Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/3RzVbHKOB9XTnXRQ7pcyQP5VKao.roa
File: 3RzVbHKOB9XTnXRQ7pcyQP5VKao.roa (raw, json)
Hash identifier: cMUwGpB16J7D6M4OQlTF22A2WkwR5Ei7HDalLzxoufw=
Subject key identifier: DD:1C:D5:6C:72:8E:07:D5:D3:9D:74:50:EE:97:32:40:FE:55:29:AA
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 018FA61C96F490A9347672129DC2A2ADCEAE
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/3RzVbHKOB9XTnXRQ7pcyQP5VKao.roa
Signing time: Thu 23 May 2024 15:40:42 +0000
ROA not before: Thu 23 May 2024 15:40:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5650
IP address blocks: 46.173.240.0/21 maxlen: 21
64.43.104.0/22 maxlen: 22
64.43.112.0/22 maxlen: 22
64.43.124.0/22 maxlen: 22
91.233.0.0/23 maxlen: 23
91.245.184.0/22 maxlen: 22
176.96.88.0/22 maxlen: 22
176.102.120.0/21 maxlen: 21
176.102.120.0/22 maxlen: 22
176.102.124.0/22 maxlen: 22
176.103.240.0/21 maxlen: 21
176.103.240.0/22 maxlen: 22
176.103.244.0/22 maxlen: 22
176.116.232.0/22 maxlen: 22
178.212.184.0/21 maxlen: 21
178.212.184.0/22 maxlen: 22
178.212.188.0/22 maxlen: 22
185.55.4.0/22 maxlen: 22
185.55.4.0/23 maxlen: 23
185.55.6.0/23 maxlen: 23
185.55.140.0/22 maxlen: 22
185.55.140.0/23 maxlen: 23
185.55.142.0/23 maxlen: 23
193.36.204.0/22 maxlen: 22
193.36.208.0/21 maxlen: 24
Validation: Failed, certificate revoked on Tue 28 May 2024 13:27:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:a6:1c:96:f4:90:a9:34:76:72:12:9d:c2:a2:ad:ce:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: May 23 15:40:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dd1cd56c728e07d5d39d7450ee973240fe5529aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:91:e5:3c:28:9f:af:1a:8e:e7:af:37:07:f4:
c5:79:57:74:86:69:71:7e:90:91:36:f9:3f:1b:a8:
0b:ec:b0:88:50:07:31:c6:9f:b6:66:81:57:74:f4:
65:97:22:6c:0c:6e:c8:30:49:d9:39:45:91:68:33:
6a:50:e2:95:16:e9:27:e2:d7:53:09:d7:73:12:46:
ab:97:10:8a:7a:09:59:ca:46:90:23:cd:01:93:41:
9b:bb:3a:61:2e:58:a3:74:e8:ba:3a:77:c9:d7:a2:
06:a8:de:d0:07:55:15:5f:ae:17:44:fd:1a:55:6c:
43:96:76:9b:ff:44:ad:4f:89:4f:c5:3a:2f:1d:08:
7b:63:38:ea:d4:1c:fb:08:8b:41:62:f9:56:2b:06:
52:e5:b8:9c:2d:d9:fa:aa:8f:90:9c:f6:cf:ba:57:
b5:26:b4:c5:ad:2f:84:40:aa:2c:bb:59:63:b3:ca:
be:19:e0:7a:cb:a5:c6:d9:d3:30:a7:0e:ec:8c:57:
d4:3b:7a:e4:f9:0c:b5:bf:18:0e:80:a5:bf:54:61:
a2:62:db:00:c2:57:44:c9:7a:5b:ea:50:b7:2a:e7:
0b:bf:8c:93:78:95:90:86:86:63:e7:b0:79:52:89:
de:9b:3d:7d:a6:e7:f9:22:25:19:c5:6d:0d:a0:44:
56:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:1C:D5:6C:72:8E:07:D5:D3:9D:74:50:EE:97:32:40:FE:55:29:AA
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/3RzVbHKOB9XTnXRQ7pcyQP5VKao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.173.240.0/21
64.43.104.0/22
64.43.112.0/22
64.43.124.0/22
91.233.0.0/23
91.245.184.0/22
176.96.88.0/22
176.102.120.0/21
176.103.240.0/21
176.116.232.0/22
178.212.184.0/21
185.55.4.0/22
185.55.140.0/22
193.36.204.0-193.36.215.255
Signature Algorithm: sha256WithRSAEncryption
15:30:95:04:b9:90:11:ad:78:f9:94:ef:35:af:29:6a:ff:a1:
d0:8b:a5:39:5c:6e:8f:20:be:c8:39:15:96:44:12:d0:b0:01:
43:3a:c8:6f:96:26:00:f2:cf:c6:cb:21:81:82:75:81:c6:7e:
66:74:70:1f:2d:b1:60:2d:1a:5d:cd:e6:ee:4d:4c:65:e4:99:
de:ff:e1:ca:4b:b5:b7:ce:1a:d7:04:f3:6f:c3:4c:c6:f3:2b:
de:17:2b:cc:f0:c6:89:09:0c:d0:92:bf:92:47:24:79:c0:50:
a0:eb:ed:6b:2b:6f:27:6b:d9:30:1a:40:eb:80:7a:ca:82:18:
03:3b:92:01:4b:5f:fb:5a:f1:fd:c6:e1:4f:f9:5e:e5:37:96:
b0:93:c8:60:3a:7c:ac:0d:12:88:0b:c7:0f:37:4c:38:79:4a:
cf:a9:f4:66:25:fc:39:2a:e3:29:f1:06:f0:79:13:4f:e7:18:
6d:05:b6:de:75:39:56:35:b3:23:b0:cd:54:86:15:fe:63:e0:
5d:d4:e7:89:e4:99:83:7e:43:2f:48:b2:47:54:9d:43:59:7e:
34:e1:86:3d:c4:61:99:fa:65:07:5b:da:82:61:7f:81:f0:6a:
c5:c7:be:34:95:48:e7:d3:83:b5:cb:5b:df:30:e0:c5:39:1c:
29:a5:e5:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:47 2024 by rpki-client on console-ams.rpki-client.org