Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/s1kBXZOBdKSD8tE4dOJXDo53Vx0.roa
File: s1kBXZOBdKSD8tE4dOJXDo53Vx0.roa (raw, json)
Hash identifier: FJyG/fTWN44svjC07EBl1RIPN1k3780bwhI+XD73N1I=
Subject key identifier: B3:59:01:5D:93:81:74:A4:83:F2:D1:38:74:E2:57:0E:8E:77:57:1D
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018781D218F7E014D5D4347C13FAA2B8E212
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/s1kBXZOBdKSD8tE4dOJXDo53Vx0.roa
Signing time: Fri 14 Apr 2023 22:10:42 +0000
ROA not before: Fri 14 Apr 2023 22:10:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30938
IP address blocks: 45.12.216.0/24 maxlen: 24
45.12.217.0/24 maxlen: 24
45.12.219.0/24 maxlen: 24
45.12.218.0/24 maxlen: 24
5.39.248.0/24 maxlen: 24
5.39.251.0/24 maxlen: 24
5.39.252.0/24 maxlen: 24
5.39.250.0/24 maxlen: 24
5.39.253.0/24 maxlen: 24
185.5.36.0/22 maxlen: 22
31.192.240.0/21 maxlen: 21
5.178.98.0/24 maxlen: 24
5.178.97.0/24 maxlen: 24
5.178.96.0/24 maxlen: 24
5.144.176.0/21 maxlen: 21
5.178.99.0/24 maxlen: 24
5.178.101.0/24 maxlen: 24
5.178.105.0/24 maxlen: 24
5.178.104.0/24 maxlen: 24
5.39.254.0/24 maxlen: 24
5.39.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 23 Apr 2023 20:44:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:81:d2:18:f7:e0:14:d5:d4:34:7c:13:fa:a2:b8:e2:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Apr 14 22:10:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b359015d938174a483f2d13874e2570e8e77571d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:91:88:88:c9:c6:3b:2c:d7:13:d0:7a:ec:bf:
46:1c:33:f7:fa:35:25:ba:6c:d2:53:b2:0e:ef:f6:
3f:26:9c:d6:e1:1a:60:10:b3:8e:a1:40:7e:e7:6d:
93:2f:c4:e1:69:ff:e8:93:f8:86:9c:ec:70:77:0a:
87:60:e4:cc:38:0c:ca:5b:ef:23:fd:83:b5:f3:3a:
9f:66:2e:f4:9f:39:8e:b9:87:08:2d:cc:dc:a8:21:
1c:da:ca:73:fc:57:43:d9:c7:4d:56:00:34:1d:12:
e5:a2:0c:4b:36:7a:4e:41:9e:9d:8a:b9:b2:8b:5a:
f5:52:1f:46:38:bd:37:62:16:9c:22:4b:90:3e:43:
71:7b:c4:77:97:51:e1:9b:82:e3:24:d3:2b:7b:30:
3a:83:ce:d9:0d:1c:3a:3b:10:4d:22:94:4d:e4:62:
93:2d:85:bc:cc:83:93:24:5a:5d:1a:06:10:ea:f1:
8c:eb:76:76:de:0f:84:52:3a:b2:a0:ec:91:25:b1:
84:da:3d:e6:4e:90:c1:ad:01:80:70:c6:fb:c8:49:
c0:43:47:a1:5e:c5:b8:92:c1:1b:43:92:62:eb:f6:
f1:79:76:65:20:2f:e6:61:12:bb:43:31:c1:5d:28:
7d:4b:f4:81:b8:b5:94:2d:00:c1:43:4e:24:d4:65:
11:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:59:01:5D:93:81:74:A4:83:F2:D1:38:74:E2:57:0E:8E:77:57:1D
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/s1kBXZOBdKSD8tE4dOJXDo53Vx0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.39.248.0/24
5.39.250.0-5.39.255.255
5.144.176.0/21
5.178.96.0/22
5.178.101.0/24
5.178.104.0/23
31.192.240.0/21
45.12.216.0/22
185.5.36.0/22
Signature Algorithm: sha256WithRSAEncryption
92:42:5e:d1:d5:ea:15:19:22:5b:51:24:f3:ef:0d:e6:90:cf:
5c:35:36:2e:89:fa:f1:fc:38:11:f8:99:e3:f7:36:81:ba:96:
56:81:d9:23:c0:73:72:11:59:8a:4c:62:9d:57:cb:87:c2:88:
1b:cd:e8:c5:ff:42:b2:fa:dd:53:88:3f:1c:2a:09:d2:41:67:
01:11:e6:93:18:64:ec:12:d3:c5:76:ce:2b:8b:c1:5c:2e:37:
6a:bc:bc:03:55:d6:21:90:37:50:b8:1f:9d:8e:a7:da:f1:10:
b9:36:a9:b0:5a:c6:a5:7b:f8:a8:15:9b:5b:67:f9:6a:6b:79:
9c:1d:91:cb:99:a6:27:da:81:1c:07:42:19:a7:96:aa:14:f6:
65:9f:81:fc:1a:d5:bf:78:4e:fa:39:2d:d9:ef:8d:00:f0:5d:
0a:1b:55:3d:1f:44:03:13:ce:5f:be:a4:20:e9:a8:b7:4e:53:
61:3d:19:51:81:7d:39:b0:63:85:2a:ad:aa:8e:04:f9:69:ff:
bb:ad:c4:ed:67:8a:c6:6b:f4:33:c6:4e:ef:e8:ab:13:81:33:
7b:57:24:66:b9:9a:52:c9:05:65:d8:52:75:24:13:3a:8c:69:
61:da:f0:be:4d:f4:f6:f7:ee:a9:cf:aa:ed:b7:82:1b:07:ac:
b5:4e:b2:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:33 2024 by rpki-client on console-fra.rpki-client.org