Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5OdzSW2hwXZl8WsZ6lwvXh7FKIs.roa
File: 5OdzSW2hwXZl8WsZ6lwvXh7FKIs.roa (raw, json)
Hash identifier: CfccHHTx2rEeuz+q34qnEALhMbpEIg9Cr0+Ewm2bha0=
Subject key identifier: E4:E7:73:49:6D:A1:C1:76:65:F1:6B:19:EA:5C:2F:5E:1E:C5:28:8B
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018642F52A5C07CD4DDD9FD9A85F6CD33DF4
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5OdzSW2hwXZl8WsZ6lwvXh7FKIs.roa
Signing time: Sun 12 Feb 2023 00:10:08 +0000
ROA not before: Sun 12 Feb 2023 00:10:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58057
IP address blocks: 194.50.94.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
139.28.96.0/22 maxlen: 24
45.131.184.0/22 maxlen: 24
185.232.117.0/24 maxlen: 24
45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
45.12.68.0/22 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:b105:120::/44 maxlen: 48
2a0e:97c0:260::/44 maxlen: 44
2001:7f8:119::/48 maxlen: 48
2a10:cc46:1000::/36 maxlen: 48
2a0e:b107:1e40::/44 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a0e:b107:1165::/48 maxlen: 48
2a0c:3b80::/29 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2a10:2f00:18f::/48 maxlen: 48
2a0e:b107:6f0::/44 maxlen: 44
2a0e:b107:9f2::/48 maxlen: 48
2a10:cc40:250::/44 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a0e:b107:1786::/48 maxlen: 48
2a10:cc41:800::/37 maxlen: 48
2a0e:97c4:100::/44 maxlen: 48
Validation: Failed, certificate revoked on Wed 22 Feb 2023 20:53:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:42:f5:2a:5c:07:cd:4d:dd:9f:d9:a8:5f:6c:d3:3d:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Feb 12 00:10:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e4e773496da1c17665f16b19ea5c2f5e1ec5288b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:1c:a5:8a:94:5f:4a:cc:ab:cd:c7:c3:f1:d8:
39:68:b8:b1:14:d1:10:e4:95:b0:4c:93:1b:6d:5f:
3c:e7:a0:7e:bd:82:62:fd:35:ff:fd:c6:16:c6:08:
38:de:dc:42:83:f2:50:2b:6e:5d:ef:2b:ae:7a:af:
7c:e0:58:2d:e6:c6:ae:35:0b:ea:ea:f1:63:2e:30:
c4:61:6b:b7:35:4b:67:b4:d7:1a:c7:62:aa:3f:ee:
a4:6d:b7:48:bf:ef:24:8f:fd:37:e7:16:e7:df:af:
60:d5:ce:ab:d9:5a:97:d3:c6:6b:94:0e:be:b0:2d:
e2:fa:ed:fc:fc:00:83:c5:2b:e8:0e:ac:7a:23:da:
ac:f3:f7:e7:76:41:4a:04:63:a8:05:c3:d0:5d:71:
b1:b4:b7:bf:b3:df:b2:01:42:d5:e9:a8:a8:54:11:
fb:5b:d2:59:7c:83:79:14:98:e5:66:b1:5c:ee:ea:
9d:e2:c9:42:24:82:dd:59:cf:a1:e1:70:2f:91:7d:
8a:31:d2:10:82:00:cf:47:94:7b:43:54:1a:65:98:
78:d7:ba:d6:a3:6f:f4:25:d9:7f:47:40:44:99:16:
3c:cb:50:3e:ab:8b:97:d7:93:dc:bd:87:18:2b:6d:
f7:b0:f9:4e:f4:bf:13:60:16:e5:f3:59:b2:73:f9:
c7:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:E7:73:49:6D:A1:C1:76:65:F1:6B:19:EA:5C:2F:5E:1E:C5:28:8B
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5OdzSW2hwXZl8WsZ6lwvXh7FKIs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.12.68.0/22
45.131.184.0/22
45.136.136.0/22
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
185.232.117.0/24
194.50.92.0/24
194.50.94.0/24
IPv6:
2001:7f8:119::/48
2a09:4c0::/29
2a0c:3b80::/29
2a0e:97c0:170::/48
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c4:100::/44
2a0e:b105:120::/44
2a0e:b107:6f0::/44
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0e:b107:1e40::/44
2a0f:e404:102::/48
2a10:2f00:18f::/48
2a10:cc40:250::/44
2a10:cc41:800::/37
2a10:cc46:1000::/36
Signature Algorithm: sha256WithRSAEncryption
5b:3b:69:67:92:0d:20:40:0f:c3:27:1f:31:7f:8f:ea:62:79:
fa:01:09:62:33:2f:3e:de:0d:25:b9:ef:c2:9d:c5:c0:95:32:
84:bb:ab:b2:c9:45:a7:be:d6:d7:22:73:43:6f:5e:f9:19:2b:
d4:b0:b2:e5:61:ca:fc:b4:70:e3:d3:2d:64:b4:4e:fa:27:41:
28:4e:c2:f8:03:a5:b1:b2:9a:19:1d:9d:a3:b6:0c:5d:ef:99:
39:28:9a:fb:f7:cf:d7:29:29:b9:52:87:5b:84:9d:cc:73:23:
26:8c:b2:2a:87:88:cb:ac:1d:39:4d:80:f8:ae:38:b7:50:62:
6c:90:d6:57:89:70:b8:2b:b8:01:81:4c:18:48:7a:31:21:1f:
32:df:36:60:cb:c1:54:99:ee:09:26:e5:77:0f:14:68:29:a9:
d2:cb:0f:0a:01:83:be:d7:27:7a:34:72:3c:52:29:a2:1e:4e:
3d:a0:db:b3:8d:99:19:a8:a2:08:f9:d6:2e:e2:be:31:c8:e2:
93:27:b0:94:a8:ae:85:2a:c2:6d:18:37:44:cf:a8:56:a2:39:
c0:a8:f7:c3:d4:4b:df:68:17:7e:6d:9d:51:74:76:eb:88:f8:
dd:f6:23:8e:f8:87:20:a5:f0:79:2b:5a:0a:91:83:b6:fa:79:
9a:68:5c:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:53 2024 by rpki-client on console-ams.rpki-client.org