Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/5VSXUBjk85ioJ2MOCah-35YWLfQ.roa
File: 5VSXUBjk85ioJ2MOCah-35YWLfQ.roa (raw, json)
Hash identifier: rjoCnTR2eE4+04AzvHt4w7qMTEfhelLYcpmUp0BxExg=
Subject key identifier: E5:54:97:50:18:E4:F3:98:A8:27:63:0E:09:A8:7E:DF:96:16:2D:F4
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 018D6C53A121EC8C5BF3A6FAE66BF10F60A5
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/5VSXUBjk85ioJ2MOCah-35YWLfQ.roa
Signing time: Sat 03 Feb 2024 00:17:16 +0000
ROA not before: Sat 03 Feb 2024 00:17:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200736
IP address blocks: 94.131.32.0/20 maxlen: 24
94.131.128.0/19 maxlen: 24
94.131.130.0/24 maxlen: 24
94.131.131.0/24 maxlen: 24
94.131.132.0/24 maxlen: 24
94.131.133.0/24 maxlen: 24
94.131.134.0/24 maxlen: 24
94.131.135.0/24 maxlen: 24
94.131.136.0/24 maxlen: 24
94.131.137.0/24 maxlen: 24
94.131.138.0/24 maxlen: 24
94.131.139.0/24 maxlen: 24
94.131.140.0/24 maxlen: 24
94.131.141.0/24 maxlen: 24
94.131.142.0/24 maxlen: 24
94.131.143.0/24 maxlen: 24
94.131.144.0/23 maxlen: 23
94.131.144.0/24 maxlen: 24
94.131.145.0/24 maxlen: 24
94.131.146.0/24 maxlen: 24
94.131.147.0/24 maxlen: 24
94.131.148.0/24 maxlen: 24
94.131.149.0/24 maxlen: 24
94.131.150.0/24 maxlen: 24
94.131.151.0/24 maxlen: 24
94.131.152.0/24 maxlen: 24
94.131.153.0/24 maxlen: 24
94.131.154.0/24 maxlen: 24
94.131.155.0/24 maxlen: 24
94.131.156.0/24 maxlen: 24
94.131.157.0/24 maxlen: 24
94.131.158.0/24 maxlen: 24
94.131.159.0/24 maxlen: 24
94.131.160.0/20 maxlen: 24
94.131.161.0/24 maxlen: 24
94.131.162.0/24 maxlen: 24
94.131.163.0/24 maxlen: 24
94.131.165.0/24 maxlen: 24
94.131.166.0/24 maxlen: 24
94.131.167.0/24 maxlen: 24
94.131.169.0/24 maxlen: 24
94.131.170.0/24 maxlen: 24
94.131.172.0/24 maxlen: 24
94.131.173.0/24 maxlen: 24
94.131.174.0/24 maxlen: 24
95.164.176.0/20 maxlen: 24
Validation: Failed, certificate revoked on Thu 15 Feb 2024 13:27:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:6c:53:a1:21:ec:8c:5b:f3:a6:fa:e6:6b:f1:0f:60:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: Feb 3 00:17:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e554975018e4f398a827630e09a87edf96162df4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:67:7b:de:d7:93:cc:ec:f8:70:61:1c:56:64:
f9:9c:b5:27:ff:72:aa:ac:87:85:77:3f:32:20:1b:
9e:1b:9e:ac:6a:9d:5b:42:c0:42:ed:f9:16:46:5d:
1f:8b:64:83:4a:8d:d8:79:0f:b8:b1:e5:aa:e1:65:
18:9c:00:b7:f9:e9:31:44:a7:c6:33:25:8a:e2:e3:
f1:07:2a:66:f4:bc:5e:cc:e3:e8:2b:30:21:29:95:
9b:52:d2:70:df:cf:82:75:54:96:cf:b8:46:c3:38:
09:16:32:61:ea:34:60:0a:6d:61:ef:71:d2:0a:06:
19:63:73:14:8e:08:19:35:f5:69:0b:24:5a:e2:07:
97:d3:9b:5c:56:e9:0e:d6:53:b8:ef:b0:42:14:71:
ee:aa:49:97:09:7f:19:8a:03:9a:c9:66:a7:25:59:
28:20:57:78:df:22:99:b1:50:1a:90:0a:35:71:e3:
5d:69:42:aa:29:5d:4a:04:fb:42:95:e1:99:43:de:
18:d7:d9:6c:e5:6e:7b:3a:57:29:a6:e2:1a:ba:f1:
fc:26:bc:55:80:84:8e:67:dc:43:88:08:a7:25:8c:
c8:57:c7:2f:e6:d0:c6:36:8b:09:6a:84:dd:17:15:
62:1e:76:96:e3:50:42:35:52:b8:10:98:33:6d:0c:
06:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:54:97:50:18:E4:F3:98:A8:27:63:0E:09:A8:7E:DF:96:16:2D:F4
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/5VSXUBjk85ioJ2MOCah-35YWLfQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.131.32.0/20
94.131.128.0-94.131.175.255
95.164.176.0/20
Signature Algorithm: sha256WithRSAEncryption
3e:90:8f:58:df:f9:c9:7d:61:ac:0d:9b:6e:ab:c2:c3:80:e0:
fb:3e:22:f4:25:02:10:58:c7:26:c7:4f:c7:eb:ac:54:61:15:
cd:f9:50:f5:9a:8a:29:52:7b:a8:52:a4:61:f3:83:70:09:34:
19:36:34:53:41:c6:fd:9f:22:e9:f2:b5:67:7b:89:a0:48:32:
48:fd:01:c5:31:c2:08:32:56:dc:4e:ec:f6:c7:d4:a0:7e:5c:
a0:91:b5:9f:da:c7:45:67:ec:ae:48:45:71:8b:db:60:c4:9a:
de:35:a5:e8:42:2d:cf:76:51:15:55:4b:51:21:1e:aa:c8:25:
10:32:e1:ef:c1:3b:ab:ad:86:6c:ec:5a:53:fb:c8:c0:55:32:
35:7c:da:e5:fb:ee:50:56:04:06:15:b3:02:a3:ad:18:49:7b:
fb:6f:1b:84:b4:2d:32:8e:04:95:c1:fa:4e:2e:0d:74:cd:24:
d1:20:85:da:09:d6:44:96:7b:8d:b4:50:26:54:40:88:17:a9:
f3:a7:6d:9b:a0:0f:b6:36:0f:dc:68:81:eb:94:56:a5:0a:95:
89:c9:5e:92:3f:97:82:06:40:41:b0:46:c7:c5:13:50:81:1a:
f9:f3:fe:8b:1a:89:61:13:95:5a:8c:7d:56:af:80:24:e2:93:
45:fd:8c:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:57 2024 by rpki-client on console-fra.rpki-client.org