Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/1ezIZ8EaYaNs1gehZb_fIWYbsDo.roa
File: 1ezIZ8EaYaNs1gehZb_fIWYbsDo.roa (raw, json)
Hash identifier: zQssjWUbvpPH2Kq2R7mD1w0+FCbRi53X8Jj2uIBTDqo=
Subject key identifier: D5:EC:C8:67:C1:1A:61:A3:6C:D6:07:A1:65:BF:DF:21:66:1B:B0:3A
Certificate issuer: /CN=bf84113545d9000760f66062a4221933a2e959d8
Certificate serial: 019194EE7BD60710FC77AEAA96100888EEC0
Authority key identifier: BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/1ezIZ8EaYaNs1gehZb_fIWYbsDo.roa
Signing time: Tue 27 Aug 2024 17:42:22 +0000
ROA not before: Tue 27 Aug 2024 17:42:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44477
IP address blocks: 5.181.20.0/24 maxlen: 32
5.181.21.0/24 maxlen: 32
5.181.22.0/24 maxlen: 32
5.181.23.0/24 maxlen: 32
45.14.244.0/24 maxlen: 24
45.14.245.0/24 maxlen: 24
45.14.246.0/24 maxlen: 24
45.14.247.0/24 maxlen: 24
45.91.52.0/22 maxlen: 32
45.140.146.0/24 maxlen: 32
45.140.147.0/24 maxlen: 32
45.140.166.0/24 maxlen: 32
45.140.167.0/24 maxlen: 32
45.144.28.0/24 maxlen: 32
45.144.29.0/24 maxlen: 32
45.144.30.0/24 maxlen: 32
45.144.31.0/24 maxlen: 32
45.150.64.0/24 maxlen: 32
45.150.65.0/24 maxlen: 32
45.150.67.0/24 maxlen: 32
45.155.52.0/22 maxlen: 32
91.194.11.0/24 maxlen: 24
146.19.230.0/24 maxlen: 24
185.234.247.0/24 maxlen: 32
195.16.74.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Nov 2024 14:48:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:94:ee:7b:d6:07:10:fc:77:ae:aa:96:10:08:88:ee:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf84113545d9000760f66062a4221933a2e959d8
Validity
Not Before: Aug 27 17:42:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d5ecc867c11a61a36cd607a165bfdf21661bb03a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:eb:2c:fa:01:57:ad:12:a3:09:76:78:fd:4c:
e9:88:7e:d7:ea:13:27:73:88:49:22:9f:62:95:31:
2b:ed:81:ba:47:53:76:13:f9:67:7f:14:9f:27:09:
3b:f2:b1:9b:c9:75:bf:16:5c:d0:72:60:e2:57:10:
5a:0c:85:4d:4c:83:a0:27:b0:e1:9f:c2:e8:3d:6b:
ff:5d:e9:49:de:2d:9b:8f:21:24:ff:a6:ee:f4:fc:
c9:93:13:ca:95:eb:68:d3:76:ee:75:ab:0e:ef:f4:
ff:f6:7a:52:b2:24:26:bc:c7:52:50:7b:56:95:e5:
e0:f9:c9:b1:35:68:f8:f4:43:b2:48:28:88:91:9d:
a6:46:f0:50:d7:d8:f1:98:8e:20:3d:3b:5d:c4:5a:
21:f4:6c:08:d7:25:4a:37:74:6a:88:33:64:ae:35:
99:62:69:b8:1f:c5:6d:c2:9c:9a:cd:72:a6:8b:b9:
34:4a:8e:0c:85:24:3c:40:5a:9b:55:41:20:78:2e:
93:f0:d1:89:ee:df:65:20:df:22:e1:a5:f8:36:ba:
a9:a9:8b:41:49:f8:9d:fd:7b:c8:ac:62:f6:b3:dc:
d8:b1:4a:ca:ca:39:43:33:93:f5:d7:4c:ff:ad:b9:
e9:a5:1c:b4:f4:6b:da:1d:96:4f:b7:c2:e6:45:35:
22:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:EC:C8:67:C1:1A:61:A3:6C:D6:07:A1:65:BF:DF:21:66:1B:B0:3A
X509v3 Authority Key Identifier:
keyid:BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/1ezIZ8EaYaNs1gehZb_fIWYbsDo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.20.0/22
45.14.244.0/22
45.91.52.0/22
45.140.146.0/23
45.140.166.0/23
45.144.28.0/22
45.150.64.0/23
45.150.67.0/24
45.155.52.0/22
91.194.11.0/24
146.19.230.0/24
185.234.247.0/24
195.16.74.0/24
Signature Algorithm: sha256WithRSAEncryption
32:d2:48:0c:75:68:9f:15:32:ae:15:6d:24:d2:cc:3c:40:12:
cb:5f:a2:aa:e5:e7:00:fa:72:c5:45:87:f4:b2:85:81:bd:57:
4e:27:4a:8b:7d:82:d5:47:32:ac:1d:4c:5a:ea:d0:a0:fe:f9:
0c:36:dd:fb:68:29:21:a3:24:5a:67:0f:85:ab:fb:37:9b:d2:
4e:20:5f:6b:6d:09:df:b8:e0:d6:de:6b:ed:7a:c5:17:7e:7f:
d4:f4:8b:15:a5:17:6a:ac:db:f4:1d:62:dc:82:36:3c:83:76:
b2:75:4f:68:56:a2:fd:1f:5d:4f:b6:b7:3c:90:e4:87:fe:34:
4c:77:97:93:60:a6:b4:13:8b:4d:e0:25:82:16:36:2d:f8:ea:
85:b3:03:63:f2:b3:17:b7:88:97:84:bb:e0:81:50:72:4c:b2:
54:a9:37:cd:24:8f:b0:52:29:77:4f:eb:a2:61:42:5f:80:be:
9d:e8:37:bd:d6:c8:12:93:d3:7c:78:9f:b7:7e:ed:b1:d0:82:
84:de:fb:ec:9e:18:e3:df:32:5f:02:45:ad:71:17:b6:13:b8:
4d:8e:dd:0f:09:a1:04:80:d6:61:64:4f:dc:39:81:f1:74:40:
44:f4:b0:b0:0b:08:9a:9e:ef:34:4f:48:6a:fa:d4:5a:91:23:
c7:10:df:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 11 19:06:54 2024 by rpki-client on console-ams.rpki-client.org