Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/4f336b-4a79-4425-9556-be45f0d2abbb/1/50kUjKf30_-gggdqkR7ruMNBLyw.roa
File: 50kUjKf30_-gggdqkR7ruMNBLyw.roa (raw, json)
Hash identifier: Rc/dwsOUZ5JyqcPNWUJBJaVeiYn0RLWqeyzIaUJe5Kc=
Subject key identifier: E7:49:14:8C:A7:F7:D3:FF:A0:82:07:6A:91:1E:EB:B8:C3:41:2F:2C
Certificate issuer: /CN=9cb25ce550e4d9bda05bd5d45c8b6ba37430bbba
Certificate serial: 0187DD5F13E15A1D74A44A8A0D3D43D74FD7
Authority key identifier: 9C:B2:5C:E5:50:E4:D9:BD:A0:5B:D5:D4:5C:8B:6B:A3:74:30:BB:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nLJc5VDk2b2gW9XUXItro3Qwu7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/4f336b-4a79-4425-9556-be45f0d2abbb/1/50kUjKf30_-gggdqkR7ruMNBLyw.roa
Signing time: Tue 02 May 2023 16:50:08 +0000
ROA not before: Tue 02 May 2023 16:50:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 45.94.136.0/24 maxlen: 24
45.94.137.0/24 maxlen: 24
45.94.138.0/24 maxlen: 24
45.94.139.0/24 maxlen: 24
5.253.184.0/23 maxlen: 23
185.114.204.0/24 maxlen: 24
5.253.187.0/24 maxlen: 24
193.135.220.0/22 maxlen: 22
88.214.0.0/24 maxlen: 24
88.214.1.0/24 maxlen: 24
88.214.2.0/24 maxlen: 24
88.214.3.0/24 maxlen: 24
88.218.196.0/22 maxlen: 22
185.219.160.0/24 maxlen: 24
185.219.163.0/24 maxlen: 24
45.81.161.0/24 maxlen: 24
45.81.162.0/24 maxlen: 24
45.81.163.0/24 maxlen: 24
45.130.32.0/24 maxlen: 24
45.130.33.0/24 maxlen: 24
45.130.34.0/23 maxlen: 23
193.111.184.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 03 Jul 2023 19:19:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:dd:5f:13:e1:5a:1d:74:a4:4a:8a:0d:3d:43:d7:4f:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9cb25ce550e4d9bda05bd5d45c8b6ba37430bbba
Validity
Not Before: May 2 16:50:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e749148ca7f7d3ffa082076a911eebb8c3412f2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:54:a1:9b:d5:fc:c2:f8:76:f1:3c:e9:ae:f6:
88:de:17:44:ca:53:3d:15:f7:d5:2d:0c:40:85:68:
80:bf:88:4c:a6:bc:a9:26:80:4f:ce:c3:b4:54:74:
23:e7:1f:6c:ea:8f:bc:6e:9e:e6:21:40:8f:1d:f0:
b5:2c:ec:6d:fc:02:fe:a9:0d:f1:42:de:8b:3f:2b:
10:e6:1d:b1:65:bd:dd:a3:47:ac:ca:48:05:a2:be:
3b:25:68:20:13:5a:62:d7:e1:2f:5f:c1:27:42:81:
96:26:4f:2e:ba:46:72:1a:ed:5a:a2:2b:0d:8e:de:
a3:40:a0:1d:89:05:0d:4f:6b:82:01:a1:61:15:fb:
0f:c5:e7:ee:d8:af:19:5e:4e:06:ae:7d:8c:b9:c9:
7d:ff:72:23:e6:a9:27:2f:87:33:3c:f2:a6:e5:0e:
b3:e7:19:4e:a6:f0:f6:aa:ce:76:ce:db:75:14:95:
af:02:fe:72:63:66:da:84:0b:8c:ca:17:93:e0:7a:
c0:a1:9e:c5:1a:87:22:48:8a:a6:5d:2d:b2:99:84:
7e:e9:cc:ef:57:35:61:ca:6c:a5:e4:3e:04:71:da:
f3:7f:d6:b1:89:58:49:23:a0:cd:0a:8e:1f:74:b2:
6d:23:9c:bf:a0:f1:d9:05:d2:dc:ba:b4:0c:7a:ad:
df:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:49:14:8C:A7:F7:D3:FF:A0:82:07:6A:91:1E:EB:B8:C3:41:2F:2C
X509v3 Authority Key Identifier:
keyid:9C:B2:5C:E5:50:E4:D9:BD:A0:5B:D5:D4:5C:8B:6B:A3:74:30:BB:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nLJc5VDk2b2gW9XUXItro3Qwu7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/4f336b-4a79-4425-9556-be45f0d2abbb/1/50kUjKf30_-gggdqkR7ruMNBLyw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/4f336b-4a79-4425-9556-be45f0d2abbb/1/nLJc5VDk2b2gW9XUXItro3Qwu7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.184.0/23
5.253.187.0/24
45.81.161.0-45.81.163.255
45.94.136.0/22
45.130.32.0/22
88.214.0.0/22
88.218.196.0/22
185.114.204.0/24
185.219.160.0/24
185.219.163.0/24
193.111.184.0/22
193.135.220.0/22
Signature Algorithm: sha256WithRSAEncryption
32:7f:f5:8f:83:b0:45:c1:3d:a7:30:16:a2:0f:c0:41:66:82:
a8:10:08:3f:f8:77:2f:99:72:96:bb:9f:99:07:54:56:71:52:
f7:9c:50:1b:53:0d:b9:e8:b1:2a:b8:b3:c6:b2:5b:6a:c4:d1:
9f:4d:e9:09:1c:9a:af:08:be:05:18:e0:f3:9f:e3:64:1d:e1:
cd:9e:61:5a:df:98:09:80:44:86:cd:7c:12:ce:29:fd:36:53:
f1:97:54:10:8c:e5:f3:6b:0e:41:b7:84:e4:07:e5:18:1f:79:
f0:b3:97:52:f6:ae:86:c5:70:92:12:8e:80:1e:7e:48:03:27:
1b:bc:15:d6:9d:87:6b:eb:51:a4:8c:fd:81:01:0c:ea:44:76:
87:0e:b4:4d:25:5a:ee:b3:48:1f:8d:c0:b1:96:96:fc:ba:eb:
8a:cc:95:c0:bd:b8:46:64:bc:e0:62:07:33:00:e7:15:32:e0:
4b:58:6b:a0:2a:89:07:b4:c4:b4:c9:57:c3:ef:4b:5b:94:00:
5b:25:03:6d:4a:73:6c:d2:7e:5d:b3:a7:57:66:e9:8b:03:7e:
98:84:71:9e:97:83:80:75:a2:c4:c5:99:6c:5e:7f:6d:8d:fa:
3a:88:c6:44:2d:1b:8b:2c:ef:60:ff:7d:03:0c:fb:95:11:08:
8b:25:7a:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:36 2024 by rpki-client on console-ams.rpki-client.org