Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/5Gmn6zC_QMRV6Z7mkr1L1uhhF7c.roa
File: 5Gmn6zC_QMRV6Z7mkr1L1uhhF7c.roa (raw, json)
Hash identifier: 5DlS9YZ9VrjRlSBnIez3pnBYE2lbMdB1e52AX0TfK6I=
Subject key identifier: E4:69:A7:EB:30:BF:40:C4:55:E9:9E:E6:92:BD:4B:D6:E8:61:17:B7
Certificate issuer: /CN=ed30a131718560a34ab3493884e858ec431f6ad1
Certificate serial: 018D80199097E1C810197DD4A5CD4DC3FBF6
Authority key identifier: ED:30:A1:31:71:85:60:A3:4A:B3:49:38:84:E8:58:EC:43:1F:6A:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7TChMXGFYKNKs0k4hOhY7EMfatE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/5Gmn6zC_QMRV6Z7mkr1L1uhhF7c.roa
Signing time: Tue 06 Feb 2024 20:26:15 +0000
ROA not before: Tue 06 Feb 2024 20:26:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47430
IP address blocks: 45.139.8.0/24 maxlen: 24
45.139.9.0/24 maxlen: 24
194.180.209.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Feb 2024 12:35:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:80:19:90:97:e1:c8:10:19:7d:d4:a5:cd:4d:c3:fb:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed30a131718560a34ab3493884e858ec431f6ad1
Validity
Not Before: Feb 6 20:26:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e469a7eb30bf40c455e99ee692bd4bd6e86117b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:5f:96:94:81:e9:fd:27:19:43:7b:0a:7f:56:
c1:f0:bc:d6:e3:97:27:1b:d6:54:3b:1e:2f:63:9d:
69:64:75:5e:ff:a5:96:73:d3:e6:09:72:6d:55:dd:
a9:4d:1e:af:a5:af:23:3b:22:ce:62:dd:20:9f:7c:
99:39:86:3e:e5:7f:79:a8:4e:eb:d5:80:e9:99:ff:
19:1d:74:0c:bc:9e:13:6c:af:d5:f4:e1:8e:a0:15:
40:d1:66:c0:06:0d:e8:df:13:97:fc:fb:ae:28:ad:
28:4f:7f:9b:eb:c2:dc:76:7d:2b:02:de:6c:a3:9f:
58:8f:b8:54:53:1f:b6:26:6b:d1:a4:3f:e5:4c:2f:
13:55:3d:e5:3a:5d:14:92:d7:65:71:6e:73:ee:99:
8e:13:91:c3:38:9b:3d:76:d4:b6:76:2c:64:16:84:
99:c0:0e:53:5d:14:77:7d:e9:9a:c7:0b:73:9d:e9:
e1:07:8f:14:2b:6e:b4:3c:95:02:f5:fe:6f:b6:d7:
5a:0c:79:87:ed:b4:e3:53:5f:72:f1:c1:df:ca:dc:
79:ca:14:14:8b:3e:24:5f:d9:5b:04:34:bf:03:38:
28:35:c7:ef:fc:14:7a:61:8c:85:c6:ef:bc:ab:80:
94:3f:5b:f9:43:79:30:b8:9d:3a:25:6a:0e:ec:84:
ce:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:69:A7:EB:30:BF:40:C4:55:E9:9E:E6:92:BD:4B:D6:E8:61:17:B7
X509v3 Authority Key Identifier:
keyid:ED:30:A1:31:71:85:60:A3:4A:B3:49:38:84:E8:58:EC:43:1F:6A:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7TChMXGFYKNKs0k4hOhY7EMfatE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/5Gmn6zC_QMRV6Z7mkr1L1uhhF7c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/7TChMXGFYKNKs0k4hOhY7EMfatE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.139.8.0/23
194.180.209.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:41:94:d3:86:6e:80:ac:29:2b:2d:08:90:30:25:31:09:df:
99:a5:32:d1:e2:88:42:bd:53:a2:3a:4c:e3:5c:f9:f9:95:48:
36:fd:00:c7:b1:2e:9f:a9:9a:63:73:62:01:ee:17:66:31:b3:
40:94:43:84:e0:85:37:2b:64:4a:2a:73:20:36:ee:9f:2f:50:
e5:24:f8:5a:85:f8:c2:a6:d7:6d:36:dc:2a:d9:45:46:49:4a:
cb:6a:d3:ac:fb:5e:3c:9e:80:6a:08:05:e0:51:82:4e:30:9b:
79:07:8f:cd:4a:30:5e:94:59:b1:4e:22:49:7b:5a:c9:6d:1e:
10:fc:79:2d:10:e4:fc:75:82:28:4d:3c:f6:74:38:d4:a0:b8:
6a:ff:86:01:3a:26:1c:ff:b9:9e:80:be:75:18:96:01:9e:1c:
bb:08:c1:d2:40:02:96:bc:d4:0e:c7:0a:31:a2:d6:9f:26:c9:
cf:3c:08:83:c0:27:b8:78:e4:94:95:c9:82:7e:62:93:1a:47:
3a:c5:95:f8:3c:60:f2:37:fb:89:c6:a7:6d:a0:10:43:7c:cc:
e8:de:77:a8:3e:63:d7:00:7d:13:ff:f0:27:62:2f:2e:a5:39:
e7:40:45:2d:f2:69:c7:5e:2d:2c:9f:49:af:6a:92:54:c8:54:
a5:27:ca:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 12 18:07:07 2024 by rpki-client on console-fra.rpki-client.org