Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/dkBeOucLx0l-3YnxhSUuRsKPhLE.roa
File: dkBeOucLx0l-3YnxhSUuRsKPhLE.roa (raw, json)
Hash identifier: 8AWNqx7OWK/UvjSQdbLis4zazbM0HIVbAEtfDBLArWw=
Subject key identifier: 76:40:5E:3A:E7:0B:C7:49:7E:DD:89:F1:85:25:2E:46:C2:8F:84:B1
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 019029D3579C39FA340C74190CD64824479A
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/dkBeOucLx0l-3YnxhSUuRsKPhLE.roa
Signing time: Tue 18 Jun 2024 05:30:34 +0000
ROA not before: Tue 18 Jun 2024 05:30:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8100
IP address blocks: 5.253.56.0/23 maxlen: 24
5.253.58.0/23 maxlen: 24
45.139.123.0/24 maxlen: 24
91.92.67.0/24 maxlen: 24
93.123.76.0/22 maxlen: 24
94.154.173.0/24 maxlen: 24
94.156.2.0/24 maxlen: 24
94.156.152.0/24 maxlen: 24
94.156.154.0/23 maxlen: 24
94.156.178.0/24 maxlen: 24
94.156.180.0/23 maxlen: 24
94.156.237.0/24 maxlen: 24
94.156.238.0/24 maxlen: 24
185.252.177.0/24 maxlen: 24
193.25.219.0/24 maxlen: 24
193.47.62.0/24 maxlen: 24
193.58.121.0/24 maxlen: 24
193.58.123.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 19 Jun 2024 05:18:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:29:d3:57:9c:39:fa:34:0c:74:19:0c:d6:48:24:47:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jun 18 05:30:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=76405e3ae70bc7497edd89f185252e46c28f84b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:6d:a5:6c:4b:75:28:63:76:99:94:b6:30:33:
f0:52:d7:77:b8:e5:33:72:a1:c1:0f:55:6b:69:2c:
67:03:1c:94:3d:c0:eb:62:a7:53:72:39:6f:2f:8a:
dc:59:62:9b:20:46:79:f2:ae:c7:6e:c1:26:7e:fd:
d9:3c:68:b8:4d:f4:7b:e3:c5:25:a7:cf:77:4c:54:
d0:d8:b4:8a:58:47:95:90:67:c3:03:e5:b9:29:61:
eb:a0:9e:4e:b8:dd:fc:2b:ef:7d:34:19:69:36:9f:
79:4b:f7:2f:a3:8e:13:b6:60:1c:e7:b8:ee:43:94:
a9:3f:f0:74:c9:7b:b4:7d:9a:47:4d:a3:0d:50:e1:
09:bf:22:62:a1:32:91:37:69:2b:22:ed:b4:af:21:
a1:07:6d:d4:f7:c2:1c:04:2f:91:96:45:b5:bd:dd:
b4:c6:97:50:09:15:a9:b0:e5:d8:1c:36:79:9a:3a:
74:ed:95:0c:b9:ed:5a:c9:f3:91:44:8f:2d:36:7b:
b4:54:83:c9:dd:9b:d8:6c:1d:2d:6f:ac:b2:9a:be:
b9:47:99:b4:5b:e7:b3:40:55:92:38:d2:2b:61:eb:
c3:00:ee:b4:d7:aa:d2:bf:d9:49:08:24:b3:bd:74:
0d:8c:8f:ce:ae:8d:43:d4:ed:4c:73:08:bc:b4:b8:
2c:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:40:5E:3A:E7:0B:C7:49:7E:DD:89:F1:85:25:2E:46:C2:8F:84:B1
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/dkBeOucLx0l-3YnxhSUuRsKPhLE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.56.0/22
45.139.123.0/24
91.92.67.0/24
93.123.76.0/22
94.154.173.0/24
94.156.2.0/24
94.156.152.0/24
94.156.154.0/23
94.156.178.0/24
94.156.180.0/23
94.156.237.0-94.156.238.255
185.252.177.0/24
193.25.219.0/24
193.47.62.0/24
193.58.121.0/24
193.58.123.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:71:aa:24:ae:66:ce:63:1f:97:3f:2e:02:8f:8d:2e:47:55:
61:93:4e:1e:49:74:cf:0b:e2:15:07:ef:e0:87:b4:00:e0:3c:
c2:2d:a1:4e:05:79:36:36:06:32:cd:b8:86:f0:1d:66:7c:81:
97:cd:51:fe:1b:e5:c7:a6:f3:d0:54:90:a1:6b:fb:f4:b6:08:
fc:03:ef:11:7f:1b:b8:10:3b:86:7a:4c:ca:af:01:43:be:f2:
91:fe:5f:33:c0:b4:09:27:c9:62:1e:a3:85:56:e2:c6:8a:e2:
f1:f7:fb:b5:04:fe:44:f4:4c:be:40:4b:4e:3d:04:61:10:f5:
5e:4c:5c:df:96:8a:79:6d:e5:3d:e5:91:bc:29:01:c3:4b:87:
df:34:5c:7c:dc:bb:e8:07:33:64:cc:5b:89:70:91:c3:7e:aa:
5c:57:6a:32:bb:44:e2:8c:c7:0d:31:4a:fa:e7:58:c8:28:de:
f3:7f:74:a6:02:cf:2e:1c:66:27:0a:9e:79:74:5f:8f:83:03:
fb:30:07:b8:61:2f:5e:b4:7c:66:38:04:4a:13:b4:5f:bf:f7:
54:d3:7e:37:b7:82:bc:1f:59:d1:e9:69:72:89:52:b2:34:3a:
29:64:9a:bd:7b:a2:fd:18:af:95:28:b9:aa:64:46:40:c4:0b:
21:ea:43:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 19 09:52:33 2024 by rpki-client on console-ams.rpki-client.org