Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/cLp0nS-L2N_cV_8j8ysAJ23fmcQ.roa
File: cLp0nS-L2N_cV_8j8ysAJ23fmcQ.roa (raw, json)
Hash identifier: ZpTR6WxdyKp4Q+0DV/7guKRFOexNNSqTi5arJMKwtnY=
Subject key identifier: 70:BA:74:9D:2F:8B:D8:DF:DC:57:FF:23:F3:2B:00:27:6D:DF:99:C4
Certificate issuer: /CN=76670236cd0e038684a33194bde7d4b95adc66f7
Certificate serial: 0190EB37DB2DEFCBF3258F9A9220EEE95760
Authority key identifier: 76:67:02:36:CD:0E:03:86:84:A3:31:94:BD:E7:D4:B9:5A:DC:66:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dmcCNs0OA4aEozGUvefUuVrcZvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/cLp0nS-L2N_cV_8j8ysAJ23fmcQ.roa
Signing time: Thu 25 Jul 2024 18:47:04 +0000
ROA not before: Thu 25 Jul 2024 18:47:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215540
IP address blocks: 5.44.42.0/24 maxlen: 24
2a05:541:102::/48 maxlen: 48
2a05:541:103::/48 maxlen: 48
2a05:541:104::/48 maxlen: 48
2a05:541:105::/48 maxlen: 48
2a05:541:106::/48 maxlen: 48
2a05:541:107::/48 maxlen: 48
2a05:541:108::/48 maxlen: 48
2a05:541:109::/48 maxlen: 48
2a05:541:110::/48 maxlen: 48
2a05:541:111::/48 maxlen: 48
2a05:541:112::/48 maxlen: 48
2a05:541:113::/48 maxlen: 48
2a05:541:114::/48 maxlen: 48
2a05:541:115::/48 maxlen: 48
2a05:541:116::/48 maxlen: 48
2a05:541:117::/48 maxlen: 48
2a05:541:118::/48 maxlen: 48
2a05:541:119::/48 maxlen: 48
2a05:541:121::/48 maxlen: 48
2a05:541:122::/48 maxlen: 48
2a05:541:123::/48 maxlen: 48
2a05:541:124::/48 maxlen: 48
2a05:541:125::/48 maxlen: 48
2a05:541:126::/48 maxlen: 48
2a05:541:127::/48 maxlen: 48
2a05:541:129::/48 maxlen: 48
2a05:541:131::/48 maxlen: 48
2a05:541:133::/48 maxlen: 48
2a05:541:139::/48 maxlen: 48
2a05:541:141::/48 maxlen: 48
2a05:541:152::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 23 Aug 2024 16:18:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:eb:37:db:2d:ef:cb:f3:25:8f:9a:92:20:ee:e9:57:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76670236cd0e038684a33194bde7d4b95adc66f7
Validity
Not Before: Jul 25 18:47:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=70ba749d2f8bd8dfdc57ff23f32b00276ddf99c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f0:a8:f0:db:f0:0d:54:b3:6f:d8:bf:69:68:
48:e7:fb:d9:fb:56:11:ea:27:dc:6e:89:a4:89:24:
a5:84:08:24:d8:73:74:6e:3f:0d:dd:9e:e6:d0:13:
90:1e:de:bb:5e:03:36:c4:c5:8c:1f:a2:4c:66:68:
7f:4b:30:96:f1:c2:60:01:48:69:54:68:df:24:6d:
bf:02:f5:a5:90:3e:bb:43:f7:47:46:c5:1e:89:d4:
39:11:ed:ca:80:31:4f:aa:d1:1b:f6:aa:e3:8b:0d:
d9:a8:aa:f3:06:cf:22:ad:86:f3:84:39:cd:df:45:
50:ed:88:a4:ef:9a:be:c4:46:96:e1:e0:64:57:10:
f7:77:d7:30:0d:c3:25:ed:7f:58:75:7e:e7:ca:57:
b0:a1:4f:f3:b5:fd:43:1a:bf:4f:33:e7:cc:1f:6f:
98:c4:4b:0e:94:84:2c:12:21:75:8a:1a:c1:ab:bb:
86:2f:79:d4:a7:b1:d2:63:1c:20:d4:0c:ae:1f:25:
bd:04:8a:2d:f5:50:44:a9:00:1d:aa:d9:a4:e5:47:
65:40:d5:3f:f8:b5:b4:7b:6c:5a:0c:a5:ac:ed:aa:
2c:b0:31:d8:73:04:af:0a:9d:76:d5:56:81:fc:39:
0f:fe:7a:ce:de:72:ca:9f:5e:5e:6f:ed:3e:c8:b6:
b2:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:BA:74:9D:2F:8B:D8:DF:DC:57:FF:23:F3:2B:00:27:6D:DF:99:C4
X509v3 Authority Key Identifier:
keyid:76:67:02:36:CD:0E:03:86:84:A3:31:94:BD:E7:D4:B9:5A:DC:66:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dmcCNs0OA4aEozGUvefUuVrcZvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/cLp0nS-L2N_cV_8j8ysAJ23fmcQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/dmcCNs0OA4aEozGUvefUuVrcZvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.44.42.0/24
IPv6:
2a05:541:102::-2a05:541:109:ffff:ffff:ffff:ffff:ffff
2a05:541:110::-2a05:541:119:ffff:ffff:ffff:ffff:ffff
2a05:541:121::-2a05:541:127:ffff:ffff:ffff:ffff:ffff
2a05:541:129::/48
2a05:541:131::/48
2a05:541:133::/48
2a05:541:139::/48
2a05:541:141::/48
2a05:541:152::/48
Signature Algorithm: sha256WithRSAEncryption
11:9d:bc:e8:e2:46:41:f8:77:53:08:a4:61:d3:f1:47:45:ba:
25:87:48:28:30:d5:9e:94:74:e8:de:0c:37:8e:f7:0d:87:a1:
ba:f0:25:50:a0:2c:d5:34:bf:fa:30:20:d0:e5:e8:ce:9e:5f:
98:73:01:95:ea:cf:a3:9d:5c:49:1c:34:10:62:46:9b:bb:25:
60:de:60:f9:07:03:b9:5b:18:19:76:5c:90:a0:2c:34:ee:68:
fc:90:3b:8d:aa:e3:95:b4:7a:fb:ae:95:f7:60:4e:80:9a:e8:
25:95:fa:38:21:e2:83:66:45:c1:d5:0e:28:35:a9:6d:87:d8:
56:6b:09:d7:6a:59:22:1e:8b:03:a2:3f:02:18:53:4a:0d:21:
48:42:d1:5a:62:99:06:87:d9:b3:ce:55:33:2a:a2:ba:fc:04:
e6:c7:f8:13:62:bd:5f:8b:46:e0:c9:68:af:5a:87:a1:ac:9a:
90:db:0e:1f:40:c4:63:c5:ee:21:e7:4b:4a:59:d3:32:d6:75:
4c:92:bb:0e:1d:11:ee:37:d0:bd:a3:86:9f:da:62:1d:2e:74:
90:93:c9:45:dc:26:18:09:c3:9c:4b:81:f0:8d:e4:55:17:51:
e7:c0:f4:60:c9:fd:29:6c:11:24:71:af:0e:3b:07:5d:e7:ec:
02:0f:c2:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:17:13 2025 by rpki-client