Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/1d2ef8-a86e-446f-8c35-b833bd9e0b3a/1/XUdDiNRmMZVtAM43lRm2KPpMwHU.roa
File: XUdDiNRmMZVtAM43lRm2KPpMwHU.roa (raw, json)
Hash identifier: Sgn57ZQTUdE819RhlzQcuR4ANA6vGzeNG+5PlMy/8oY=
Subject key identifier: 5D:47:43:88:D4:66:31:95:6D:00:CE:37:95:19:B6:28:FA:4C:C0:75
Certificate issuer: /CN=0d69e3ee55dd862674d458661ba34908b0617fa1
Certificate serial: 018F1528E7703832D6AB5FA55F2224B17EEA
Authority key identifier: 0D:69:E3:EE:55:DD:86:26:74:D4:58:66:1B:A3:49:08:B0:61:7F:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DWnj7lXdhiZ01FhmG6NJCLBhf6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/1d2ef8-a86e-446f-8c35-b833bd9e0b3a/1/XUdDiNRmMZVtAM43lRm2KPpMwHU.roa
Signing time: Thu 25 Apr 2024 12:09:13 +0000
ROA not before: Thu 25 Apr 2024 12:09:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60294
IP address blocks: 46.245.216.0/21 maxlen: 21
94.31.64.0/18 maxlen: 18
94.31.67.0/24 maxlen: 24
94.31.80.0/20 maxlen: 20
94.31.96.0/20 maxlen: 20
185.7.196.0/22 maxlen: 22
185.22.44.0/22 maxlen: 22
185.22.44.0/24 maxlen: 24
185.22.45.0/24 maxlen: 24
185.22.140.0/22 maxlen: 22
185.113.120.0/22 maxlen: 22
185.158.40.0/22 maxlen: 22
185.158.41.0/24 maxlen: 24
2a00:6020::/32 maxlen: 32
2a00:6020:0:21::/64 maxlen: 64
2a00:61e0::/32 maxlen: 32
2a03:fc0::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 07 May 2024 15:31:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:15:28:e7:70:38:32:d6:ab:5f:a5:5f:22:24:b1:7e:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d69e3ee55dd862674d458661ba34908b0617fa1
Validity
Not Before: Apr 25 12:09:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5d474388d46631956d00ce379519b628fa4cc075
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:2a:f5:82:82:dd:ef:d4:a5:0c:c5:1f:e4:58:
4a:8f:0e:98:70:1b:d1:0d:58:49:fc:98:a4:2e:7e:
24:e0:3f:81:08:7b:31:e1:e4:04:d9:af:67:cf:0c:
83:06:1a:1c:59:03:c0:2e:58:a3:fd:11:77:24:31:
e3:be:4d:0c:8a:a2:65:8f:41:ae:49:fa:18:c0:f3:
0a:66:7b:32:21:b4:5c:bc:bd:54:f5:ca:6a:49:20:
d4:b9:a7:06:4c:53:aa:d6:5d:d0:54:44:36:a8:46:
1c:7e:e2:36:17:27:a5:af:d1:8c:42:5f:6a:41:da:
15:ae:2c:b9:e4:62:37:1c:c1:8a:49:d3:3b:53:0a:
02:c2:e8:06:7b:32:17:e2:11:c1:6f:46:f4:38:3b:
11:b1:b6:47:73:de:24:f2:fb:3f:73:2a:4a:1c:01:
dd:c5:11:a6:1a:d0:e9:87:61:4f:a3:f8:26:70:3c:
0c:ea:ab:91:65:eb:4f:2a:c5:c2:db:36:f4:f4:0d:
9a:bf:22:cb:6d:df:d1:80:74:02:2f:2b:a0:fb:d4:
1c:9f:68:f6:64:62:ba:d6:cc:6f:de:af:36:86:28:
c8:e9:a7:9e:d6:aa:0f:4b:ab:34:66:ab:61:0c:0d:
c7:17:7d:b7:86:56:18:e2:9f:95:6b:bd:de:ab:9a:
3c:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:47:43:88:D4:66:31:95:6D:00:CE:37:95:19:B6:28:FA:4C:C0:75
X509v3 Authority Key Identifier:
keyid:0D:69:E3:EE:55:DD:86:26:74:D4:58:66:1B:A3:49:08:B0:61:7F:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DWnj7lXdhiZ01FhmG6NJCLBhf6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/1d2ef8-a86e-446f-8c35-b833bd9e0b3a/1/XUdDiNRmMZVtAM43lRm2KPpMwHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/1d2ef8-a86e-446f-8c35-b833bd9e0b3a/1/DWnj7lXdhiZ01FhmG6NJCLBhf6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.245.216.0/21
94.31.64.0/18
185.7.196.0/22
185.22.44.0/22
185.22.140.0/22
185.113.120.0/22
185.158.40.0/22
IPv6:
2a00:6020::/32
2a00:61e0::/32
2a03:fc0::/32
Signature Algorithm: sha256WithRSAEncryption
35:12:9b:5f:96:ff:0f:06:80:ec:6a:fe:1d:f5:9f:a6:2e:df:
17:36:f7:3f:4f:b7:db:57:ae:8e:ab:c3:5f:e4:ba:21:74:17:
02:6a:ef:fd:48:10:ae:23:e2:10:95:86:87:96:5b:d9:ee:06:
1a:52:fa:01:d9:b0:7d:12:c1:a8:18:7e:94:c7:85:59:9c:25:
30:98:ba:bf:06:66:5a:e1:40:47:a8:47:6e:3e:50:d9:a9:59:
60:94:04:12:48:9e:5d:4d:02:3b:3f:93:8d:8c:c0:62:c3:a2:
b8:47:39:cd:ff:91:90:96:6e:31:00:0f:86:90:8c:e5:29:8d:
3c:73:63:18:4d:16:db:8d:8c:5c:40:56:83:3c:b3:91:52:eb:
74:c0:ae:4e:f5:95:e2:17:90:d0:87:e0:b9:12:38:52:c2:d5:
8c:82:94:0d:f2:99:e6:f7:39:4e:fa:8d:51:65:54:aa:d5:ff:
04:d6:88:ed:3c:be:0e:a6:92:58:8a:c2:38:95:ad:ca:8b:eb:
99:51:30:34:18:cb:37:c2:b3:4a:d9:1e:6a:46:f6:28:44:0c:
c2:17:2d:1b:d0:c1:f5:54:ed:0b:38:af:b0:89:8c:f6:9f:25:
0b:02:5e:cf:ab:87:3f:58:24:5c:be:26:c8:6f:21:58:4f:63:
af:ee:02:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:12 2024 by rpki-client on console-ams.rpki-client.org