Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ogvkRx263mYZbw3nOt2IsrP3AQk.roa
File: ogvkRx263mYZbw3nOt2IsrP3AQk.roa (raw, json)
Hash identifier: iovmNgVX26P66M57mCE/B7I7AT46SGU+L1mo4eNxzcA=
Subject key identifier: A2:0B:E4:47:1D:BA:DE:66:19:6F:0D:E7:3A:DD:88:B2:B3:F7:01:09
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 01893ED6C840A0C5C196C7939D0E8A2FE827
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ogvkRx263mYZbw3nOt2IsrP3AQk.roa
Signing time: Mon 10 Jul 2023 08:06:50 +0000
ROA not before: Mon 10 Jul 2023 08:06:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30938
IP address blocks: 45.12.216.0/24 maxlen: 24
45.12.217.0/24 maxlen: 24
45.12.219.0/24 maxlen: 24
45.12.218.0/24 maxlen: 24
5.39.248.0/24 maxlen: 24
5.39.251.0/24 maxlen: 24
5.39.252.0/24 maxlen: 24
5.39.250.0/24 maxlen: 24
5.39.253.0/24 maxlen: 24
185.5.36.0/22 maxlen: 22
31.192.240.0/21 maxlen: 21
5.178.97.0/24 maxlen: 24
5.178.96.0/24 maxlen: 24
5.178.99.0/24 maxlen: 24
5.144.183.0/24 maxlen: 24
5.178.105.0/24 maxlen: 24
5.178.104.0/24 maxlen: 24
5.178.106.0/24 maxlen: 24
5.178.109.0/24 maxlen: 24
5.39.254.0/24 maxlen: 24
5.39.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 31 Jul 2023 13:26:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:3e:d6:c8:40:a0:c5:c1:96:c7:93:9d:0e:8a:2f:e8:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Jul 10 08:06:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a20be4471dbade66196f0de73add88b2b3f70109
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f8:9f:e4:e9:12:66:f1:a7:69:82:3b:d6:86:
96:87:6b:c1:b7:17:59:92:41:d3:6b:62:d6:09:20:
9e:79:58:89:8f:36:76:2c:44:6c:ac:ae:7e:53:c5:
9f:c8:1f:2b:ec:76:cc:85:7f:b1:0f:50:3f:0d:4f:
ff:54:76:df:ae:a5:c5:d8:14:fc:60:74:6c:b0:7a:
58:ee:75:a3:f2:2b:51:e0:1d:9b:fe:cc:d6:01:e2:
64:f1:69:0e:4b:3c:40:e0:49:b8:b0:58:d8:97:78:
a9:03:9d:1c:92:5c:61:f2:4a:1f:b2:c7:d3:fe:28:
bd:72:0b:7c:28:e5:0b:65:de:66:6e:f1:14:a5:4b:
d5:be:24:c2:cd:ec:9d:bc:88:9f:d1:ec:2c:28:f7:
6f:fa:de:60:88:de:d3:18:39:71:d9:38:0d:a1:c4:
6e:be:ec:0a:8a:8f:84:ad:c2:5a:58:4a:7e:93:40:
59:52:12:77:ab:89:04:5e:33:ca:52:1a:5f:25:73:
69:b7:59:1f:fc:ef:ec:f4:80:bc:54:b1:99:fe:35:
4c:07:59:9a:36:04:eb:35:6d:f2:1a:f9:7f:a4:44:
33:69:6a:d0:d7:d5:f8:f2:60:00:70:b8:85:38:44:
6e:ec:c3:06:63:3c:cf:9c:ad:85:8d:94:6d:2e:ca:
b8:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:0B:E4:47:1D:BA:DE:66:19:6F:0D:E7:3A:DD:88:B2:B3:F7:01:09
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ogvkRx263mYZbw3nOt2IsrP3AQk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.39.248.0/24
5.39.250.0-5.39.255.255
5.144.183.0/24
5.178.96.0/23
5.178.99.0/24
5.178.104.0-5.178.106.255
5.178.109.0/24
31.192.240.0/21
45.12.216.0/22
185.5.36.0/22
Signature Algorithm: sha256WithRSAEncryption
d8:ba:5f:17:70:4e:b6:f7:80:5e:87:87:bb:a8:a9:ba:b6:d8:
b1:e9:f4:3d:35:f2:1f:76:1e:f9:d0:67:3e:01:2c:c2:e3:8f:
6d:d4:ca:a1:af:af:19:5b:5c:74:67:a9:d8:2e:36:6d:38:85:
06:63:4c:79:0f:97:02:74:cd:cc:e0:ad:93:f1:33:06:ee:e1:
7e:8d:3b:66:98:45:4c:13:23:47:cb:84:51:11:b1:9a:fc:c0:
19:00:05:da:7b:a8:3d:ff:bf:85:27:a1:b8:48:3e:d3:a1:f8:
11:c3:93:67:62:31:d7:45:01:16:4f:db:c9:1e:c2:af:fb:81:
54:fa:8b:eb:fd:e6:bc:c4:30:2c:d0:8d:43:28:ee:01:1f:51:
f5:24:73:c1:99:f2:32:7a:2e:29:eb:35:3b:b5:5c:94:df:c2:
08:c1:29:4b:7d:43:8d:04:48:9b:8b:98:de:be:14:17:0e:dc:
7a:10:e0:a3:f6:50:25:a6:b4:3c:9c:4c:ab:f3:02:23:8b:b5:
81:24:02:0a:6d:b0:b2:5a:10:d3:e0:aa:ce:cf:5d:41:fe:ea:
44:9a:3e:43:f3:3f:b1:19:57:59:43:53:d6:13:46:86:fa:ba:
64:b7:f7:af:61:fc:27:bd:32:a3:d3:be:54:b7:1f:a2:50:46:
f9:fd:4e:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:15 2024 by rpki-client on console-ams.rpki-client.org