Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/5KLjoCxB_w9GvDsoYiFcRI7mEyY.roa
File: 5KLjoCxB_w9GvDsoYiFcRI7mEyY.roa (raw, json)
Hash identifier: MDnORGPOnuCq+e+wzKFrc8QpDTIUC4QbWgMjrkpn6js=
Subject key identifier: E4:A2:E3:A0:2C:41:FF:0F:46:BC:3B:28:62:21:5C:44:8E:E6:13:26
Certificate issuer: /CN=76670236cd0e038684a33194bde7d4b95adc66f7
Certificate serial: 018D0CE353528580377F3FC24D9078710E59
Authority key identifier: 76:67:02:36:CD:0E:03:86:84:A3:31:94:BD:E7:D4:B9:5A:DC:66:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dmcCNs0OA4aEozGUvefUuVrcZvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/5KLjoCxB_w9GvDsoYiFcRI7mEyY.roa
Signing time: Mon 15 Jan 2024 11:30:41 +0000
ROA not before: Mon 15 Jan 2024 11:30:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207713
IP address blocks: 2a05:541:135::/48 maxlen: 48
2a05:541:115::/48 maxlen: 48
2a05:541:125::/48 maxlen: 48
2a05:541:140::/48 maxlen: 48
2a05:541:141::/48 maxlen: 48
2a05:541:121::/48 maxlen: 48
2a05:541:131::/48 maxlen: 48
2a05:541:126::/48 maxlen: 48
2a05:541:136::/48 maxlen: 48
2a05:541:137::/48 maxlen: 48
2a05:541:127::/48 maxlen: 48
2a05:541:132::/48 maxlen: 48
2a05:541:122::/48 maxlen: 48
2a05:541:123::/48 maxlen: 48
2a05:541:133::/48 maxlen: 48
2a05:541:138::/48 maxlen: 48
2a05:541:119::/48 maxlen: 48
2a05:541:139::/48 maxlen: 48
2a05:541:129::/48 maxlen: 48
2a05:541:109::/48 maxlen: 48
2a05:541:114::/48 maxlen: 48
2a05:541:134::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 18 Mar 2024 11:06:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:0c:e3:53:52:85:80:37:7f:3f:c2:4d:90:78:71:0e:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76670236cd0e038684a33194bde7d4b95adc66f7
Validity
Not Before: Jan 15 11:30:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e4a2e3a02c41ff0f46bc3b2862215c448ee61326
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:95:c0:4e:d6:2f:3f:ab:b1:5e:69:53:7c:f8:
65:72:04:bc:0d:0e:cd:d3:30:b8:f9:97:19:91:a1:
e4:ad:c3:e8:4d:fb:7c:56:ef:17:a1:25:6c:1d:24:
3b:0f:e3:94:c0:81:a2:ba:64:6e:20:26:21:d1:d5:
07:f4:20:76:3f:9f:49:29:68:7b:bf:f9:f1:47:05:
8f:dc:dc:ca:c3:1a:3a:81:19:6c:86:7c:a9:f3:a9:
ce:4f:1a:0b:bb:11:8c:0a:66:1c:df:d0:1b:e8:88:
16:30:4d:a3:e6:78:94:1e:1a:e1:ef:f7:b4:3c:0a:
b2:4d:b5:1e:37:84:64:c1:79:49:2c:3c:be:ad:61:
a1:ac:9c:f7:49:80:dc:5b:8a:c8:92:6d:79:27:40:
d1:b5:3f:a0:20:bd:65:b0:b9:94:4c:09:77:27:05:
cc:40:8b:03:c7:a9:e9:ce:ce:7b:01:1a:34:05:64:
41:4a:84:29:6c:05:aa:84:08:98:4a:30:10:d5:a5:
94:6c:e2:20:01:35:bd:af:b3:08:c9:61:9c:ce:cf:
d1:c9:cd:d8:f5:75:b7:56:b5:58:55:9a:42:5e:ea:
5d:f2:93:9a:8b:22:c5:40:1a:a5:9d:88:b9:95:7c:
95:2b:8d:d5:45:d4:ff:d1:59:9e:5f:c5:99:36:32:
9e:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:A2:E3:A0:2C:41:FF:0F:46:BC:3B:28:62:21:5C:44:8E:E6:13:26
X509v3 Authority Key Identifier:
keyid:76:67:02:36:CD:0E:03:86:84:A3:31:94:BD:E7:D4:B9:5A:DC:66:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dmcCNs0OA4aEozGUvefUuVrcZvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/5KLjoCxB_w9GvDsoYiFcRI7mEyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/dmcCNs0OA4aEozGUvefUuVrcZvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:541:109::/48
2a05:541:114::/47
2a05:541:119::/48
2a05:541:121::-2a05:541:123:ffff:ffff:ffff:ffff:ffff
2a05:541:125::-2a05:541:127:ffff:ffff:ffff:ffff:ffff
2a05:541:129::/48
2a05:541:131::-2a05:541:139:ffff:ffff:ffff:ffff:ffff
2a05:541:140::/47
Signature Algorithm: sha256WithRSAEncryption
1e:7c:12:57:6b:e1:47:b2:35:eb:33:e7:37:9c:74:d7:51:79:
5a:6f:d6:c2:c1:8f:ae:49:b6:c9:c5:d4:36:53:73:02:aa:65:
a7:35:70:1e:1e:59:77:d7:66:2c:9c:a8:f6:34:27:5f:53:11:
30:28:fd:44:34:b5:53:b5:fc:52:39:6b:60:92:df:7b:b9:13:
52:e4:aa:af:a1:4e:4b:b3:ec:f5:d5:2e:20:f4:c7:8e:6d:62:
0b:28:dc:eb:e4:f0:12:4c:41:a6:8f:e3:21:f8:fe:14:56:cc:
b1:a3:7f:69:c0:45:af:27:93:6a:6e:86:6b:55:e4:a6:4e:c8:
09:cb:09:30:c7:6f:4e:ad:05:82:b0:25:15:39:83:c0:c1:7e:
50:2b:72:c7:ba:fd:12:0d:16:03:5a:46:bb:81:12:9d:0e:d7:
76:d0:8b:e8:24:6b:ce:20:fe:a6:53:72:f1:7a:9b:66:20:3c:
87:63:54:30:2e:6a:b3:e5:58:7a:95:e0:68:42:af:1e:8b:24:
4d:19:42:90:cd:46:9f:23:5c:6d:49:5c:6e:06:69:be:8a:4d:
11:3c:39:d6:f6:09:75:d8:c3:54:79:1c:e3:e9:4b:47:81:9b:
cd:32:70:58:45:bf:9d:c0:ab:a4:6d:e1:16:69:71:ae:14:d5:
05:7b:c7:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 18 14:26:17 2024 by rpki-client on console-fra.rpki-client.org