Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/5ib_aJlo0LDoTHSDB5-sGW9U_m0.roa
File: 5ib_aJlo0LDoTHSDB5-sGW9U_m0.roa (raw, json)
Hash identifier: iOlE5c0aqxWOwsO8vUxTAms4+i1TIh8+zhfFuUSnRqE=
Subject key identifier: E6:26:FF:68:99:68:D0:B0:E8:4C:74:83:07:9F:AC:19:6F:54:FE:6D
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018DE6B3AA54004F42C402EC2E4A1629E060
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/5ib_aJlo0LDoTHSDB5-sGW9U_m0.roa
Signing time: Mon 26 Feb 2024 18:35:50 +0000
ROA not before: Mon 26 Feb 2024 18:35:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202656
IP address blocks: 45.15.239.0/24 maxlen: 24
45.129.1.0/24 maxlen: 24
45.132.39.0/24 maxlen: 24
45.135.35.0/24 maxlen: 24
45.138.7.0/24 maxlen: 24
45.138.156.0/24 maxlen: 24
45.138.212.0/24 maxlen: 24
45.138.215.0/24 maxlen: 24
45.140.65.0/24 maxlen: 24
45.149.130.0/24 maxlen: 24
45.149.131.0/24 maxlen: 24
45.152.118.0/24 maxlen: 24
45.152.119.0/24 maxlen: 24
83.138.52.0/24 maxlen: 24
84.246.82.0/24 maxlen: 24
91.206.69.0/24 maxlen: 24
91.237.104.0/24 maxlen: 24
91.237.105.0/24 maxlen: 24
176.116.5.0/24 maxlen: 24
176.116.20.0/24 maxlen: 24
176.116.23.0/24 maxlen: 24
193.0.245.0/24 maxlen: 24
193.0.246.0/24 maxlen: 24
193.5.1.0/24 maxlen: 24
193.58.171.0/24 maxlen: 24
193.58.178.0/24 maxlen: 24
194.107.200.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 27 Feb 2024 18:35:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:e6:b3:aa:54:00:4f:42:c4:02:ec:2e:4a:16:29:e0:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Feb 26 18:35:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e626ff689968d0b0e84c7483079fac196f54fe6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:b9:64:d3:9b:37:68:f8:c2:a3:10:70:4e:96:
84:2c:9c:ff:f1:f4:a4:ae:c3:23:d2:85:dc:57:50:
89:38:76:ac:0a:1b:a5:a2:cd:30:67:25:ef:ff:e0:
66:f7:bb:9b:8f:7a:cd:a3:0f:84:ad:a7:82:01:d7:
47:7e:f7:43:89:06:b0:59:5a:85:77:38:cd:86:a2:
6f:c0:a4:2b:a1:08:eb:25:6a:de:1e:1a:2e:0a:f3:
f6:21:34:7a:0f:ca:52:c6:29:b2:f2:b2:3b:98:40:
02:40:90:65:1d:ff:b5:73:22:85:24:26:b1:3d:3a:
64:f7:08:e6:d8:8c:ea:ab:31:58:81:ae:71:ad:a2:
dc:69:e2:7b:8b:c9:8d:51:7c:3e:3f:f8:32:33:92:
df:3d:21:3a:66:b0:17:eb:68:7f:22:00:e3:26:0f:
57:40:2c:42:9a:2a:e7:ba:1c:28:c4:56:67:22:15:
19:bb:88:a8:d1:27:3c:22:da:e3:ea:d3:1c:a9:45:
f0:1c:20:f4:56:63:ea:48:a4:9e:4d:70:15:3e:74:
c8:7b:62:12:8f:65:85:b0:13:5f:c6:5c:18:b7:83:
93:f4:2b:cf:e9:14:73:d9:31:31:2f:1c:53:be:cd:
8a:b8:f2:76:f1:5a:d9:f8:f2:18:1c:4e:d7:26:fa:
a8:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:26:FF:68:99:68:D0:B0:E8:4C:74:83:07:9F:AC:19:6F:54:FE:6D
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/5ib_aJlo0LDoTHSDB5-sGW9U_m0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.239.0/24
45.129.1.0/24
45.132.39.0/24
45.135.35.0/24
45.138.7.0/24
45.138.156.0/24
45.138.212.0/24
45.138.215.0/24
45.140.65.0/24
45.149.130.0/23
45.152.118.0/23
83.138.52.0/24
84.246.82.0/24
91.206.69.0/24
91.237.104.0/23
176.116.5.0/24
176.116.20.0/24
176.116.23.0/24
193.0.245.0-193.0.246.255
193.5.1.0/24
193.58.171.0/24
193.58.178.0/24
194.107.200.0/24
Signature Algorithm: sha256WithRSAEncryption
75:85:43:99:df:14:61:aa:3b:d2:82:89:84:21:83:f4:a9:c5:
c3:56:63:7c:3e:cc:95:42:db:a1:09:46:cf:81:79:8d:f6:72:
d0:21:19:89:3a:db:49:1d:f9:d4:b8:00:6b:96:18:9c:ea:c8:
0f:0a:82:37:65:52:6e:ca:94:ea:ae:84:41:82:b6:ef:46:89:
0a:b1:d3:8e:bd:87:a1:25:fc:7f:71:a1:b4:99:05:a2:c3:c3:
f7:83:84:51:4f:09:26:8c:d8:4b:ac:b0:35:2d:a4:b3:ab:d2:
dc:3b:a8:43:4c:3a:d0:46:a5:de:1a:b9:90:5a:4a:a1:ca:cd:
67:b2:c5:01:0f:0b:5a:74:64:50:1f:54:b2:44:5a:ad:38:7b:
4b:dd:58:35:69:74:c7:97:cf:bc:10:65:3a:ce:90:36:41:07:
7b:3e:e1:c4:30:f4:f9:f3:75:1a:b9:b1:4f:a1:6e:b1:c2:1d:
fa:77:b4:28:b4:91:df:e7:8d:3a:1d:e8:9d:91:01:cc:da:00:
7f:6b:3c:6a:14:e6:a4:0a:53:97:5e:50:61:05:28:6e:5b:a3:
09:91:b5:9b:b9:16:c0:f4:c6:eb:61:48:66:1a:f6:a6:77:4a:
b7:35:fb:b0:e8:9d:5f:0c:9e:b7:1d:ee:df:3e:11:29:c3:9b:
d9:4b:7c:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:22 2024 by rpki-client on console-fra.rpki-client.org