Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/4d9c83-f960-48ac-bbf5-9dca5cc80dd9/1/XHoEMQ_ZYMGJAqsej7zbuIUgmoY.roa
File: XHoEMQ_ZYMGJAqsej7zbuIUgmoY.roa (raw, json)
Hash identifier: N+g/maqvEEWxZ02QgR2NMFO8rhYOODRSCa/7JHWU8is=
Subject key identifier: 5C:7A:04:31:0F:D9:60:C1:89:02:AB:1E:8F:BC:DB:B8:85:20:9A:86
Certificate issuer: /CN=1ed3d8e29e063b9d2740ab3de6c72255ec8d0557
Certificate serial: 018CCA2A609113143B6D727BB22058CB7DEF
Authority key identifier: 1E:D3:D8:E2:9E:06:3B:9D:27:40:AB:3D:E6:C7:22:55:EC:8D:05:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HtPY4p4GO50nQKs95sciVeyNBVc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/4d9c83-f960-48ac-bbf5-9dca5cc80dd9/1/XHoEMQ_ZYMGJAqsej7zbuIUgmoY.roa
Signing time: Tue 02 Jan 2024 12:33:44 +0000
ROA not before: Tue 02 Jan 2024 12:33:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5400
IP address blocks: 212.8.160.0/19 maxlen: 19
212.41.128.0/19 maxlen: 19
62.173.192.0/18 maxlen: 18
62.102.0.0/17 maxlen: 17
195.90.64.0/19 maxlen: 19
194.213.64.0/19 maxlen: 19
195.100.0.0/16 maxlen: 16
212.127.0.0/19 maxlen: 19
212.21.192.0/19 maxlen: 19
213.15.0.0/16 maxlen: 16
62.5.0.0/17 maxlen: 17
213.236.64.0/18 maxlen: 18
195.182.96.0/19 maxlen: 19
195.163.0.0/16 maxlen: 16
185.94.0.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Apr 2024 07:07:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:60:91:13:14:3b:6d:72:7b:b2:20:58:cb:7d:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ed3d8e29e063b9d2740ab3de6c72255ec8d0557
Validity
Not Before: Jan 2 12:33:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5c7a04310fd960c18902ab1e8fbcdbb885209a86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:e1:9a:4e:a7:d0:7d:3d:27:65:b7:52:af:88:
c2:93:3c:92:84:04:2d:4d:78:bc:3a:36:52:ae:ec:
29:51:6f:35:af:f7:46:fc:87:37:51:de:ca:d5:32:
d3:b2:e0:58:86:1a:a0:d3:17:e7:22:87:63:18:bf:
d8:61:46:92:b8:dc:4c:6b:34:e9:c1:8c:ac:4e:42:
6e:31:bd:08:fa:72:67:65:25:7d:d4:42:6a:6d:e3:
e6:68:be:54:2d:a6:b3:c0:87:5d:14:5c:13:ab:d2:
10:73:f4:b0:c2:30:86:b3:b9:aa:6f:6e:02:b1:e7:
4e:0f:da:3d:3e:f8:61:82:9b:a9:77:c7:88:b8:da:
a2:3a:ba:02:73:49:7a:6b:7d:31:5a:34:7f:01:4c:
f1:af:44:b5:7a:6e:65:7f:5a:59:e4:c4:51:83:12:
6a:e7:b2:6d:35:9b:5a:8c:cc:36:a1:e6:c7:95:d2:
bf:85:b5:95:0d:57:bb:86:49:16:c5:b6:63:62:33:
ad:51:20:60:78:f6:e0:03:16:d9:79:7e:61:16:6a:
d2:6c:13:ce:77:79:80:b6:54:f1:99:8e:0c:b9:f0:
f9:56:46:78:3f:4f:19:60:59:69:f1:64:62:0a:c7:
92:13:96:cc:9d:07:4d:8c:dc:14:06:2c:f5:d7:2b:
ec:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:7A:04:31:0F:D9:60:C1:89:02:AB:1E:8F:BC:DB:B8:85:20:9A:86
X509v3 Authority Key Identifier:
keyid:1E:D3:D8:E2:9E:06:3B:9D:27:40:AB:3D:E6:C7:22:55:EC:8D:05:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HtPY4p4GO50nQKs95sciVeyNBVc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/4d9c83-f960-48ac-bbf5-9dca5cc80dd9/1/XHoEMQ_ZYMGJAqsej7zbuIUgmoY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/4d9c83-f960-48ac-bbf5-9dca5cc80dd9/1/HtPY4p4GO50nQKs95sciVeyNBVc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.5.0.0/17
62.102.0.0/17
62.173.192.0/18
185.94.0.0/22
194.213.64.0/19
195.90.64.0/19
195.100.0.0/16
195.163.0.0/16
195.182.96.0/19
212.8.160.0/19
212.21.192.0/19
212.41.128.0/19
212.127.0.0/19
213.15.0.0/16
213.236.64.0/18
Signature Algorithm: sha256WithRSAEncryption
a1:62:c6:8e:6b:f4:a0:70:66:2d:34:36:1f:91:09:f3:12:6c:
b5:75:ca:16:bb:9c:bc:77:06:1b:9a:9e:ef:d2:87:74:93:4d:
f7:1c:f4:51:d3:6d:6a:84:57:91:d8:7f:ff:01:8f:62:3a:1e:
6b:68:a5:d5:eb:ab:7b:70:e2:8c:17:cf:e1:78:36:b6:16:a2:
fb:06:31:20:21:99:9d:d6:b7:6a:88:8f:df:05:1f:f0:bf:f5:
e3:6a:fa:0e:c5:11:98:12:72:6c:52:1f:30:b8:46:c0:9e:a3:
78:88:20:88:2f:19:25:4f:9d:17:bf:a1:aa:82:a1:74:f3:c0:
ee:08:84:fd:6a:01:eb:d5:03:78:9a:b9:59:7f:33:1c:7e:3c:
62:f2:08:48:e0:7c:7d:ad:d3:31:59:b1:6e:7f:58:5f:f8:5b:
a2:69:98:f8:df:e5:05:97:81:a1:4f:b4:7e:1b:9e:37:f7:07:
af:db:5c:b2:4e:65:fb:dc:30:98:60:34:42:fb:c9:4e:6e:7a:
ff:f1:92:04:70:dd:41:5e:8c:f9:18:80:05:0c:1b:8a:5b:5d:
ee:0c:ee:cb:9a:d7:51:da:71:fe:cd:d4:fc:8c:3b:a9:5a:fb:
f5:7f:09:9e:5f:ba:4d:e8:33:f3:0a:be:24:8a:cd:f8:0f:aa:
67:87:d8:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 2 11:41:24 2024 by rpki-client on console-fra.rpki-client.org