Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/53LNWDl02rZiFtry5XcJuATxZ2s.roa
File: 53LNWDl02rZiFtry5XcJuATxZ2s.roa (raw, json)
Hash identifier: oaOG7mJZVjkb9UI0u0tqWz9IT4T7SxG9lE+JEKTBgMs=
Subject key identifier: E7:72:CD:58:39:74:DA:B6:62:16:DA:F2:E5:77:09:B8:04:F1:67:6B
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 0189B73DF3E2CAF7EBFC561DD37FE92B28A7
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/53LNWDl02rZiFtry5XcJuATxZ2s.roa
Signing time: Wed 02 Aug 2023 17:13:57 +0000
ROA not before: Wed 02 Aug 2023 17:13:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30938
IP address blocks: 45.12.216.0/24 maxlen: 24
45.12.217.0/24 maxlen: 24
45.12.219.0/24 maxlen: 24
45.12.218.0/24 maxlen: 24
5.39.248.0/24 maxlen: 24
5.39.251.0/24 maxlen: 24
5.39.252.0/24 maxlen: 24
5.39.250.0/24 maxlen: 24
5.39.253.0/24 maxlen: 24
185.5.36.0/22 maxlen: 22
31.192.240.0/21 maxlen: 21
5.178.97.0/24 maxlen: 24
5.178.96.0/24 maxlen: 24
5.178.99.0/24 maxlen: 24
5.144.183.0/24 maxlen: 24
5.178.103.0/24 maxlen: 24
5.178.105.0/24 maxlen: 24
5.178.104.0/24 maxlen: 24
5.178.106.0/24 maxlen: 24
5.178.109.0/24 maxlen: 24
5.39.254.0/24 maxlen: 24
5.39.255.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b7:3d:f3:e2:ca:f7:eb:fc:56:1d:d3:7f:e9:2b:28:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Aug 2 17:13:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e772cd583974dab66216daf2e57709b804f1676b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:32:79:43:78:05:5f:24:7e:0d:09:64:8e:ec:
d4:5a:4f:19:d0:fe:da:4a:69:93:bb:7f:63:dc:bf:
0b:41:e2:2e:18:55:50:22:2e:3b:04:b4:2a:82:f3:
17:15:90:4c:f6:70:f9:d5:eb:d6:9b:b3:9b:f4:bf:
ce:f6:49:b8:49:2e:81:be:30:b0:b8:e4:a2:cd:83:
c4:b7:20:38:10:ba:db:06:a4:68:26:1f:dd:8d:51:
e2:5b:dd:00:7e:3d:ae:2b:e3:df:d4:a0:d4:5e:3d:
4b:de:c0:1c:04:71:5c:ce:fa:2b:1b:c1:e1:62:82:
f7:07:38:7b:5d:3c:5c:9a:08:c1:3b:6f:67:2c:a7:
f4:26:3a:4f:62:93:ef:ee:6e:3a:98:81:37:bd:27:
c3:f4:26:b2:0c:ed:8f:5d:c6:ae:f2:0f:79:3e:13:
b4:3b:55:a3:da:b1:c8:ef:3f:65:fb:96:c1:92:29:
88:d7:6b:5c:a9:8a:28:e6:60:6a:70:b7:62:b3:1c:
c1:70:61:1b:d9:f2:01:0a:9b:6f:c1:f7:57:ef:10:
42:71:59:26:c7:e4:61:be:78:f2:17:fa:07:96:af:
f3:be:59:c3:33:1e:89:97:df:6a:0c:3d:20:e9:2b:
2d:29:5d:8b:ac:d0:46:2d:c6:90:8c:6f:8d:63:d7:
9a:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:72:CD:58:39:74:DA:B6:62:16:DA:F2:E5:77:09:B8:04:F1:67:6B
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/53LNWDl02rZiFtry5XcJuATxZ2s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.39.248.0/24
5.39.250.0-5.39.255.255
5.144.183.0/24
5.178.96.0/23
5.178.99.0/24
5.178.103.0-5.178.106.255
5.178.109.0/24
31.192.240.0/21
45.12.216.0/22
185.5.36.0/22
Signature Algorithm: sha256WithRSAEncryption
ab:4a:5e:87:73:ea:4f:8f:6d:f2:9e:ce:6c:6d:68:4f:79:59:
b6:a0:0e:95:c8:20:56:dc:cf:20:94:35:64:c1:49:f7:ff:f5:
19:ba:91:e5:24:ac:59:72:e8:2c:b3:cf:ac:37:7e:d8:fe:30:
ac:04:78:6d:fe:2d:ea:af:31:a1:58:15:d3:d5:e3:7f:cc:c9:
e5:0a:4a:5e:d3:ac:93:a5:67:92:a0:62:54:c7:a9:53:48:fa:
ee:20:ad:ac:36:73:e9:c7:e8:b2:9e:5d:e3:b7:f7:30:a8:47:
62:6d:d5:2d:cd:e2:a1:28:d3:93:19:7a:78:c0:0e:03:c6:10:
0b:e9:9a:48:8c:a7:57:c7:09:2f:13:37:fe:3c:56:2c:12:af:
ea:60:1d:f5:b6:f7:2d:c5:fc:d9:ec:24:29:e2:ec:f4:a6:19:
1b:db:f4:27:7b:3e:ca:cb:cb:57:5b:77:09:5d:3c:24:ce:d9:
58:46:41:a6:fb:1d:84:56:13:95:db:b8:5c:f6:fb:3a:5f:6d:
09:c3:ef:11:59:6c:34:93:45:8e:62:56:04:6a:41:d0:4b:2b:
28:b2:48:35:0f:82:f0:5b:25:2f:f8:58:25:d8:ab:d0:22:de:
68:2b:98:e2:1d:56:31:5d:77:3e:90:83:2b:43:c8:f5:49:3e:
6c:10:45:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 2 21:53:19 2023 by rpki-client on console-fra.rpki-client.org