Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/_ewSplAEcH-5FSzd_JE9Bv7ILqw.roa
File: _ewSplAEcH-5FSzd_JE9Bv7ILqw.roa (raw, json)
Hash identifier: 9bF/aIpi2RXJ86/jpFGJ5O/AATgfOW34nDlHFT20Ir0=
Subject key identifier: FD:EC:12:A6:50:04:70:7F:B9:15:2C:DD:FC:91:3D:06:FE:C8:2E:AC
Certificate issuer: /CN=76670236cd0e038684a33194bde7d4b95adc66f7
Certificate serial: 0191EF5BFCAC2418B8BD302639C5E7847D59
Authority key identifier: 76:67:02:36:CD:0E:03:86:84:A3:31:94:BD:E7:D4:B9:5A:DC:66:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dmcCNs0OA4aEozGUvefUuVrcZvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/_ewSplAEcH-5FSzd_JE9Bv7ILqw.roa
Signing time: Sat 14 Sep 2024 07:07:48 +0000
ROA not before: Sat 14 Sep 2024 07:07:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215540
IP address blocks: 5.44.42.0/24 maxlen: 24
2a05:541:102::/48 maxlen: 48
2a05:541:103::/48 maxlen: 48
2a05:541:104::/48 maxlen: 48
2a05:541:105::/48 maxlen: 48
2a05:541:106::/48 maxlen: 48
2a05:541:107::/48 maxlen: 48
2a05:541:108::/48 maxlen: 48
2a05:541:109::/48 maxlen: 48
2a05:541:110::/48 maxlen: 48
2a05:541:111::/48 maxlen: 48
2a05:541:112::/48 maxlen: 48
2a05:541:113::/48 maxlen: 48
2a05:541:114::/48 maxlen: 48
2a05:541:115::/48 maxlen: 48
2a05:541:116::/48 maxlen: 48
2a05:541:117::/48 maxlen: 48
2a05:541:118::/48 maxlen: 48
2a05:541:119::/48 maxlen: 48
2a05:541:121::/48 maxlen: 48
2a05:541:122::/48 maxlen: 48
2a05:541:123::/48 maxlen: 48
2a05:541:124::/48 maxlen: 48
2a05:541:125::/48 maxlen: 48
2a05:541:126::/48 maxlen: 48
2a05:541:127::/48 maxlen: 48
2a05:541:129::/48 maxlen: 48
2a05:541:131::/48 maxlen: 48
2a05:541:133::/48 maxlen: 48
2a05:541:134::/48 maxlen: 48
2a05:541:135::/48 maxlen: 48
2a05:541:136::/48 maxlen: 48
2a05:541:137::/48 maxlen: 48
2a05:541:138::/48 maxlen: 48
2a05:541:139::/48 maxlen: 48
2a05:541:141::/48 maxlen: 48
2a05:541:152::/48 maxlen: 48
2a05:541:153::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 08 Oct 2024 14:17:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:ef:5b:fc:ac:24:18:b8:bd:30:26:39:c5:e7:84:7d:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76670236cd0e038684a33194bde7d4b95adc66f7
Validity
Not Before: Sep 14 07:07:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fdec12a65004707fb9152cddfc913d06fec82eac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a8:e6:d4:d4:52:78:1f:9a:6a:50:b4:db:45:
d9:50:a0:18:2c:20:8d:74:27:81:ba:b1:70:f2:ea:
1a:c0:30:f2:55:78:37:04:68:55:55:67:2d:d2:e0:
24:db:94:43:4f:59:7a:28:0c:af:7e:ac:cb:ff:5a:
bd:88:11:9c:8b:ed:02:ec:73:18:a8:8d:50:86:59:
2f:95:f5:b8:60:ca:28:83:e8:8c:2a:ec:ea:0e:da:
e6:25:d3:1e:12:c1:a1:4e:81:1a:52:59:cd:d5:4e:
e7:65:21:5f:3a:0e:ef:11:7f:0d:06:ed:8b:78:88:
ef:9f:6a:63:7d:5b:c9:89:b6:3a:08:bd:03:89:b6:
4b:1b:6f:d9:b4:77:f3:5c:a7:6c:04:4c:d4:de:f2:
66:93:a2:5a:39:2c:59:09:06:06:2e:60:ba:0f:34:
46:64:f5:8d:cf:ac:b9:3f:c6:8a:58:46:12:73:0c:
4f:04:48:16:7a:f9:e6:c2:a8:a0:86:9d:c0:24:15:
7e:3a:01:37:b8:69:39:66:d9:27:d1:9a:b4:cc:9d:
39:5a:82:e9:3e:41:20:20:a9:97:3d:2b:3e:63:cc:
a7:81:0b:c8:e0:27:99:f1:93:6b:8c:a7:e1:49:da:
f5:c5:b5:c7:b8:c4:65:fa:5d:aa:e7:b6:41:b7:77:
9e:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:EC:12:A6:50:04:70:7F:B9:15:2C:DD:FC:91:3D:06:FE:C8:2E:AC
X509v3 Authority Key Identifier:
keyid:76:67:02:36:CD:0E:03:86:84:A3:31:94:BD:E7:D4:B9:5A:DC:66:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dmcCNs0OA4aEozGUvefUuVrcZvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/_ewSplAEcH-5FSzd_JE9Bv7ILqw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/dmcCNs0OA4aEozGUvefUuVrcZvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.44.42.0/24
IPv6:
2a05:541:102::-2a05:541:109:ffff:ffff:ffff:ffff:ffff
2a05:541:110::-2a05:541:119:ffff:ffff:ffff:ffff:ffff
2a05:541:121::-2a05:541:127:ffff:ffff:ffff:ffff:ffff
2a05:541:129::/48
2a05:541:131::/48
2a05:541:133::-2a05:541:139:ffff:ffff:ffff:ffff:ffff
2a05:541:141::/48
2a05:541:152::/47
Signature Algorithm: sha256WithRSAEncryption
31:23:66:e1:55:fa:df:b7:1c:f9:7f:d4:8e:ab:2f:87:84:70:
ea:3f:58:c5:5c:39:71:e4:67:1f:22:41:df:7a:fa:84:8f:b3:
a6:ad:be:d2:5f:64:0e:06:3f:df:59:f3:cb:1e:39:7f:8a:08:
7b:b1:58:6a:1b:29:9e:90:ef:97:a8:93:42:c2:ea:d1:a5:e4:
46:cc:47:4c:f0:c7:72:04:a8:7f:f1:3c:29:cb:4a:03:14:b9:
af:3f:84:be:be:8e:d5:9f:94:ed:f0:95:d6:89:fb:a6:03:36:
c1:74:26:f0:c4:4f:cb:11:a2:13:1e:17:37:b8:e1:76:d8:81:
7b:40:8c:95:2a:6f:68:2f:73:98:58:d6:24:57:da:e0:15:74:
ed:33:7f:b1:fd:88:f8:de:11:56:e3:1b:4b:7f:d0:f3:0f:96:
64:43:1e:60:2e:3c:bf:08:00:dd:c6:9a:a7:a9:98:66:2f:25:
18:e4:54:6b:b7:aa:05:fa:7b:70:d4:27:77:89:27:5f:30:0d:
6b:5a:82:d3:81:04:0d:90:8b:cd:1a:5b:e9:cf:f0:99:61:d8:
aa:27:56:53:43:6c:5d:29:98:ae:95:3e:cf:2c:f9:e3:91:5d:
57:df:5f:a0:bb:59:0c:63:ad:13:bd:d0:37:50:d3:f3:0f:33:
2a:7e:4e:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:17:34 2025 by rpki-client