Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/ET2XePRPSTfdmD46oNI0sPE8oTA.roa
File: ET2XePRPSTfdmD46oNI0sPE8oTA.roa (raw, json)
Hash identifier: vMcEoySDaNIVVt6lvsrawkjj1b4vxVl0GQrtlSFd2sw=
Subject key identifier: 11:3D:97:78:F4:4F:49:37:DD:98:3E:3A:A0:D2:34:B0:F1:3C:A1:30
Certificate issuer: /CN=352ae33b11b36a319ba81347d852480d8e74c87d
Certificate serial: 019034BAC800405915CA52538AAAA1B71448
Authority key identifier: 35:2A:E3:3B:11:B3:6A:31:9B:A8:13:47:D8:52:48:0D:8E:74:C8:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NSrjOxGzajGbqBNH2FJIDY50yH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/ET2XePRPSTfdmD46oNI0sPE8oTA.roa
Signing time: Thu 20 Jun 2024 08:19:34 +0000
ROA not before: Thu 20 Jun 2024 08:19:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12430
IP address blocks: 5.224.0.0/15 maxlen: 15
31.4.0.0/16 maxlen: 24
37.222.0.0/15 maxlen: 24
46.24.0.0/14 maxlen: 14
46.136.0.0/16 maxlen: 16
62.87.0.0/17 maxlen: 24
77.208.0.0/14 maxlen: 24
77.224.0.0/13 maxlen: 13
87.124.192.0/18 maxlen: 18
87.125.0.0/16 maxlen: 16
87.235.0.0/16 maxlen: 16
89.6.0.0/15 maxlen: 15
93.113.16.0/21 maxlen: 21
93.113.136.0/21 maxlen: 21
94.248.64.0/18 maxlen: 18
95.60.0.0/14 maxlen: 14
148.56.0.0/16 maxlen: 16
159.147.0.0/16 maxlen: 16
178.57.128.0/18 maxlen: 18
178.139.0.0/16 maxlen: 16
188.84.0.0/14 maxlen: 14
188.211.228.0/22 maxlen: 22
193.125.0.0/16 maxlen: 16
194.220.0.0/16 maxlen: 16
212.73.32.0/19 maxlen: 19
212.145.0.0/16 maxlen: 16
212.166.128.0/17 maxlen: 17
217.130.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Thu 20 Jun 2024 10:18:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:34:ba:c8:00:40:59:15:ca:52:53:8a:aa:a1:b7:14:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=352ae33b11b36a319ba81347d852480d8e74c87d
Validity
Not Before: Jun 20 08:19:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=113d9778f44f4937dd983e3aa0d234b0f13ca130
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:de:50:d0:fe:a9:e5:e0:fc:6e:ff:3a:6a:01:
35:86:44:e1:50:c7:df:02:ad:e0:59:f1:20:8a:87:
07:8c:76:2b:62:c1:91:97:08:e1:58:dc:73:78:35:
de:24:45:cd:65:a4:d5:68:b8:eb:a4:bc:f8:ff:e8:
15:da:a7:f3:0a:b8:48:8a:1a:c7:f2:be:4c:b1:42:
14:54:f0:d2:75:9b:6b:5e:4f:49:3c:97:2b:c8:8e:
fa:d8:ff:5d:22:d8:c0:80:99:41:2f:74:89:d2:fc:
e8:85:0c:32:c7:b5:b9:c4:14:be:75:c9:d4:06:1b:
e2:1d:bd:a7:b4:10:54:9d:8b:63:e9:ef:e0:85:96:
f8:5e:f1:25:6b:79:cf:07:5d:c2:61:c0:84:ef:09:
59:bf:40:fa:31:fc:ad:e2:fb:0c:a6:9a:50:a7:c7:
db:d6:ff:0e:d3:e5:30:05:3d:d4:f6:e0:8e:1a:f2:
a1:db:bb:ac:c5:d3:4b:a3:89:7c:ab:2f:7e:37:d4:
29:3b:e7:6d:3b:66:7f:fe:1e:7d:1c:61:26:c6:eb:
59:5a:c3:d1:4b:d7:23:5a:ae:65:3e:8d:75:6a:16:
94:e5:07:dd:4b:f0:ac:4b:81:ea:b1:70:af:69:0e:
ac:1f:0e:de:e2:30:b5:39:2e:13:8b:bb:92:80:1c:
8d:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:3D:97:78:F4:4F:49:37:DD:98:3E:3A:A0:D2:34:B0:F1:3C:A1:30
X509v3 Authority Key Identifier:
keyid:35:2A:E3:3B:11:B3:6A:31:9B:A8:13:47:D8:52:48:0D:8E:74:C8:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NSrjOxGzajGbqBNH2FJIDY50yH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/ET2XePRPSTfdmD46oNI0sPE8oTA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/NSrjOxGzajGbqBNH2FJIDY50yH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.224.0.0/15
31.4.0.0/16
37.222.0.0/15
46.24.0.0/14
46.136.0.0/16
62.87.0.0/17
77.208.0.0/14
77.224.0.0/13
87.124.192.0-87.125.255.255
87.235.0.0/16
89.6.0.0/15
93.113.16.0/21
93.113.136.0/21
94.248.64.0/18
95.60.0.0/14
148.56.0.0/16
159.147.0.0/16
178.57.128.0/18
178.139.0.0/16
188.84.0.0/14
188.211.228.0/22
193.125.0.0/16
194.220.0.0/16
212.73.32.0/19
212.145.0.0/16
212.166.128.0/17
217.130.0.0/16
Signature Algorithm: sha256WithRSAEncryption
7d:5e:81:68:2d:4b:88:2e:db:1d:36:0e:08:b4:99:c7:12:16:
85:c0:f2:96:91:83:71:60:e8:e5:33:34:a3:1a:6b:d0:73:c9:
f1:e8:a1:5e:d0:8d:3b:ce:0b:bb:b5:b3:24:ba:15:9b:c4:b1:
04:d6:6b:19:02:7b:50:17:c8:74:b2:52:68:3a:22:cc:59:dd:
cc:cf:b4:f0:68:da:6b:bd:10:18:9d:08:1c:b8:07:cb:ae:bb:
20:92:61:23:68:9d:67:ff:91:ba:88:79:f6:aa:9e:78:f0:9a:
43:8d:f0:84:d8:09:cc:d2:82:40:b6:a8:26:a8:43:3f:85:2e:
b2:a2:06:ff:8d:60:24:c0:11:87:dc:2b:41:a5:20:c2:06:af:
29:1c:a1:b2:a2:f2:b0:7c:36:71:33:46:e6:00:ac:85:81:d1:
cc:49:50:16:c2:54:ad:95:a1:f5:87:99:8c:0e:dd:58:9a:d4:
b4:83:6b:de:80:0c:54:41:c7:be:ec:7f:b5:1a:f9:36:3c:34:
f2:e2:63:37:9a:74:f5:05:49:6d:80:db:2e:50:ef:f6:f6:2a:
ea:66:1e:25:65:24:db:93:65:12:57:3f:2d:e3:5a:26:d4:e8:
ee:9a:17:7b:0d:52:58:c0:0c:23:cc:43:18:b4:cf:dc:aa:f1:
41:b9:1d:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 20 15:45:56 2024 by rpki-client on console-ams.rpki-client.org