Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/fqgHOivzK9EINhD1IKYcvZScHSA.roa
File: fqgHOivzK9EINhD1IKYcvZScHSA.roa (raw, json)
Hash identifier: sQTmJi2ISf9s3TwO71oBnI/G/zpcmPNVfS6XqQhR+98=
Subject key identifier: 7E:A8:07:3A:2B:F3:2B:D1:08:36:10:F5:20:A6:1C:BD:94:9C:1D:20
Certificate issuer: /CN=76670236cd0e038684a33194bde7d4b95adc66f7
Certificate serial: 0190691D30C474C77DC8333E9FFFBC40E90F
Authority key identifier: 76:67:02:36:CD:0E:03:86:84:A3:31:94:BD:E7:D4:B9:5A:DC:66:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dmcCNs0OA4aEozGUvefUuVrcZvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/fqgHOivzK9EINhD1IKYcvZScHSA.roa
Signing time: Sun 30 Jun 2024 12:27:18 +0000
ROA not before: Sun 30 Jun 2024 12:27:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215540
IP address blocks: 5.44.42.0/24 maxlen: 24
2a05:541:102::/48 maxlen: 48
2a05:541:103::/48 maxlen: 48
2a05:541:104::/48 maxlen: 48
2a05:541:105::/48 maxlen: 48
2a05:541:106::/48 maxlen: 48
2a05:541:107::/48 maxlen: 48
2a05:541:108::/48 maxlen: 48
2a05:541:109::/48 maxlen: 48
2a05:541:110::/48 maxlen: 48
2a05:541:111::/48 maxlen: 48
2a05:541:112::/48 maxlen: 48
2a05:541:113::/48 maxlen: 48
2a05:541:114::/48 maxlen: 48
2a05:541:115::/48 maxlen: 48
2a05:541:116::/48 maxlen: 48
2a05:541:117::/48 maxlen: 48
2a05:541:118::/48 maxlen: 48
2a05:541:119::/48 maxlen: 48
2a05:541:121::/48 maxlen: 48
2a05:541:122::/48 maxlen: 48
2a05:541:123::/48 maxlen: 48
2a05:541:124::/48 maxlen: 48
2a05:541:125::/48 maxlen: 48
2a05:541:126::/48 maxlen: 48
2a05:541:127::/48 maxlen: 48
2a05:541:129::/48 maxlen: 48
2a05:541:131::/48 maxlen: 48
2a05:541:133::/48 maxlen: 48
2a05:541:141::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 08 Jul 2024 10:41:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:69:1d:30:c4:74:c7:7d:c8:33:3e:9f:ff:bc:40:e9:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76670236cd0e038684a33194bde7d4b95adc66f7
Validity
Not Before: Jun 30 12:27:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7ea8073a2bf32bd1083610f520a61cbd949c1d20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:df:31:ef:04:7c:80:96:26:c3:2c:8c:e0:25:
1d:3e:b8:ee:05:77:68:d3:02:ad:38:98:dd:18:f8:
4a:6d:0f:85:0a:e0:1e:c0:8a:40:45:89:0a:56:62:
62:9e:96:39:43:59:d0:f0:06:42:b7:1d:9d:bf:09:
1c:ba:1a:9c:5f:c5:0d:9a:b4:11:d7:5e:42:4c:75:
8d:e8:b6:29:8b:29:17:ea:c9:6b:46:43:04:68:da:
0b:ee:35:49:af:57:5d:75:e8:88:50:71:07:62:f4:
7d:a4:04:8d:c2:9c:e1:f6:51:6d:e8:7f:3a:f4:59:
f3:86:e1:9e:e1:c4:23:28:25:35:9f:b1:12:fa:91:
17:f5:98:c2:c0:ec:25:a4:78:40:e3:10:27:1d:d6:
bb:ca:22:f7:e3:57:0c:4d:02:66:e6:00:ac:23:cb:
4b:4f:2b:80:53:4e:1b:54:74:b6:b4:2f:b9:6e:fb:
06:62:44:25:cf:67:48:1b:d4:43:75:c6:9e:ba:bd:
14:cf:13:bf:26:e0:7f:db:dd:14:1e:11:6f:da:26:
50:8a:29:73:66:0f:e0:46:55:34:50:82:f5:2d:96:
5b:5d:61:2d:4d:73:ed:67:0e:06:b6:82:31:34:8f:
ee:62:d5:0a:b0:c9:15:ea:88:aa:22:06:30:03:c6:
bb:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:A8:07:3A:2B:F3:2B:D1:08:36:10:F5:20:A6:1C:BD:94:9C:1D:20
X509v3 Authority Key Identifier:
keyid:76:67:02:36:CD:0E:03:86:84:A3:31:94:BD:E7:D4:B9:5A:DC:66:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dmcCNs0OA4aEozGUvefUuVrcZvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/fqgHOivzK9EINhD1IKYcvZScHSA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/dmcCNs0OA4aEozGUvefUuVrcZvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.44.42.0/24
IPv6:
2a05:541:102::-2a05:541:109:ffff:ffff:ffff:ffff:ffff
2a05:541:110::-2a05:541:119:ffff:ffff:ffff:ffff:ffff
2a05:541:121::-2a05:541:127:ffff:ffff:ffff:ffff:ffff
2a05:541:129::/48
2a05:541:131::/48
2a05:541:133::/48
2a05:541:141::/48
Signature Algorithm: sha256WithRSAEncryption
18:e2:58:a7:78:3a:d8:e8:23:38:a1:9e:8b:94:fe:63:b1:e8:
29:91:01:5b:1d:10:26:19:d9:6b:08:c5:01:4e:b0:42:f5:ce:
05:8c:7b:86:6d:23:cd:44:f1:a7:1a:b5:62:f4:db:9b:fb:b0:
22:c1:b4:d2:dd:3e:ed:6a:7a:bc:ea:f8:75:0f:8d:6b:eb:c9:
bc:f8:60:9a:10:0b:50:b1:45:57:49:0c:27:40:2e:e8:d0:ba:
85:ab:57:17:73:fc:de:09:df:6e:6a:eb:79:32:a3:97:0f:58:
a6:0a:b9:7b:ad:43:e7:09:69:1e:84:b3:15:e5:13:6b:85:61:
cb:b0:a6:5a:6b:5b:8f:41:aa:f5:c8:cb:14:b5:27:6a:de:98:
a9:f1:8e:4d:e2:88:42:54:f9:0a:85:2a:a6:37:0f:de:82:fd:
bd:c2:a3:fc:6b:4d:21:3d:1c:0b:07:e4:9e:7c:cd:97:70:9c:
ff:77:b9:7c:16:b2:a3:94:89:88:99:3f:e6:0b:0e:f9:b8:81:
41:91:0f:61:19:b1:cf:c5:68:77:c8:fd:65:84:02:2e:58:6d:
f4:ed:d9:6d:4a:b0:72:6c:59:a0:d1:7d:64:b4:f8:b1:38:09:
d0:45:7e:f4:b2:b6:d2:f9:6c:da:ff:24:94:54:4f:a0:b3:b0:
b9:2a:8c:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 8 12:53:40 2024 by rpki-client on console-fra.rpki-client.org