Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/b-68hYoKdysOvG8OY7vz1whbER8.roa
File: b-68hYoKdysOvG8OY7vz1whbER8.roa (raw, json)
Hash identifier: rUpDaYQqsXN3KQngYvN+h5giXCLd3b73gcSYgduERx0=
Subject key identifier: 6F:EE:BC:85:8A:0A:77:2B:0E:BC:6F:0E:63:BB:F3:D7:08:5B:11:1F
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 0190DA78F77B3E883DF45B19FA809B68A555
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/b-68hYoKdysOvG8OY7vz1whbER8.roa
Signing time: Mon 22 Jul 2024 12:44:39 +0000
ROA not before: Mon 22 Jul 2024 12:44:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35277
IP address blocks: 5.8.45.0/24 maxlen: 24
5.8.46.0/24 maxlen: 24
5.8.47.0/24 maxlen: 24
5.101.44.0/24 maxlen: 24
5.101.45.0/24 maxlen: 24
5.101.46.0/24 maxlen: 24
5.101.47.0/24 maxlen: 24
5.188.50.0/24 maxlen: 24
5.188.200.0/24 maxlen: 24
5.188.201.0/24 maxlen: 24
5.188.202.0/24 maxlen: 24
5.189.216.0/24 maxlen: 24
5.189.217.0/24 maxlen: 24
5.189.218.0/24 maxlen: 24
5.189.219.0/24 maxlen: 24
5.189.252.0/24 maxlen: 24
5.189.253.0/24 maxlen: 24
5.189.254.0/24 maxlen: 24
5.189.255.0/24 maxlen: 24
91.243.40.0/24 maxlen: 24
91.243.43.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 30 Sep 2024 08:55:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:da:78:f7:7b:3e:88:3d:f4:5b:19:fa:80:9b:68:a5:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Jul 22 12:44:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6feebc858a0a772b0ebc6f0e63bbf3d7085b111f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:fb:fc:5b:f1:a6:e7:42:0d:57:ca:69:d9:c1:
e3:8f:b7:ae:6b:6d:6d:2f:8e:46:61:d2:0c:49:ff:
00:5c:ba:2d:de:86:c0:b4:98:33:d7:4d:72:a9:0a:
05:d6:ab:55:16:79:d9:c6:f3:61:a0:04:5b:0d:b1:
ee:61:ca:34:dc:0f:56:3e:d7:46:21:ff:99:d5:73:
d2:80:59:0c:4a:a4:1f:0e:e2:14:40:9f:e0:21:53:
2b:8c:2e:54:de:7f:ea:ba:57:53:43:13:5d:e9:97:
d2:4e:3b:ac:9a:c6:55:f7:6c:dd:b9:db:fe:19:a7:
73:45:68:01:0d:29:32:b3:0d:b7:41:40:e2:12:a9:
20:34:cd:e7:a1:13:6a:00:e3:a4:f4:08:70:ae:0a:
ec:c2:23:53:a6:8c:c1:4f:7f:d1:14:61:a8:dc:dc:
b9:27:15:42:93:b6:b7:5d:bc:2d:09:46:97:ab:12:
f9:34:1f:7f:80:bf:07:97:96:ed:6c:45:12:78:0c:
20:29:9a:52:d2:fb:ca:42:71:f8:52:dc:55:35:17:
77:f7:a7:d4:8f:f8:92:f6:13:77:fd:2f:5c:46:c4:
1b:09:8a:cd:80:ef:1b:59:00:65:51:dd:a1:5d:6d:
e3:c2:d9:8a:64:02:f7:60:30:ba:58:86:b1:21:63:
c1:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:EE:BC:85:8A:0A:77:2B:0E:BC:6F:0E:63:BB:F3:D7:08:5B:11:1F
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/b-68hYoKdysOvG8OY7vz1whbER8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.45.0-5.8.47.255
5.101.44.0/22
5.188.50.0/24
5.188.200.0-5.188.202.255
5.189.216.0/22
5.189.252.0/22
91.243.40.0/24
91.243.43.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:eb:d5:cd:cf:0f:a4:90:7a:75:3b:68:63:25:7d:d7:ed:0d:
ec:dc:e5:a7:d7:fb:3d:8a:a1:6e:35:80:f2:0f:74:25:bb:d6:
f7:d3:a4:ec:e4:db:4e:56:ac:ad:2d:a5:f3:08:12:74:30:a4:
a4:08:96:f0:0b:d4:88:ab:7d:7d:19:17:bb:b4:48:e1:a2:5e:
5b:3e:1b:00:09:ab:cd:96:ba:c6:f9:a4:5b:4a:e6:e9:9b:65:
cc:a7:3c:f2:c9:ff:b4:8b:a8:c8:e9:26:de:f0:4f:e9:f0:69:
06:bf:20:b7:b7:52:10:e6:66:5e:f7:44:62:dc:fd:76:4f:3b:
cc:52:ec:a6:97:50:70:e6:8c:25:5f:92:28:f8:f9:47:30:0b:
1e:69:3e:36:b4:87:91:67:34:13:c5:1d:e0:45:c8:b0:f1:07:
76:40:36:f1:56:bb:0a:a7:d1:59:a4:3f:b6:4c:61:a4:ee:da:
e9:d4:d4:5c:1b:54:0d:89:2e:71:16:20:69:9a:59:5e:0d:df:
bc:98:f9:50:49:3a:6a:c3:a7:ef:5a:73:5d:22:d1:0a:ab:41:
75:06:b9:07:c8:80:b0:03:b1:78:49:53:41:64:8f:99:7e:44:
f1:ca:cf:4d:87:82:75:f1:a0:a8:44:19:28:c2:ce:78:b8:b3:
7c:82:21:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 30 10:56:32 2024 by rpki-client on console-fra.rpki-client.org