Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/4d9c83-f960-48ac-bbf5-9dca5cc80dd9/1/OY8jgemzQ8ZqKXy214vUNgFCYjk.roa
File: OY8jgemzQ8ZqKXy214vUNgFCYjk.roa (raw, json)
Hash identifier: TH7mLjbLBX/4+OTsAZsfp+Nj7IvfQG65Lspwj0WTn9c=
Subject key identifier: 39:8F:23:81:E9:B3:43:C6:6A:29:7C:B6:D7:8B:D4:36:01:42:62:39
Certificate issuer: /CN=1ed3d8e29e063b9d2740ab3de6c72255ec8d0557
Certificate serial: 018E9EAD0D1BE1214B7864C58982938DC705
Authority key identifier: 1E:D3:D8:E2:9E:06:3B:9D:27:40:AB:3D:E6:C7:22:55:EC:8D:05:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HtPY4p4GO50nQKs95sciVeyNBVc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/4d9c83-f960-48ac-bbf5-9dca5cc80dd9/1/OY8jgemzQ8ZqKXy214vUNgFCYjk.roa
Signing time: Tue 02 Apr 2024 11:58:44 +0000
ROA not before: Tue 02 Apr 2024 11:58:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5400
IP address blocks: 62.5.0.0/17 maxlen: 17
62.102.0.0/17 maxlen: 17
62.173.192.0/18 maxlen: 18
62.180.0.0/16 maxlen: 16
82.150.0.0/19 maxlen: 19
185.94.0.0/22 maxlen: 22
194.213.64.0/19 maxlen: 19
195.90.64.0/19 maxlen: 19
195.100.0.0/16 maxlen: 16
195.163.0.0/16 maxlen: 16
195.182.96.0/19 maxlen: 19
212.8.160.0/19 maxlen: 19
212.21.192.0/19 maxlen: 19
212.41.128.0/19 maxlen: 19
212.127.0.0/19 maxlen: 19
213.15.0.0/16 maxlen: 16
213.236.64.0/18 maxlen: 18
Validation: Failed, certificate revoked on Wed 03 Apr 2024 05:09:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:9e:ad:0d:1b:e1:21:4b:78:64:c5:89:82:93:8d:c7:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ed3d8e29e063b9d2740ab3de6c72255ec8d0557
Validity
Not Before: Apr 2 11:58:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=398f2381e9b343c66a297cb6d78bd43601426239
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:87:a4:fe:00:be:85:35:8b:2f:6c:5c:ce:74:
28:ec:18:79:6b:3c:9c:62:bb:9f:72:10:13:64:a1:
0c:e2:a6:fc:00:cc:78:cf:7e:7a:eb:dd:c8:e1:01:
ec:0b:6c:a3:9f:4d:98:1a:13:35:1c:f0:53:37:4f:
a0:9d:4d:e6:cc:35:46:64:11:20:2b:13:3f:c2:de:
cf:24:9a:c8:ae:a6:6a:12:89:39:35:e1:82:42:83:
e3:81:be:c7:55:11:76:e9:19:99:a1:5c:0d:8a:f5:
33:26:1c:9d:91:e0:11:c5:02:d2:ee:87:cb:d2:ba:
46:32:9e:55:23:85:b9:35:94:dc:52:25:9e:8c:44:
30:f7:e3:18:b9:f2:d8:f0:f2:51:48:54:00:d1:a5:
ab:c5:47:88:36:28:63:36:32:10:c8:7a:29:32:61:
48:43:33:96:24:c2:bb:0d:96:a6:8e:ed:96:e5:ac:
63:ec:d8:27:57:3d:3c:69:d6:4b:d0:b2:b8:0f:17:
95:b9:62:59:e3:3a:c5:90:08:a9:d9:b1:d9:33:f7:
39:86:f4:97:75:45:2b:ea:c7:02:71:cd:39:45:78:
73:70:26:4c:68:34:0a:36:72:ef:78:35:74:58:50:
f7:bd:32:f4:38:73:c9:59:16:5d:b7:a2:67:46:4a:
8b:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:8F:23:81:E9:B3:43:C6:6A:29:7C:B6:D7:8B:D4:36:01:42:62:39
X509v3 Authority Key Identifier:
keyid:1E:D3:D8:E2:9E:06:3B:9D:27:40:AB:3D:E6:C7:22:55:EC:8D:05:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HtPY4p4GO50nQKs95sciVeyNBVc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/4d9c83-f960-48ac-bbf5-9dca5cc80dd9/1/OY8jgemzQ8ZqKXy214vUNgFCYjk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/4d9c83-f960-48ac-bbf5-9dca5cc80dd9/1/HtPY4p4GO50nQKs95sciVeyNBVc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.5.0.0/17
62.102.0.0/17
62.173.192.0/18
62.180.0.0/16
82.150.0.0/19
185.94.0.0/22
194.213.64.0/19
195.90.64.0/19
195.100.0.0/16
195.163.0.0/16
195.182.96.0/19
212.8.160.0/19
212.21.192.0/19
212.41.128.0/19
212.127.0.0/19
213.15.0.0/16
213.236.64.0/18
Signature Algorithm: sha256WithRSAEncryption
8d:3c:e5:7e:94:6b:52:25:90:3e:7d:0f:51:fc:0e:af:45:b1:
b4:fd:47:17:3a:ff:a5:d5:f6:5e:ff:e9:5f:1e:2d:a2:79:4b:
3f:43:b1:86:19:c4:d4:ef:c9:4c:ea:79:58:3e:6e:1b:a7:d1:
af:3d:05:d7:94:c6:18:d0:3c:85:d0:11:82:a5:a7:20:d8:28:
16:2b:37:ea:52:ed:5b:25:6b:24:12:d0:69:d3:47:22:f4:a9:
7e:d3:cc:1e:e1:e5:b8:cf:8a:e1:cb:92:aa:e5:dc:b1:78:ae:
e0:ba:08:66:3c:f3:4c:d9:48:de:37:0e:ba:5c:76:bb:41:c4:
ed:37:12:49:21:62:5a:73:f1:b6:7e:80:8a:db:f6:7f:72:1f:
39:26:31:8e:28:59:66:30:95:8e:96:42:45:40:4e:a8:a1:94:
9e:b2:e8:b9:a1:28:19:de:85:e0:ad:0c:f5:4f:26:f5:40:3b:
68:fe:99:71:40:af:09:a8:61:37:8c:a9:da:63:c4:f0:5e:1a:
73:8a:5f:47:53:d6:03:e9:0a:6d:91:d9:a0:9a:59:60:d3:e6:
34:27:d6:c6:8d:b1:09:19:35:5d:db:0e:2c:d5:33:d7:74:05:
73:39:53:a3:da:6e:89:08:32:88:38:80:7b:87:c7:7f:3f:ee:
25:c7:d5:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 3 06:14:56 2024 by rpki-client on console-ams.rpki-client.org