:0B:AB:6C:72
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/zUEDBbGLuZiySjGm7nDjdQurbHI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.180.0/22
45.91.168.0/23
63.250.56.0/23
83.229.82.0/23
103.13.210.0/24
103.45.247.0/24
185.220.204.0/23
193.168.173.0-193.168.174.255
194.146.38.0/23
195.238.121.0/24
IPv6:
2a06:c5c0:200::/48
Signature Algorithm: sha256WithRSAEncryption
97:01:01:78:eb:9a:a4:92:a6:89:5c:4c:a4:9b:6f:2f:13:ab:
de:ef:ad:bf:d5:ee:0e:33:12:82:52:09:21:0d:34:20:38:1b:
76:fa:83:e1:af:2f:70:d0:94:a1:df:21:cd:7b:42:df:b9:a9:
97:c2:2a:16:50:eb:1a:0f:c1:11:fe:ee:76:8c:7b:b9:a4:20:
e7:ad:72:96:00:4b:e3:dc:59:f0:6a:48:5a:e0:ee:47:02:44:
d6:23:a2:fe:ae:f9:1e:45:03:42:99:c5:c4:f2:2c:8e:8c:7f:
72:83:f0:2f:37:fa:ee:81:ff:81:1d:90:0d:90:05:54:14:bc:
91:9c:ea:45:06:3b:ea:fd:91:00:92:41:12:84:ac:db:16:2e:
a6:3a:c8:d3:7d:90:db:cc:87:f6:ec:24:87:4a:cf:5b:c1:14:
d0:26:f0:4b:93:23:a9:f8:06:9c:45:cb:d3:17:5e:02:e9:b4:
6f:e0:78:7c:1f:3e:f9:2f:52:66:d5:3f:6c:fd:25:54:4e:c1:
76:49:6b:b2:33:f4:8a:ee:a8:31:04:91:3d:a2:8b:fc:80:11:
99:b2:f5:d0:36:3d:f3:28:16:a9:e5:8b:a5:ab:69:20:73:18:
ef:60:1c:73:a7:df:57:6b:bd:7b:f9:8c:ac:f0:09:61:7a:a8:
30:30:48:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:36 2024 by rpki-client on console-ams.rpki-client.org