Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/5kT3OZ6Ps_OLsYisRq0uuIgA6vA.roa
File: 5kT3OZ6Ps_OLsYisRq0uuIgA6vA.roa (raw, json)
Hash identifier: aa5FgYfwlJEXrwF+goo2qCD69CrD++DEW92lbEclvu8=
Subject key identifier: E6:44:F7:39:9E:8F:B3:F3:8B:B1:88:AC:46:AD:2E:B8:88:00:EA:F0
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018A3137420C0A771F503992083EC24AB969
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/5kT3OZ6Ps_OLsYisRq0uuIgA6vA.roa
Signing time: Sat 26 Aug 2023 09:40:19 +0000
ROA not before: Sat 26 Aug 2023 09:40:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30938
IP address blocks: 45.12.216.0/24 maxlen: 24
45.12.217.0/24 maxlen: 24
45.12.219.0/24 maxlen: 24
45.12.218.0/24 maxlen: 24
5.39.248.0/24 maxlen: 24
5.39.251.0/24 maxlen: 24
5.39.252.0/24 maxlen: 24
5.39.250.0/24 maxlen: 24
5.39.253.0/24 maxlen: 24
31.192.240.0/21 maxlen: 21
5.178.97.0/24 maxlen: 24
5.178.96.0/24 maxlen: 24
5.178.99.0/24 maxlen: 24
5.144.183.0/24 maxlen: 24
5.178.100.0/24 maxlen: 24
5.178.105.0/24 maxlen: 24
5.178.104.0/24 maxlen: 24
5.178.111.0/24 maxlen: 24
5.178.106.0/24 maxlen: 24
5.178.109.0/24 maxlen: 24
5.178.110.0/24 maxlen: 24
5.178.108.0/24 maxlen: 24
5.39.254.0/24 maxlen: 24
5.39.255.0/24 maxlen: 24
185.5.36.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:31:37:42:0c:0a:77:1f:50:39:92:08:3e:c2:4a:b9:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Aug 26 09:40:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e644f7399e8fb3f38bb188ac46ad2eb88800eaf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:45:e4:a7:77:bc:ff:7b:db:24:10:fe:26:93:
82:6d:6a:ca:59:a7:81:66:82:3b:58:3f:ab:f7:79:
c1:8c:c2:dc:25:9c:e8:ea:cc:61:1c:c0:6b:69:5f:
b5:65:95:0f:22:e8:49:0b:be:01:67:3b:e0:94:a6:
2a:3c:98:a9:3c:52:4b:54:99:22:94:93:8d:6f:65:
fe:3c:4f:1a:dd:a9:b9:37:23:85:7b:70:e9:76:aa:
08:fe:95:de:00:ea:9f:a4:4c:1d:d6:44:47:44:a9:
62:33:92:26:5d:17:b1:11:09:41:4b:c0:28:23:13:
ea:cc:e5:f8:70:6a:1c:e1:7c:04:c2:57:0c:ad:7c:
ad:0b:65:67:89:63:83:af:54:6b:38:4e:53:9f:ab:
5f:96:c7:4e:f8:ae:46:48:c8:d9:6d:1b:21:74:7e:
be:29:10:0a:ce:39:4c:ad:b1:71:82:28:2f:d5:8e:
b8:b3:ae:39:3c:96:57:9a:63:a0:da:e8:c6:b9:ed:
6c:33:4e:6c:5f:b8:86:c0:54:90:b3:af:54:66:86:
df:cc:e0:88:fb:61:7b:eb:2b:98:77:95:81:4c:bb:
e5:bd:d8:ac:73:4f:ac:ae:a1:7b:81:0c:14:7e:83:
a6:26:68:22:36:9d:76:8c:9f:41:95:87:bb:3a:ba:
d1:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:44:F7:39:9E:8F:B3:F3:8B:B1:88:AC:46:AD:2E:B8:88:00:EA:F0
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/5kT3OZ6Ps_OLsYisRq0uuIgA6vA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.39.248.0/24
5.39.250.0-5.39.255.255
5.144.183.0/24
5.178.96.0/23
5.178.99.0-5.178.100.255
5.178.104.0-5.178.106.255
5.178.108.0/22
31.192.240.0/21
45.12.216.0/22
185.5.36.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:e3:5f:d6:bd:ef:62:fc:ae:fc:94:03:16:70:18:07:be:f7:
b5:e9:a0:17:aa:8e:ec:0a:7a:62:4d:44:ba:6c:e7:63:a2:c4:
8e:ec:4b:86:ac:cd:07:55:eb:d3:be:fa:1d:95:6f:79:12:25:
c2:f5:c0:c2:fe:9f:e6:33:18:e6:7c:af:2f:7d:20:10:91:29:
26:e6:67:a2:47:f7:ef:2f:ad:b7:0d:08:88:a6:bb:0a:b3:19:
43:01:20:b6:11:ec:ef:e5:25:2b:b5:e3:aa:15:15:45:be:a9:
20:cf:0c:66:16:2b:57:50:65:79:36:e6:d2:3e:b8:30:3e:9e:
b5:f4:e4:cb:12:03:9e:66:52:0e:fc:c3:61:ce:1f:c5:63:3a:
6b:99:a2:0f:4f:c4:95:65:15:61:5d:cb:33:38:51:33:08:ae:
05:78:be:7e:c8:51:7b:73:87:01:26:94:ef:8d:62:e7:3e:30:
7e:80:10:90:1b:3a:3a:c9:d3:21:25:8b:4a:32:c0:0b:c7:37:
dc:59:2c:72:ef:6c:dc:59:00:31:73:11:7c:86:c8:42:50:7d:
a3:26:b6:b2:5f:d1:27:ef:36:7f:19:17:e9:3b:2b:57:a7:89:
fa:eb:b6:18:81:14:36:48:4c:5c:aa:d8:10:ba:41:7f:31:c8:
46:0f:8c:f4
-----BEGIN CERTIFICATE-----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Generated at Sun Aug 27 15:16:30 2023 by rpki-client on console-ams.rpki-client.org