Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/Rk4s8rWN7mNkE6Wgnt8UVhkTN6A.roa
File: Rk4s8rWN7mNkE6Wgnt8UVhkTN6A.roa (raw, json)
Hash identifier: 4jEkNI0efS48BBVHni/pofWc3SN5LtPd4ui4eHv2g10=
Subject key identifier: 46:4E:2C:F2:B5:8D:EE:63:64:13:A5:A0:9E:DF:14:56:19:13:37:A0
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 0189B82DD5BAA94A63CEE6DF74151C8C85B5
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/Rk4s8rWN7mNkE6Wgnt8UVhkTN6A.roa
Signing time: Wed 02 Aug 2023 21:35:58 +0000
ROA not before: Wed 02 Aug 2023 21:35:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30938
IP address blocks: 45.12.216.0/24 maxlen: 24
45.12.217.0/24 maxlen: 24
45.12.219.0/24 maxlen: 24
45.12.218.0/24 maxlen: 24
5.39.248.0/24 maxlen: 24
5.39.251.0/24 maxlen: 24
5.39.252.0/24 maxlen: 24
5.39.250.0/24 maxlen: 24
5.39.253.0/24 maxlen: 24
185.5.36.0/22 maxlen: 22
31.192.240.0/21 maxlen: 21
5.178.97.0/24 maxlen: 24
5.178.96.0/24 maxlen: 24
5.178.99.0/24 maxlen: 24
5.144.183.0/24 maxlen: 24
5.178.105.0/24 maxlen: 24
5.178.104.0/24 maxlen: 24
5.178.106.0/24 maxlen: 24
5.178.109.0/24 maxlen: 24
5.39.254.0/24 maxlen: 24
5.39.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 05 Aug 2023 20:04:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b8:2d:d5:ba:a9:4a:63:ce:e6:df:74:15:1c:8c:85:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Aug 2 21:35:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=464e2cf2b58dee636413a5a09edf1456191337a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f9:e4:e5:95:95:59:c6:2d:b3:a3:a6:49:90:
b9:b8:b5:24:a9:a1:0b:e7:c0:ae:d2:31:d3:2e:87:
50:10:3d:7b:44:aa:00:7a:9c:87:3e:f1:77:a1:e8:
0e:a6:42:0d:1b:43:e3:e1:3b:cd:06:f7:a4:fb:94:
f8:8e:68:b2:32:15:2c:bc:77:90:66:f6:a8:c8:35:
b5:cc:fd:cc:42:a1:b6:25:43:eb:71:f5:48:b0:55:
42:41:46:70:59:ef:55:3e:1e:1b:ae:a3:0e:4f:a1:
c1:1a:41:41:b9:d6:5b:7f:ee:4b:0b:2c:83:ff:05:
78:ef:f4:4d:35:ad:3e:28:c1:11:d9:e3:a4:47:1f:
c1:5f:80:ac:08:69:be:91:57:cd:5f:51:93:ec:57:
53:98:e1:9d:52:9d:13:8a:81:11:2b:17:39:fd:0d:
ca:b5:8d:ca:af:12:5c:18:32:a1:3a:a2:31:84:cb:
5f:9b:37:73:3c:82:5c:25:d1:7c:2c:f1:f9:4f:46:
19:ed:2d:e8:81:6f:6a:45:e4:07:90:25:b6:78:bf:
64:08:db:f0:38:ee:1e:5a:4c:ac:9c:82:f7:6d:3c:
f2:64:ea:f7:cc:32:61:88:27:bf:f3:a2:ae:96:38:
e7:19:9b:99:ff:de:4e:a0:2e:0f:42:0e:db:fa:63:
e2:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:4E:2C:F2:B5:8D:EE:63:64:13:A5:A0:9E:DF:14:56:19:13:37:A0
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/Rk4s8rWN7mNkE6Wgnt8UVhkTN6A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.39.248.0/24
5.39.250.0-5.39.255.255
5.144.183.0/24
5.178.96.0/23
5.178.99.0/24
5.178.104.0-5.178.106.255
5.178.109.0/24
31.192.240.0/21
45.12.216.0/22
185.5.36.0/22
Signature Algorithm: sha256WithRSAEncryption
72:a2:a2:4f:20:c3:2b:18:43:ae:58:9c:4d:c6:09:fc:b7:dc:
34:80:37:2e:fd:d7:50:fa:f5:ba:02:ca:2f:4d:5a:c1:73:47:
da:90:56:85:77:46:a2:79:94:c5:71:67:77:b7:33:21:8f:e3:
47:74:e8:00:87:ab:9a:b8:2e:ed:a5:7c:a3:e8:f6:51:e5:8f:
1d:e6:b5:d2:14:d1:c2:d4:c2:48:85:74:4a:ad:b9:6d:b5:00:
0c:3a:f0:fa:e6:f9:8b:98:35:40:d0:fc:be:92:7c:56:45:86:
eb:6c:df:3e:90:5a:c9:aa:1e:16:02:fd:bc:67:12:0b:a9:f6:
fc:26:7f:46:2f:82:53:a7:bc:e0:eb:02:90:34:52:1b:22:91:
0c:7c:f1:82:bf:95:8c:9b:14:f5:da:00:d5:a8:6f:98:53:c8:
a4:ff:37:3e:76:ba:2c:ca:1a:60:a3:64:52:eb:12:6a:2e:c2:
08:7b:99:aa:3f:8f:07:d5:e8:ea:39:0d:bb:f3:30:4a:9c:65:
71:af:b1:f6:39:44:5b:e9:c1:6f:65:9f:65:bc:fb:39:36:26:
1d:f1:c7:5c:04:61:6d:a6:75:1e:bd:03:4b:91:e5:af:5e:95:
07:cb:1b:26:37:4d:f0:aa:93:96:c6:9a:51:1b:e3:d8:4f:fe:
6a:ae:75:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:33 2024 by rpki-client on console-fra.rpki-client.org