Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/Ie918a1LNxigu5EnJg7u1bjbTso.roa
File: Ie918a1LNxigu5EnJg7u1bjbTso.roa (raw, json)
Hash identifier: f+kTp+B2AKucThV9EVD7Ht941/Ft56QeQmtoqIZEcAU=
Subject key identifier: 21:EF:75:F1:AD:4B:37:18:A0:BB:91:27:26:0E:EE:D5:B8:DB:4E:CA
Certificate issuer: /CN=76670236cd0e038684a33194bde7d4b95adc66f7
Certificate serial: 0190691D2F8DEE6FE1449BABCD23B2D331EF
Authority key identifier: 76:67:02:36:CD:0E:03:86:84:A3:31:94:BD:E7:D4:B9:5A:DC:66:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dmcCNs0OA4aEozGUvefUuVrcZvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/Ie918a1LNxigu5EnJg7u1bjbTso.roa
Signing time: Sun 30 Jun 2024 12:27:18 +0000
ROA not before: Sun 30 Jun 2024 12:27:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207713
IP address blocks: 5.44.42.0/24 maxlen: 24
2a05:541:102::/48 maxlen: 48
2a05:541:103::/48 maxlen: 48
2a05:541:104::/48 maxlen: 48
2a05:541:105::/48 maxlen: 48
2a05:541:106::/48 maxlen: 48
2a05:541:107::/48 maxlen: 48
2a05:541:108::/48 maxlen: 48
2a05:541:109::/48 maxlen: 48
2a05:541:110::/48 maxlen: 48
2a05:541:111::/48 maxlen: 48
2a05:541:112::/48 maxlen: 48
2a05:541:113::/48 maxlen: 48
2a05:541:114::/48 maxlen: 48
2a05:541:115::/48 maxlen: 48
2a05:541:116::/48 maxlen: 48
2a05:541:117::/48 maxlen: 48
2a05:541:118::/48 maxlen: 48
2a05:541:119::/48 maxlen: 48
2a05:541:121::/48 maxlen: 48
2a05:541:122::/48 maxlen: 48
2a05:541:123::/48 maxlen: 48
2a05:541:124::/48 maxlen: 48
2a05:541:125::/48 maxlen: 48
2a05:541:126::/48 maxlen: 48
2a05:541:127::/48 maxlen: 48
2a05:541:129::/48 maxlen: 48
2a05:541:131::/48 maxlen: 48
2a05:541:132::/48 maxlen: 48
2a05:541:133::/48 maxlen: 48
2a05:541:134::/48 maxlen: 48
2a05:541:135::/48 maxlen: 48
2a05:541:136::/48 maxlen: 48
2a05:541:137::/48 maxlen: 48
2a05:541:138::/48 maxlen: 48
2a05:541:139::/48 maxlen: 48
2a05:541:140::/48 maxlen: 48
2a05:541:141::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 21 Nov 2024 16:21:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:69:1d:2f:8d:ee:6f:e1:44:9b:ab:cd:23:b2:d3:31:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76670236cd0e038684a33194bde7d4b95adc66f7
Validity
Not Before: Jun 30 12:27:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=21ef75f1ad4b3718a0bb9127260eeed5b8db4eca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:cf:fc:bd:92:0c:36:fb:d9:09:87:d6:c5:62:
04:16:35:17:e4:07:01:19:07:d6:da:ec:ee:69:87:
24:68:61:e8:0b:57:37:73:97:b1:fe:7e:c3:0e:8d:
dd:c4:41:d7:39:d4:f1:52:fe:53:97:7d:4a:1a:c5:
ae:84:7d:da:90:77:68:ea:59:fd:6d:03:3a:29:62:
5c:8c:f7:c8:da:65:40:ac:06:5c:2e:8c:ff:e1:52:
6f:27:ae:c7:a4:de:e9:c2:06:fc:2b:4e:6c:86:13:
07:cc:18:28:d7:bd:c4:ce:81:6d:60:26:2a:55:e3:
0b:c1:b8:56:8f:76:39:a7:37:cb:f1:2c:63:d5:4b:
cc:3a:a9:01:74:b6:b6:34:cc:02:9b:4e:71:7b:aa:
90:d2:55:2d:e1:d6:fd:1d:d5:49:38:5d:51:13:cf:
37:48:1f:4b:d5:1a:3a:f3:39:c8:d8:1d:0f:58:d2:
cf:7d:34:08:55:54:69:b6:15:df:05:61:8e:d0:6c:
13:55:cd:0e:24:c8:0a:b6:b7:6e:93:69:fb:ba:28:
df:26:46:99:ed:93:4c:19:eb:1d:dd:85:31:ed:8d:
fd:f1:5a:3a:71:66:eb:29:94:02:5a:b2:c8:0a:36:
80:56:27:e4:58:98:c7:f2:79:db:0e:c2:24:e2:24:
08:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:EF:75:F1:AD:4B:37:18:A0:BB:91:27:26:0E:EE:D5:B8:DB:4E:CA
X509v3 Authority Key Identifier:
keyid:76:67:02:36:CD:0E:03:86:84:A3:31:94:BD:E7:D4:B9:5A:DC:66:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dmcCNs0OA4aEozGUvefUuVrcZvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/Ie918a1LNxigu5EnJg7u1bjbTso.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/dmcCNs0OA4aEozGUvefUuVrcZvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.44.42.0/24
IPv6:
2a05:541:102::-2a05:541:109:ffff:ffff:ffff:ffff:ffff
2a05:541:110::-2a05:541:119:ffff:ffff:ffff:ffff:ffff
2a05:541:121::-2a05:541:127:ffff:ffff:ffff:ffff:ffff
2a05:541:129::/48
2a05:541:131::-2a05:541:139:ffff:ffff:ffff:ffff:ffff
2a05:541:140::/47
Signature Algorithm: sha256WithRSAEncryption
4b:04:ed:9d:cb:05:1b:13:66:50:13:26:3e:41:98:df:c2:08:
28:18:48:40:2d:c1:27:21:ad:75:bd:84:39:66:db:30:67:71:
ee:71:59:03:37:97:2a:2b:25:8b:bd:81:ec:dc:9a:f6:eb:2a:
b8:cc:85:80:f5:76:84:1d:87:a2:1c:28:fe:0b:ab:ac:0f:4d:
8d:aa:07:a8:35:73:85:2d:49:c9:46:22:a6:7f:c3:17:82:31:
da:5f:a9:37:f7:23:c8:37:51:fb:a4:9e:03:96:8e:49:f6:36:
5a:a6:61:1a:50:b0:26:2f:f0:37:90:4f:ec:2a:a0:80:22:7d:
c1:2c:4a:28:30:14:6a:2d:fd:ec:e0:ed:9b:4a:83:e1:49:5c:
77:2a:d7:07:ff:77:aa:a4:58:35:38:74:58:2d:47:2b:95:29:
24:bd:d9:8b:23:8f:92:77:95:cd:94:90:dc:ae:93:8b:e8:f4:
95:fb:7d:4d:ca:1b:0a:a8:07:ae:8a:b3:c8:c0:40:04:99:aa:
fe:03:81:20:2c:81:7f:a2:7f:54:19:60:c0:07:e6:47:39:bb:
83:cc:01:93:c1:37:a5:ad:a6:d1:19:ca:ce:12:02:92:25:e6:
ad:a7:4e:2f:62:27:55:0a:69:db:de:24:84:a6:9f:74:13:49:
18:84:36:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:25:46 2025 by rpki-client