Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/XuT06RTgfFpVYacpOclXUeUYpqQ.roa
File: XuT06RTgfFpVYacpOclXUeUYpqQ.roa (raw, json)
Hash identifier: /SCmBRWdUPgChigRnlubrZI/Ifm1eSdzzFwXh9WXXrI=
Subject key identifier: 5E:E4:F4:E9:14:E0:7C:5A:55:61:A7:29:39:C9:57:51:E5:18:A6:A4
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 018988FF0FDEFDC47AE840DCE4108907D4CB
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/XuT06RTgfFpVYacpOclXUeUYpqQ.roa
Signing time: Mon 24 Jul 2023 17:42:44 +0000
ROA not before: Mon 24 Jul 2023 17:42:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59729
IP address blocks: 5.188.10.0/23 maxlen: 23
46.161.26.0/24 maxlen: 24
46.161.28.0/22 maxlen: 22
5.101.92.0/22 maxlen: 22
46.161.41.0/24 maxlen: 24
5.188.48.0/23 maxlen: 23
5.188.194.0/23 maxlen: 23
5.188.204.0/23 maxlen: 23
91.243.44.0/22 maxlen: 22
5.8.66.0/23 maxlen: 23
91.243.52.0/22 maxlen: 22
91.243.56.0/22 maxlen: 22
5.188.60.0/23 maxlen: 23
5.189.248.0/22 maxlen: 22
91.243.32.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:88:ff:0f:de:fd:c4:7a:e8:40:dc:e4:10:89:07:d4:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Jul 24 17:42:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5ee4f4e914e07c5a5561a72939c95751e518a6a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:f7:f6:41:21:55:e9:b0:89:b0:de:9a:1f:c2:
65:82:ce:d4:7f:eb:31:ff:58:25:a0:06:b9:31:c4:
74:12:54:5d:c1:84:80:4a:d1:2b:05:bd:b8:04:45:
26:07:5d:80:b1:c0:eb:1a:d0:98:00:f2:de:99:0a:
19:15:09:a6:1d:33:0e:1d:a7:97:6d:86:a9:38:e7:
f9:d2:a1:e0:93:f1:b2:e7:de:a8:f5:e5:6e:fd:7c:
58:26:d4:59:c9:20:05:67:f0:65:b4:45:c0:ac:a9:
3d:07:f2:73:e2:62:b8:11:3e:7d:56:69:f1:2f:35:
33:71:98:62:de:4e:55:3d:84:bc:eb:2d:ef:30:0a:
26:1a:aa:1a:0d:bb:9b:b9:4d:98:25:80:be:02:3f:
d0:3d:84:24:9c:57:fe:66:22:2f:55:d4:27:10:c9:
86:91:68:46:d8:0b:68:84:b0:50:9e:9c:29:63:a9:
1a:b9:89:fc:cc:35:77:52:7d:aa:f2:7c:d2:cc:2c:
f0:19:c5:a3:19:76:3d:b3:42:f0:ed:51:f2:fc:9f:
71:76:da:ce:e4:c0:b3:63:7e:5f:94:36:d2:b9:56:
22:5b:15:7e:1d:1c:ba:f5:6a:82:5f:ed:4d:95:b2:
16:78:46:49:e8:a2:6c:fd:6f:11:44:84:72:d8:81:
dc:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:E4:F4:E9:14:E0:7C:5A:55:61:A7:29:39:C9:57:51:E5:18:A6:A4
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/XuT06RTgfFpVYacpOclXUeUYpqQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.66.0/23
5.101.92.0/22
5.188.10.0/23
5.188.48.0/23
5.188.60.0/23
5.188.194.0/23
5.188.204.0/23
5.189.248.0/22
46.161.26.0/24
46.161.28.0/22
46.161.41.0/24
91.243.32.0/22
91.243.44.0/22
91.243.52.0-91.243.59.255
Signature Algorithm: sha256WithRSAEncryption
19:9f:fa:fb:8b:c2:2e:ab:94:00:71:f3:4a:63:57:fe:48:a5:
5e:6e:83:f8:bd:35:3d:31:10:0d:56:ac:60:72:42:11:0e:07:
ec:d0:49:07:57:eb:3b:d2:2b:ef:21:19:db:30:a3:a5:52:99:
7c:a8:52:01:5b:b1:03:f3:52:fe:c5:fd:e1:2b:4b:e3:fe:49:
63:a5:f1:66:26:6c:a9:9a:02:ba:2e:90:80:99:42:00:f0:a6:
5f:4c:52:9c:53:3e:09:69:af:ab:6e:37:d7:cd:a3:e4:68:29:
6e:5e:c0:24:66:f7:05:4c:b4:49:f2:0f:92:0e:5a:de:2f:fc:
a6:17:fb:c2:a1:ca:6d:37:b7:1d:fb:a5:dc:ad:48:b8:71:05:
4c:f6:2a:5c:af:c6:8a:40:56:f0:c8:56:23:90:49:ad:4d:ca:
89:6f:82:e8:64:07:11:64:36:3a:69:97:d6:70:dd:ab:95:17:
c7:04:65:ae:2e:df:9f:7b:4b:05:fa:d7:75:83:1c:fb:29:26:
ba:0a:34:b7:b0:03:63:e0:04:8b:55:99:ea:97:ea:61:b9:4f:
b2:3c:82:09:c5:ba:d7:f7:5c:f7:69:e3:bf:8e:f2:61:11:e0:
98:c9:0b:eb:3d:3d:18:a6:9b:88:ae:a3:51:a1:13:38:5e:a7:
1e:7b:02:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 26 10:53:47 2023 by rpki-client on console-fra.rpki-client.org