Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/L8woAd43MZ45Px2Lwp-kmJioDUQ.roa
File: L8woAd43MZ45Px2Lwp-kmJioDUQ.roa (raw, json)
Hash identifier: L6wPP3mzDitNm/VZkLGwW/+nMTNn5G5ab8pquAtW2NY=
Subject key identifier: 2F:CC:28:01:DE:37:31:9E:39:3F:1D:8B:C2:9F:A4:98:98:A8:0D:44
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 01872CC03E84E1893ED3EB89061A389CDF72
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/L8woAd43MZ45Px2Lwp-kmJioDUQ.roa
Signing time: Wed 29 Mar 2023 09:43:29 +0000
ROA not before: Wed 29 Mar 2023 09:43:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30938
IP address blocks: 45.12.216.0/24 maxlen: 24
45.12.217.0/24 maxlen: 24
45.12.219.0/24 maxlen: 24
45.12.218.0/24 maxlen: 24
5.39.248.0/24 maxlen: 24
5.39.251.0/24 maxlen: 24
5.39.252.0/24 maxlen: 24
5.39.250.0/24 maxlen: 24
5.39.253.0/24 maxlen: 24
185.5.36.0/22 maxlen: 22
31.192.240.0/21 maxlen: 21
5.178.98.0/24 maxlen: 24
5.144.176.0/21 maxlen: 21
5.178.99.0/24 maxlen: 24
5.178.101.0/24 maxlen: 24
5.144.182.0/24 maxlen: 24
5.178.105.0/24 maxlen: 24
5.178.104.0/21 maxlen: 21
5.178.111.0/24 maxlen: 24
5.178.109.0/24 maxlen: 24
5.178.110.0/24 maxlen: 24
5.178.108.0/24 maxlen: 24
5.39.254.0/24 maxlen: 24
5.39.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 30 Mar 2023 07:30:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:2c:c0:3e:84:e1:89:3e:d3:eb:89:06:1a:38:9c:df:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Mar 29 09:43:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2fcc2801de37319e393f1d8bc29fa49898a80d44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:cc:4a:c0:e8:b7:ab:1a:3a:c2:7e:7d:5c:46:
4d:58:3e:44:a3:81:75:d7:b5:f2:88:bc:36:be:fa:
7d:24:7e:42:4a:b7:77:b9:b3:17:25:89:34:b5:2b:
29:0d:b7:56:94:04:44:1c:62:62:16:af:19:22:8c:
42:dd:8b:34:e2:21:84:6e:c4:06:31:27:6b:f1:32:
06:41:d2:08:4d:42:dd:5d:0e:e2:07:07:52:78:ab:
4e:6c:b8:01:3e:cf:db:18:b1:b4:8f:4d:e6:5e:63:
00:3d:b4:8d:43:e6:b6:9c:85:00:ee:9c:25:49:5b:
20:5d:fe:db:d4:a1:55:24:97:f5:f9:1f:59:ec:a0:
e9:a5:05:22:cc:79:04:5e:ee:31:61:b9:9f:ff:c1:
8d:3b:b0:77:57:c9:ff:a2:b1:be:bf:89:e1:4b:1d:
c1:5c:a8:6c:87:62:e4:a7:22:7e:97:c2:da:2a:06:
ef:e9:3b:8d:14:5e:7a:bc:19:65:b3:b4:e3:ed:c9:
0f:17:fc:84:60:76:28:93:e9:f7:a6:47:8d:53:4a:
c9:44:d9:59:43:89:79:a2:a5:57:02:d0:5a:f6:bd:
bf:e8:90:6f:1e:f1:91:f7:d3:62:f4:99:d5:ac:9f:
c8:a1:4c:bb:2e:61:fb:99:bb:63:7d:37:9b:a0:a3:
8a:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:CC:28:01:DE:37:31:9E:39:3F:1D:8B:C2:9F:A4:98:98:A8:0D:44
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/L8woAd43MZ45Px2Lwp-kmJioDUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.39.248.0/24
5.39.250.0-5.39.255.255
5.144.176.0/21
5.178.98.0/23
5.178.101.0/24
5.178.104.0/21
31.192.240.0/21
45.12.216.0/22
185.5.36.0/22
Signature Algorithm: sha256WithRSAEncryption
36:91:69:8c:7b:cb:7d:47:dc:65:94:e8:fe:35:c5:96:62:9e:
d0:40:5e:f0:4e:0c:cd:36:e4:56:56:f8:04:01:ac:49:08:2c:
8d:34:73:86:64:01:31:6c:e6:af:74:54:6b:88:52:9c:4a:3e:
6d:07:6d:b6:40:b3:88:91:9d:fc:5e:b2:30:db:4b:30:be:5a:
fa:38:e6:43:b3:48:e0:02:f0:c8:c5:02:10:bd:9a:c1:53:b9:
4a:70:7d:9b:b6:e7:62:28:d0:7a:9e:13:6d:dc:a2:6e:ad:f0:
94:50:a8:86:d8:82:1a:16:b1:25:e2:42:07:49:f6:4b:1c:20:
bd:65:88:90:69:94:98:d2:14:26:04:2b:f6:16:a9:c1:f5:7b:
68:09:e0:8e:12:87:67:7d:50:53:b2:8a:70:e6:20:95:cc:2b:
76:9f:dd:bb:94:b2:b1:eb:c5:83:74:03:f0:26:c0:cc:b1:cf:
b7:31:8f:28:c6:2f:01:db:fb:62:be:9f:aa:93:56:ee:c5:18:
a7:cd:76:2f:02:a4:c8:80:f3:03:e1:f4:93:2c:1f:ce:0a:58:
ba:bd:c5:2f:eb:56:72:2f:30:d4:a2:10:03:be:b8:a4:20:86:
79:c5:4c:36:38:d3:12:21:22:d5:ef:0d:34:6e:9e:0a:27:57:
2f:7d:37:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:14 2024 by rpki-client on console-ams.rpki-client.org