Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/224155-3ca4-4ff7-a964-fc0dd9252c9a/1/5rykG_liYaJ6Gz54QZXXaLgZrzM.roa
File: 5rykG_liYaJ6Gz54QZXXaLgZrzM.roa (raw, json)
Hash identifier: sRK3S+gGHRSZvSNzrw5fgv7l/BvzixVCpk3Mw3hw9RM=
Subject key identifier: E6:BC:A4:1B:F9:62:61:A2:7A:1B:3E:78:41:95:D7:68:B8:19:AF:33
Certificate issuer: /CN=5bea81aa9b2197d9127b442525100ffaa36e0d52
Certificate serial: 018902FB16D6AF1B0C300AEA4172E28FCE4E
Authority key identifier: 5B:EA:81:AA:9B:21:97:D9:12:7B:44:25:25:10:0F:FA:A3:6E:0D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W-qBqpshl9kSe0QlJRAP-qNuDVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/224155-3ca4-4ff7-a964-fc0dd9252c9a/1/5rykG_liYaJ6Gz54QZXXaLgZrzM.roa
Signing time: Wed 28 Jun 2023 17:09:17 +0000
ROA not before: Wed 28 Jun 2023 17:09:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34373
IP address blocks: 185.97.228.0/22 maxlen: 22
185.165.68.0/22 maxlen: 22
45.128.64.0/22 maxlen: 24
86.48.68.0/22 maxlen: 22
91.219.76.0/22 maxlen: 22
77.74.124.0/22 maxlen: 24
185.63.56.0/22 maxlen: 24
185.96.44.0/22 maxlen: 24
193.105.233.0/24 maxlen: 24
185.56.52.0/22 maxlen: 22
185.69.204.0/22 maxlen: 22
45.132.40.0/22 maxlen: 22
185.116.40.0/22 maxlen: 23
185.210.128.0/22 maxlen: 24
217.61.253.0/24 maxlen: 24
2a0b:ec00::/29 maxlen: 29
2a00:4140::/29 maxlen: 48
2a06:7bc0::/29 maxlen: 29
2a0b:57c0::/29 maxlen: 36
2a06:900::/29 maxlen: 36
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:02:fb:16:d6:af:1b:0c:30:0a:ea:41:72:e2:8f:ce:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5bea81aa9b2197d9127b442525100ffaa36e0d52
Validity
Not Before: Jun 28 17:09:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e6bca41bf96261a27a1b3e784195d768b819af33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:4b:6f:b7:36:68:e0:d1:7d:af:fa:21:2a:ee:
18:a6:9a:54:35:8a:87:1f:43:7c:68:a1:ad:09:d8:
15:81:ca:90:f1:66:61:63:fc:b4:04:b8:04:b7:08:
b7:d7:be:10:2e:34:57:4a:3e:f7:3c:48:b8:12:f6:
c6:fc:23:49:32:f0:3a:40:f4:d4:a2:f6:49:b2:74:
e7:fe:7d:83:ce:d6:9d:7c:66:8b:c9:50:31:f2:b8:
de:98:52:d4:8b:df:42:24:1f:da:67:3d:93:d9:3e:
70:2a:f5:66:98:a4:ea:70:e7:93:2c:22:fb:5a:9e:
3c:d5:e5:1d:25:d4:0a:99:73:33:60:60:1e:39:bc:
f9:be:59:0f:90:a1:00:d3:68:30:d5:c0:fd:47:e5:
33:3c:b0:cd:73:1f:14:dd:01:6a:49:99:68:0a:dc:
15:9c:00:db:a8:25:79:da:d3:ea:a6:d3:6b:18:3c:
7f:45:06:29:f2:65:0d:4c:87:c3:b3:d0:7c:57:21:
15:f8:c2:bd:ab:4b:8e:7c:3f:a4:f0:0e:8b:bf:76:
41:2e:c6:17:6c:97:63:43:b2:e3:ea:b8:bf:3a:b3:
25:d3:8f:71:f5:13:d0:c6:0d:a8:f9:d9:7d:53:58:
b2:bb:1f:d1:db:23:6e:53:c2:69:e5:09:e8:a0:52:
11:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:BC:A4:1B:F9:62:61:A2:7A:1B:3E:78:41:95:D7:68:B8:19:AF:33
X509v3 Authority Key Identifier:
keyid:5B:EA:81:AA:9B:21:97:D9:12:7B:44:25:25:10:0F:FA:A3:6E:0D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W-qBqpshl9kSe0QlJRAP-qNuDVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/224155-3ca4-4ff7-a964-fc0dd9252c9a/1/5rykG_liYaJ6Gz54QZXXaLgZrzM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/224155-3ca4-4ff7-a964-fc0dd9252c9a/1/W-qBqpshl9kSe0QlJRAP-qNuDVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.64.0/22
45.132.40.0/22
77.74.124.0/22
86.48.68.0/22
91.219.76.0/22
185.56.52.0/22
185.63.56.0/22
185.69.204.0/22
185.96.44.0/22
185.97.228.0/22
185.116.40.0/22
185.165.68.0/22
185.210.128.0/22
193.105.233.0/24
217.61.253.0/24
IPv6:
2a00:4140::/29
2a06:900::/29
2a06:7bc0::/29
2a0b:57c0::/29
2a0b:ec00::/29
Signature Algorithm: sha256WithRSAEncryption
14:ca:90:fd:f2:8f:89:86:26:c9:30:24:5a:9a:4e:6c:d2:d5:
a8:93:30:ed:95:c2:ae:b7:43:85:c5:ac:7d:17:d8:ff:94:0c:
57:ad:ea:fe:53:84:e8:70:f6:55:3c:86:74:64:50:3c:f1:a2:
31:b7:3d:79:ab:5a:47:70:b3:45:04:d0:60:ff:db:9e:63:29:
70:6a:1e:df:e6:d6:ab:26:96:77:f0:04:8e:ab:05:aa:09:ce:
70:d5:88:e8:da:71:9f:44:dc:b4:81:b2:a7:9a:f7:c4:59:43:
9a:a4:33:0d:2e:67:5c:48:76:be:80:fb:21:f2:9e:b1:4a:13:
80:47:fd:92:68:28:5c:6b:e9:69:ba:3a:78:82:20:2d:28:3a:
48:e6:e7:42:1e:07:af:61:fe:17:c1:14:be:20:1b:1a:63:62:
7c:65:5b:16:5c:18:e7:0e:af:cd:be:1a:78:99:08:61:dc:3b:
8e:d5:d0:2d:d6:cd:75:fe:37:99:fa:4e:f2:60:49:22:63:16:
bc:5f:a3:5b:bb:d8:e8:cf:14:13:f2:34:35:91:31:83:bb:54:
ed:b3:46:ff:17:bd:9e:62:63:16:a4:d4:f5:76:9f:7d:85:ab:
6b:6c:5b:65:fb:b7:50:ca:f0:3b:55:3c:3f:c3:45:64:2d:fd:
84:2f:15:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:18 2024 by rpki-client on console-ams.rpki-client.org