Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/dBg_WXe-3hSDiefEa8s1pHwKO7E.roa
File: dBg_WXe-3hSDiefEa8s1pHwKO7E.roa (raw, json)
Hash identifier: DKpqTGXGr659JDjpQqIv08ObrS7tEG2So24t0AQUXBc=
Subject key identifier: 74:18:3F:59:77:BE:DE:14:83:89:E7:C4:6B:CB:35:A4:7C:0A:3B:B1
Certificate issuer: /CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd
Certificate serial: 0187108CAC3E9059078CE9BCE36A3B03F32E
Authority key identifier: E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/dBg_WXe-3hSDiefEa8s1pHwKO7E.roa
Signing time: Thu 23 Mar 2023 22:17:47 +0000
ROA not before: Thu 23 Mar 2023 22:17:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 45.140.7.0/24 maxlen: 24
193.160.72.0/24 maxlen: 24
91.245.239.0/24 maxlen: 24
45.130.186.0/24 maxlen: 24
45.130.185.0/24 maxlen: 24
45.130.184.0/24 maxlen: 24
5.104.75.0/24 maxlen: 24
5.104.72.0/24 maxlen: 24
193.228.48.0/22 maxlen: 24
88.218.239.0/24 maxlen: 24
194.28.157.0/24 maxlen: 24
212.69.135.0/24 maxlen: 24
95.214.92.0/24 maxlen: 24
95.214.95.0/24 maxlen: 24
95.214.93.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 25 Mar 2023 20:57:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:10:8c:ac:3e:90:59:07:8c:e9:bc:e3:6a:3b:03:f3:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd
Validity
Not Before: Mar 23 22:17:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=74183f5977bede148389e7c46bcb35a47c0a3bb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:18:db:bf:f6:b7:4e:22:02:03:e7:b6:24:37:
7c:b5:a6:f4:a7:f0:20:a5:fc:33:7a:0e:e8:a4:a4:
a4:9e:9c:57:4b:d7:1f:7e:6e:18:0f:05:5d:11:55:
cc:5e:e5:03:ef:c2:eb:7c:36:00:99:4a:ac:9e:a8:
82:c2:5a:97:04:a0:b5:5a:e1:8d:71:98:d2:4b:0f:
1f:d5:4d:8f:2e:98:cc:62:0c:35:01:32:24:4c:04:
46:e4:52:03:c4:f1:ad:7f:2c:0b:62:72:43:ca:0b:
ec:6e:ad:79:49:0e:18:55:f1:93:fa:8c:23:e3:a0:
87:96:de:28:e2:bb:5b:a7:b7:c9:93:fe:47:8e:1c:
f3:fa:dd:67:72:65:41:96:a0:af:8f:af:de:80:47:
2f:28:18:13:ba:67:55:4e:3a:03:2d:98:29:0f:ca:
dd:ad:4c:db:c6:96:52:05:96:44:ca:2a:ea:d5:f2:
b6:cc:86:24:da:28:b7:1e:ab:b3:aa:7d:b9:3c:c2:
5e:02:b7:45:be:cb:c1:b0:a9:2f:ef:58:19:a7:d6:
8f:1e:11:c1:c0:e7:b0:9f:88:df:2f:d9:6c:99:ba:
9b:14:00:a0:93:e9:bc:16:7a:71:4f:01:3c:8d:25:
96:5c:10:07:67:26:df:7e:ac:9b:df:85:4f:24:dc:
29:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:18:3F:59:77:BE:DE:14:83:89:E7:C4:6B:CB:35:A4:7C:0A:3B:B1
X509v3 Authority Key Identifier:
keyid:E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/dBg_WXe-3hSDiefEa8s1pHwKO7E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/4sK4NPvJGvDsax00_WQFTSJpof0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.72.0/24
5.104.75.0/24
45.130.184.0-45.130.186.255
45.140.7.0/24
88.218.239.0/24
91.245.239.0/24
95.214.92.0/23
95.214.95.0/24
193.160.72.0/24
193.228.48.0/22
194.28.157.0/24
212.69.135.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:d9:99:df:91:a8:2f:69:7c:92:68:5a:dd:e7:59:87:03:bb:
27:b4:3d:3b:b6:03:55:bc:c5:df:d0:3b:e0:e4:cf:97:4f:04:
86:5f:96:a7:da:0b:70:2f:64:61:c2:37:f7:b3:e4:55:05:26:
ad:6a:6c:9c:83:ca:37:f5:56:f4:50:bf:51:6e:f7:03:11:e2:
bc:46:d8:d2:a5:8e:44:61:b7:d2:4e:69:26:db:c4:b7:ff:57:
45:e6:f9:e2:53:cd:ad:65:8b:fa:c9:86:1f:38:c6:e6:e1:2f:
02:32:cf:c9:f1:41:ea:a9:3f:94:10:55:96:c1:62:01:aa:4d:
b3:91:71:f3:32:e2:2f:57:ea:8b:99:f5:00:e9:f4:69:e8:2c:
6d:27:cc:37:55:84:34:f9:ca:e5:8b:83:a0:31:bd:31:73:70:
e1:55:f6:3a:81:e4:5a:2e:80:c1:1d:00:04:1d:61:56:a0:75:
ee:81:c0:a5:e8:f5:83:90:b4:ab:06:ab:82:91:a4:a5:dc:b1:
8c:7b:a2:86:f3:31:d7:b8:fc:1f:56:73:9b:2a:2b:6d:9f:6b:
80:53:e7:36:5d:03:b6:bf:57:f1:d3:08:06:74:b6:40:73:14:
71:1c:2b:b4:63:07:8a:ac:64:48:4b:0f:52:5f:67:3a:6e:45:
ee:0e:1c:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:20 2024 by rpki-client on console-ams.rpki-client.org