Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/5-ACuChRL-vrD-4Ytnwo9npbfPs.roa
File: 5-ACuChRL-vrD-4Ytnwo9npbfPs.roa (raw, json)
Hash identifier: k6iEFVjyzy6YKPkLpRjRCYBrMcaZJTDiN68G6at0yyQ=
Subject key identifier: E7:E0:02:B8:28:51:2F:EB:EB:0F:EE:18:B6:7C:28:F6:7A:5B:7C:FB
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 0190DE53E7B5D12DE63913AE2DDE87D58B71
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/5-ACuChRL-vrD-4Ytnwo9npbfPs.roa
Signing time: Tue 23 Jul 2024 06:42:39 +0000
ROA not before: Tue 23 Jul 2024 06:42:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9009
IP address blocks: 80.96.44.0/23 maxlen: 24
80.96.54.0/23 maxlen: 24
80.96.102.0/23 maxlen: 24
80.96.156.0/22 maxlen: 24
80.97.40.0/21 maxlen: 24
80.97.96.0/23 maxlen: 24
81.180.98.0/23 maxlen: 24
81.180.174.0/23 maxlen: 24
81.180.228.0/23 maxlen: 24
81.180.254.0/23 maxlen: 24
81.181.14.0/23 maxlen: 24
81.181.26.0/23 maxlen: 24
81.181.68.0/23 maxlen: 24
81.181.72.0/23 maxlen: 24
81.181.104.0/21 maxlen: 24
85.120.84.0/23 maxlen: 24
85.120.224.0/21 maxlen: 24
85.121.48.0/21 maxlen: 24
85.121.168.0/22 maxlen: 24
85.121.232.0/21 maxlen: 24
85.122.124.0/22 maxlen: 24
85.122.231.0/24 maxlen: 24
193.226.76.0/22 maxlen: 24
194.102.36.0/22 maxlen: 24
194.102.148.0/23 maxlen: 24
194.102.160.0/23 maxlen: 24
194.102.174.0/23 maxlen: 24
194.102.180.0/22 maxlen: 24
194.102.224.0/22 maxlen: 24
194.105.12.0/22 maxlen: 24
194.153.225.0/24 maxlen: 24
194.153.230.0/23 maxlen: 24
194.153.244.0/23 maxlen: 24
217.156.16.0/23 maxlen: 24
217.156.26.0/24 maxlen: 24
217.156.48.0/22 maxlen: 24
217.156.94.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 17 Sep 2024 11:54:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:de:53:e7:b5:d1:2d:e6:39:13:ae:2d:de:87:d5:8b:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jul 23 06:42:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e7e002b828512febeb0fee18b67c28f67a5b7cfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:db:6b:33:15:8c:4f:e1:e2:30:17:a6:b0:56:
5f:9a:02:e3:49:9a:b2:59:12:92:a5:35:64:41:af:
ee:c2:ab:67:7c:41:a2:35:57:18:8a:33:02:90:a0:
cc:77:0d:19:4d:6d:a3:42:6a:bb:8a:b1:5b:3b:5b:
27:06:0d:f8:22:1e:fd:a5:23:63:2a:d6:9a:df:2e:
dd:16:1d:a3:30:90:51:07:a7:c3:42:7c:44:3c:98:
43:d3:2c:b2:b0:b1:e6:67:bb:92:2e:e4:36:fc:1e:
7b:10:a2:be:a8:ed:40:58:ba:9d:d2:46:94:b1:d4:
a3:0a:0e:86:f5:ce:52:3e:46:53:00:50:58:3e:84:
07:57:de:af:85:9d:25:8b:62:fa:ca:f4:3b:b3:fa:
9e:95:ab:d4:1d:d2:bc:77:a7:51:db:b6:15:13:42:
4f:f6:49:12:5a:93:68:a9:1b:b1:ec:44:74:73:39:
62:58:bc:d2:5a:c6:53:f7:3d:80:df:3f:0b:aa:ed:
12:3e:81:f7:fe:36:23:28:f0:5d:af:40:ea:cd:f4:
75:05:3e:d4:e3:8b:13:e3:72:67:18:cb:6e:49:68:
a3:e5:82:da:95:f9:83:17:0c:f7:09:49:af:d0:b4:
03:c2:8c:37:6f:44:08:f3:c6:9f:6c:e8:d0:94:f2:
af:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:E0:02:B8:28:51:2F:EB:EB:0F:EE:18:B6:7C:28:F6:7A:5B:7C:FB
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/5-ACuChRL-vrD-4Ytnwo9npbfPs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.44.0/23
80.96.54.0/23
80.96.102.0/23
80.96.156.0/22
80.97.40.0/21
80.97.96.0/23
81.180.98.0/23
81.180.174.0/23
81.180.228.0/23
81.180.254.0/23
81.181.14.0/23
81.181.26.0/23
81.181.68.0/23
81.181.72.0/23
81.181.104.0/21
85.120.84.0/23
85.120.224.0/21
85.121.48.0/21
85.121.168.0/22
85.121.232.0/21
85.122.124.0/22
85.122.231.0/24
193.226.76.0/22
194.102.36.0/22
194.102.148.0/23
194.102.160.0/23
194.102.174.0/23
194.102.180.0/22
194.102.224.0/22
194.105.12.0/22
194.153.225.0/24
194.153.230.0/23
194.153.244.0/23
217.156.16.0/23
217.156.26.0/24
217.156.48.0/22
217.156.94.0/23
Signature Algorithm: sha256WithRSAEncryption
15:f4:86:8d:8a:ea:6f:95:ee:7f:a4:0d:bd:20:37:97:ae:24:
a9:7d:23:e8:47:cc:07:27:ad:31:8e:1b:02:59:b9:29:7b:1d:
8e:85:74:fb:01:10:1c:e6:df:c7:62:ed:30:c2:6a:b8:f0:e2:
82:43:79:66:bb:8e:09:7f:64:b5:d5:58:d5:54:ac:3f:e9:c3:
23:78:fb:a7:c0:13:10:4b:98:2e:02:29:07:9d:5e:a1:21:fb:
93:2c:20:bf:fc:bb:f2:65:eb:46:2f:ef:0d:45:62:3c:66:73:
c6:d3:c8:ab:36:ca:68:ce:ef:32:b6:e6:bf:43:e0:d6:49:f1:
45:5a:50:50:96:3b:03:dc:46:24:ec:ac:72:68:21:22:6c:43:
78:bc:87:c1:92:9c:00:9c:53:d1:96:13:4a:b8:71:de:73:4b:
7c:23:b2:e5:0f:2b:77:57:09:a6:28:70:4e:d5:eb:88:79:fe:
67:8d:01:be:58:e3:72:27:c3:0b:2e:dd:56:9d:cb:12:4b:1a:
8a:e9:a3:f6:91:aa:68:fa:42:29:40:6b:53:f3:a0:00:4a:f6:
f2:e3:d5:39:1d:c2:2b:d0:3c:d8:ba:f5:80:2b:2c:7c:ff:ab:
23:f6:49:a3:51:5e:2e:b3:40:ca:02:8b:06:d9:3d:04:f2:f1:
32:10:6a:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 17 18:26:52 2024 by rpki-client on console-ams.rpki-client.org