Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/CKAIYdqJpcH5PLOa810HtW1M360.roa
File: CKAIYdqJpcH5PLOa810HtW1M360.roa (raw, json)
Hash identifier: hX/Hiy13qx7anovWFq5y2B6YbkONNexq8GyUQsU5RH4=
Subject key identifier: 08:A0:08:61:DA:89:A5:C1:F9:3C:B3:9A:F3:5D:07:B5:6D:4C:DF:AD
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 0189265C4E05131245003ED884984A6AFBD5
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/CKAIYdqJpcH5PLOa810HtW1M360.roa
Signing time: Wed 05 Jul 2023 14:02:10 +0000
ROA not before: Wed 05 Jul 2023 14:02:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30938
IP address blocks: 45.12.216.0/24 maxlen: 24
45.12.217.0/24 maxlen: 24
45.12.219.0/24 maxlen: 24
45.12.218.0/24 maxlen: 24
5.39.248.0/24 maxlen: 24
5.39.251.0/24 maxlen: 24
5.39.252.0/24 maxlen: 24
5.39.250.0/24 maxlen: 24
5.39.253.0/24 maxlen: 24
185.5.36.0/22 maxlen: 22
31.192.240.0/21 maxlen: 21
5.178.97.0/24 maxlen: 24
5.178.96.0/24 maxlen: 24
5.144.176.0/21 maxlen: 21
5.178.99.0/24 maxlen: 24
5.144.183.0/24 maxlen: 24
5.178.105.0/24 maxlen: 24
5.178.104.0/24 maxlen: 24
5.178.106.0/24 maxlen: 24
5.39.254.0/24 maxlen: 24
5.39.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 08 Jul 2023 15:05:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:26:5c:4e:05:13:12:45:00:3e:d8:84:98:4a:6a:fb:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Jul 5 14:02:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=08a00861da89a5c1f93cb39af35d07b56d4cdfad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:34:60:2b:24:db:8b:f2:f7:82:7b:03:08:ef:
6a:69:22:1b:09:9a:7b:8c:4c:86:63:04:4d:4a:42:
a7:5b:31:6e:fd:d5:42:6c:6e:9b:ab:3d:27:e6:71:
d0:6f:1d:a9:ed:cf:bd:ef:d5:56:66:aa:23:35:f0:
fb:69:7c:88:8c:c5:b3:97:ba:f2:47:57:5d:a1:1b:
9f:e7:c1:4d:28:ad:8d:a7:92:fa:64:6d:64:50:e3:
2d:34:67:b2:20:37:49:15:b5:86:71:8e:66:92:77:
37:c3:51:cf:9e:ac:21:c2:cd:2b:5b:ac:4b:9d:11:
35:71:dc:45:a2:56:c8:07:02:9f:99:4b:00:4e:9d:
45:d3:9b:c5:2d:8a:49:a5:65:31:67:d6:a7:ab:d3:
d9:02:af:46:6f:11:39:00:66:d8:98:4f:de:74:63:
bc:88:1b:59:b4:19:2e:00:66:d6:19:b1:b0:15:a4:
25:b0:86:cc:52:0c:77:84:c5:00:3f:c9:2f:1f:aa:
0f:94:15:1f:44:1c:8c:8b:22:68:03:84:8f:1a:7b:
64:db:8c:4f:85:77:a0:0c:fd:17:d1:79:e2:93:b0:
1e:02:0d:7a:ad:06:7e:d0:70:72:db:f0:e3:a9:1b:
49:fd:2e:e0:58:2c:ac:27:4d:f2:42:89:f0:75:8c:
3f:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:A0:08:61:DA:89:A5:C1:F9:3C:B3:9A:F3:5D:07:B5:6D:4C:DF:AD
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/CKAIYdqJpcH5PLOa810HtW1M360.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.39.248.0/24
5.39.250.0-5.39.255.255
5.144.176.0/21
5.178.96.0/23
5.178.99.0/24
5.178.104.0-5.178.106.255
31.192.240.0/21
45.12.216.0/22
185.5.36.0/22
Signature Algorithm: sha256WithRSAEncryption
26:0b:9a:6a:ba:25:ce:cf:96:62:28:6b:db:9c:6a:2c:68:c7:
b7:b7:b9:f0:a1:d6:eb:36:c4:4e:e9:24:29:f9:02:f3:3c:54:
5c:bb:65:ff:1b:8c:96:d3:ae:83:9f:96:b2:bb:43:41:54:34:
72:df:58:2b:09:66:e1:14:19:f2:9a:02:8f:18:7c:31:59:c9:
bf:cc:f1:8a:56:e0:93:2b:84:8a:23:f1:44:14:5b:1b:cf:16:
e8:a7:a7:7e:5c:25:bf:60:19:ab:4c:5c:d4:cd:72:0d:0a:2b:
9a:e2:e9:18:bd:1d:64:1d:e0:1f:8c:b0:53:c1:d2:58:1a:6b:
d7:60:d6:ac:8a:84:d5:8b:8b:7b:78:48:67:60:4c:3e:26:f1:
e9:4d:f4:d3:77:08:c1:10:67:2a:2a:7f:fc:63:bd:77:bd:1b:
63:f7:22:53:53:97:2e:35:d0:34:b7:8e:ae:ca:15:8e:9b:a8:
5c:a8:5f:d9:a5:cf:b6:b1:f9:ef:f6:86:b2:e5:fd:33:17:2c:
13:87:0b:65:75:cc:59:5e:de:81:1f:5a:e6:76:96:7c:db:6e:
dd:7d:f1:e1:c0:47:45:e7:0e:98:57:e9:9b:2a:07:71:c1:14:
1f:d8:6a:2f:14:60:22:ab:02:97:d4:50:09:27:2a:6d:66:11:
25:1a:8e:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:33 2024 by rpki-client on console-fra.rpki-client.org