Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/FTLHDkInjhhbKLRR8imbgnXpzag.roa
File: FTLHDkInjhhbKLRR8imbgnXpzag.roa (raw, json)
Hash identifier: UGm9PGs7wR8yN+rC3RCAYKqow8xfI3rcPHqVtcb+eaY=
Subject key identifier: 15:32:C7:0E:42:27:8E:18:5B:28:B4:51:F2:29:9B:82:75:E9:CD:A8
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018CF8018E6999CBB0B54E0CD813E1951FAC
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/FTLHDkInjhhbKLRR8imbgnXpzag.roa
Signing time: Thu 11 Jan 2024 10:11:40 +0000
ROA not before: Thu 11 Jan 2024 10:11:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30938
IP address blocks: 45.12.216.0/24 maxlen: 24
45.12.217.0/24 maxlen: 24
45.12.219.0/24 maxlen: 24
5.39.248.0/24 maxlen: 24
5.39.251.0/24 maxlen: 24
5.39.252.0/24 maxlen: 24
5.39.250.0/24 maxlen: 24
5.39.253.0/24 maxlen: 24
185.5.36.0/22 maxlen: 22
31.192.240.0/21 maxlen: 21
5.178.98.0/24 maxlen: 24
5.178.97.0/24 maxlen: 24
5.178.96.0/24 maxlen: 24
5.178.99.0/24 maxlen: 24
5.178.100.0/24 maxlen: 24
5.178.105.0/24 maxlen: 24
5.178.104.0/24 maxlen: 24
5.178.106.0/24 maxlen: 24
5.178.109.0/24 maxlen: 24
5.39.254.0/24 maxlen: 24
5.39.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 Jan 2024 15:51:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f8:01:8e:69:99:cb:b0:b5:4e:0c:d8:13:e1:95:1f:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Jan 11 10:11:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1532c70e42278e185b28b451f2299b8275e9cda8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:e1:11:56:da:7e:7c:7e:42:4d:4a:f0:c0:9c:
ec:32:e2:68:a2:12:58:2e:45:4d:f7:c6:7f:7c:93:
ac:07:12:e3:a5:c3:4c:e9:50:0b:4a:5b:c1:c2:fa:
73:a1:ac:9e:73:12:3b:6a:e3:e6:ac:bf:03:32:b3:
41:36:ab:99:ac:c6:f7:35:22:8c:37:fb:00:c3:2f:
9c:f1:32:d8:10:8d:cc:97:c1:7f:0a:84:f6:78:d8:
4e:06:c1:d4:26:e6:a4:65:94:18:4c:58:22:14:21:
ff:ac:65:ca:e9:3a:e4:f6:a0:5e:0e:8f:21:96:23:
ad:f3:53:ba:75:68:f5:5e:9e:6f:d1:29:70:5b:a1:
70:2f:21:27:5f:3e:dc:74:93:05:6c:dd:02:4c:ce:
04:fa:12:42:cb:7e:8c:89:1e:5d:00:46:94:e1:f3:
4a:a5:d5:46:54:4d:8f:1c:fd:1d:e9:1a:51:e9:1c:
63:fc:84:73:cd:31:d0:8c:cc:e7:36:48:4d:a6:6c:
80:d0:44:95:96:f7:f5:44:b3:76:31:c5:c9:2a:68:
49:77:58:e3:5f:d9:a9:cd:a5:91:d3:01:b4:c7:e8:
94:24:c4:b2:fc:f8:df:8b:37:b4:99:a3:d7:c9:d7:
fa:20:ec:d9:25:1c:60:da:c2:09:24:d8:b3:ed:86:
65:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:32:C7:0E:42:27:8E:18:5B:28:B4:51:F2:29:9B:82:75:E9:CD:A8
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/FTLHDkInjhhbKLRR8imbgnXpzag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.39.248.0/24
5.39.250.0-5.39.255.255
5.178.96.0-5.178.100.255
5.178.104.0-5.178.106.255
5.178.109.0/24
31.192.240.0/21
45.12.216.0/23
45.12.219.0/24
185.5.36.0/22
Signature Algorithm: sha256WithRSAEncryption
57:3a:52:07:f1:58:c9:fc:70:6c:eb:bf:97:1d:6d:aa:fa:ab:
dc:44:c7:90:77:b9:d3:c8:04:3b:38:38:a2:d8:fa:d5:c7:c0:
6a:b3:70:07:26:36:5c:33:ae:1a:a5:c0:6d:07:b2:d0:54:f5:
c5:47:1c:95:93:b0:8f:13:11:90:8a:91:d2:a6:7c:5b:e8:fb:
92:02:1b:60:59:0b:3a:2b:0b:24:3e:0c:7b:c3:b3:c5:57:c8:
27:f6:16:07:fa:93:b5:83:75:da:04:a8:ac:08:16:5a:51:ec:
03:2e:13:bb:7d:7c:19:f0:51:c8:96:02:31:9b:fa:e0:f2:60:
13:66:f2:f6:c7:de:cc:d2:1a:37:0e:4f:ab:1b:45:6d:37:48:
6e:a6:59:1c:81:9b:d4:0f:82:f2:23:05:dc:fd:c8:64:66:f9:
fd:fb:68:4f:e7:01:06:5c:95:a0:8e:5e:3a:15:5c:e6:31:f9:
8d:4a:85:8c:ac:dd:e5:5c:f0:cd:aa:c6:fd:64:2b:7c:88:9b:
61:d2:24:99:e0:19:20:8b:94:e0:d4:87:1c:66:a3:93:3a:6a:
65:b1:3e:b8:9d:26:12:c6:fa:b1:a1:02:84:54:12:ad:64:0b:
98:5d:2b:a2:09:fd:5f:31:10:47:5a:15:a9:2b:2c:af:f3:9b:
4f:9f:6f:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 15 20:07:25 2024 by rpki-client on console-fra.rpki-client.org