Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/EFcxkHcqu10fWTElF4CSApOAWb8.roa
File: EFcxkHcqu10fWTElF4CSApOAWb8.roa (raw, json)
Hash identifier: p3o+EakmpbC53bgFK1GG7BbjN0zs9Ucn4euWOsSOSPQ=
Subject key identifier: 10:57:31:90:77:2A:BB:5D:1F:59:31:25:17:80:92:02:93:80:59:BF
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018E8CA32394CC308394820BAFBD657908C8
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/EFcxkHcqu10fWTElF4CSApOAWb8.roa
Signing time: Fri 29 Mar 2024 23:54:45 +0000
ROA not before: Fri 29 Mar 2024 23:54:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30938
IP address blocks: 5.39.248.0/24 maxlen: 24
5.39.254.0/24 maxlen: 24
5.178.97.0/24 maxlen: 24
5.178.99.0/24 maxlen: 24
31.192.240.0/21 maxlen: 21
45.12.216.0/24 maxlen: 24
185.5.36.0/22 maxlen: 22
Validation: Failed, certificate revoked on Sat 30 Mar 2024 14:30:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:8c:a3:23:94:cc:30:83:94:82:0b:af:bd:65:79:08:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Mar 29 23:54:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=10573190772abb5d1f59312517809202938059bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:7b:6f:66:51:fb:bc:d1:1a:56:78:ea:ec:1f:
c1:b6:9a:82:23:29:a5:05:eb:61:01:33:e7:32:a9:
aa:fe:35:7b:ab:c0:4f:f3:ce:a3:b8:7e:20:f3:55:
d4:a4:dc:e7:3b:3d:05:c5:ae:bf:26:8c:4d:6f:69:
b0:51:6a:a7:37:d2:e1:c9:77:0c:0e:7d:9c:1d:06:
5a:61:5f:9f:94:1f:02:a0:b8:ef:86:9f:62:e5:7c:
54:f3:00:91:44:e3:b3:48:08:83:4d:b2:f6:65:3a:
13:9b:63:c5:0d:3c:1a:ca:5e:4a:08:54:c7:1d:ca:
d9:f8:65:d3:5e:ba:9f:55:b2:b8:54:ef:b3:ac:42:
52:2b:8e:60:ad:b0:aa:ba:68:23:fe:bc:d5:40:d1:
ad:2f:60:6e:12:00:1a:f1:2b:9f:2a:fc:36:56:db:
e4:55:36:a1:f5:27:90:e5:10:d2:27:8e:82:65:c5:
bb:06:91:fa:d1:9c:64:4f:fd:50:00:73:c0:4a:9e:
b0:67:e0:a9:f6:98:35:7a:96:e6:12:dd:ca:ea:99:
3e:b2:6e:5f:ac:82:98:10:db:ff:3a:b7:2c:5a:4c:
64:af:30:1e:a7:6e:ee:bf:b0:80:ff:e5:37:81:e5:
88:e9:e9:f8:08:a1:a5:a7:1f:cc:1f:03:9e:6e:3a:
7b:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:57:31:90:77:2A:BB:5D:1F:59:31:25:17:80:92:02:93:80:59:BF
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/EFcxkHcqu10fWTElF4CSApOAWb8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.39.248.0/24
5.39.254.0/24
5.178.97.0/24
5.178.99.0/24
31.192.240.0/21
45.12.216.0/24
185.5.36.0/22
Signature Algorithm: sha256WithRSAEncryption
37:14:c1:d0:09:31:2a:1b:65:bd:91:8a:d6:38:80:12:bc:fc:
0e:3d:c2:14:36:b5:4f:1f:58:69:9f:90:64:23:c3:a1:71:38:
4e:a4:75:c5:72:d4:9f:ec:65:36:d4:b6:41:e6:e0:f2:34:44:
28:a6:0a:31:c6:08:c2:33:98:b3:77:8d:75:0a:64:d8:a3:01:
4e:1a:26:25:c9:bb:19:17:39:aa:be:26:f7:b1:22:0f:e3:c7:
0c:41:68:aa:24:26:74:0b:28:2c:ea:f9:b7:c9:8e:27:26:c1:
14:0d:80:12:01:57:13:13:55:05:41:72:6c:34:40:31:92:60:
f8:3d:3f:01:ff:e2:43:e1:71:29:54:a5:a2:2c:ce:fb:34:bb:
bc:38:19:e6:be:9d:f4:fe:51:ec:46:a3:ae:4a:50:23:e7:26:
d9:38:d4:9d:12:94:ee:ce:85:8e:df:6c:c5:bb:e8:7e:9a:61:
92:5a:9d:b0:ba:e9:f6:ba:51:94:ed:eb:a7:62:30:9a:b7:74:
ac:b0:9e:4d:7b:d5:06:f2:63:bd:41:fd:61:19:cc:1d:19:d5:
f0:0a:57:a6:c4:40:4d:4c:92:69:56:29:86:7e:54:dc:6f:dc:
4f:0c:88:dc:51:ef:d7:b2:60:bd:01:53:c7:53:55:21:05:e5:
43:9e:17:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 30 15:29:42 2024 by rpki-client on console-ams.rpki-client.org