Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/3j7lNW2B16qcL68yGG_QN7JeCVc.roa
File: 3j7lNW2B16qcL68yGG_QN7JeCVc.roa (raw, json)
Hash identifier: u3D3m1CwOzSiAiqPRlpKottOXZjTRqXrt6unyk0xIuo=
Subject key identifier: DE:3E:E5:35:6D:81:D7:AA:9C:2F:AF:32:18:6F:D0:37:B2:5E:09:57
Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9
Certificate serial: 0192D942A8618E0EA904FEA98E2126C0BCB9
Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/3j7lNW2B16qcL68yGG_QN7JeCVc.roa
Signing time: Tue 29 Oct 2024 17:11:17 +0000
ROA not before: Tue 29 Oct 2024 17:11:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8100
IP address blocks: 45.43.136.0/21 maxlen: 21
45.43.147.0/24 maxlen: 24
45.43.152.0/24 maxlen: 24
64.137.9.0/24 maxlen: 24
64.137.54.0/24 maxlen: 24
64.137.110.0/23 maxlen: 23
104.222.191.0/24 maxlen: 24
104.233.56.0/24 maxlen: 24
104.233.58.0/24 maxlen: 24
104.238.21.0/24 maxlen: 24
104.238.24.0/24 maxlen: 24
104.238.28.0/24 maxlen: 24
104.238.30.0/24 maxlen: 24
104.239.15.0/24 maxlen: 24
104.239.47.0/24 maxlen: 24
104.239.66.0/24 maxlen: 24
104.239.74.0/24 maxlen: 24
104.239.79.0/24 maxlen: 24
104.239.83.0/24 maxlen: 24
104.239.89.0/24 maxlen: 24
104.239.100.0/24 maxlen: 24
104.239.102.0/24 maxlen: 24
104.239.109.0/24 maxlen: 24
104.239.127.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 03 Nov 2024 18:33:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:d9:42:a8:61:8e:0e:a9:04:fe:a9:8e:21:26:c0:bc:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9
Validity
Not Before: Oct 29 17:11:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=de3ee5356d81d7aa9c2faf32186fd037b25e0957
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:4b:1c:12:e5:3d:37:0e:04:80:fd:5e:5a:40:
3c:58:b8:a7:05:8c:21:df:c1:a7:e9:9b:30:ef:51:
45:9b:8b:8b:bf:a4:17:16:98:6d:5f:bf:53:76:3f:
68:8c:92:b6:6d:ef:04:5e:95:c2:80:93:e4:9d:5f:
e8:16:73:2c:4d:5a:68:b3:8b:c1:d0:67:00:a1:c8:
16:9d:c3:86:07:9b:99:7b:b3:82:63:50:5a:01:c8:
43:44:77:f7:87:2f:8d:da:0f:a1:2d:a4:88:50:d7:
76:b3:e9:cd:96:33:55:10:31:dd:e6:56:80:0d:25:
b1:e7:e2:8f:ae:b5:1e:a7:ab:3f:56:7d:ef:97:5e:
0a:75:e8:7f:b7:ed:23:77:b0:2f:26:8d:38:db:b5:
5c:4c:ab:4e:5e:35:f1:75:22:07:bb:2a:fb:11:3d:
2e:2b:a9:32:1f:bb:c8:ec:1b:ef:3a:ef:35:71:4e:
5f:38:23:3f:f2:26:f5:79:02:f3:45:e3:3f:59:38:
05:18:ba:d4:0d:85:67:62:df:d7:53:32:05:98:50:
c6:c2:30:28:a3:14:8f:24:41:b7:b4:64:6d:26:e0:
99:fd:ad:27:07:5a:72:60:92:20:34:4d:b0:e1:96:
29:9c:15:06:ad:a0:2a:b6:33:02:27:8f:51:94:2a:
54:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:3E:E5:35:6D:81:D7:AA:9C:2F:AF:32:18:6F:D0:37:B2:5E:09:57
X509v3 Authority Key Identifier:
keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/3j7lNW2B16qcL68yGG_QN7JeCVc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.43.136.0/21
45.43.147.0/24
45.43.152.0/24
64.137.9.0/24
64.137.54.0/24
64.137.110.0/23
104.222.191.0/24
104.233.56.0/24
104.233.58.0/24
104.238.21.0/24
104.238.24.0/24
104.238.28.0/24
104.238.30.0/24
104.239.15.0/24
104.239.47.0/24
104.239.66.0/24
104.239.74.0/24
104.239.79.0/24
104.239.83.0/24
104.239.89.0/24
104.239.100.0/24
104.239.102.0/24
104.239.109.0/24
104.239.127.0/24
Signature Algorithm: sha256WithRSAEncryption
69:dc:c7:a1:f9:0f:ba:e7:d9:06:4b:81:8f:33:6f:41:bc:6e:
4f:ec:63:34:9d:85:9a:63:89:22:ec:9c:14:4f:7b:24:5f:17:
b5:44:96:f6:f6:ef:d0:a2:8d:9c:ef:c2:bd:ff:01:0e:ca:c5:
3c:d2:a9:71:df:00:79:d5:55:6c:1c:19:56:d3:01:5a:a4:4f:
57:1c:a7:c8:70:41:c0:63:7c:01:80:3c:33:c6:cb:79:1c:e5:
99:86:92:c8:eb:f8:0e:51:95:9e:53:e4:31:91:de:2d:f7:8b:
2d:61:01:31:32:cb:06:09:9e:d4:98:0c:c8:4b:c9:91:2c:f3:
6b:18:f2:6a:d6:2c:6b:a7:34:18:5f:31:78:5a:04:f6:4f:a0:
a6:06:d1:f6:db:7c:1f:de:ca:4f:02:c8:1a:df:de:c9:c8:aa:
d8:b8:4f:b1:eb:bd:45:b8:4f:a3:37:25:39:43:13:87:cf:10:
33:25:62:f3:50:30:92:42:be:ff:2d:f2:63:b1:ea:a8:66:a8:
31:8f:c4:da:44:78:62:94:58:41:82:6e:29:38:74:a1:09:9b:
76:16:54:44:50:37:d9:55:55:e9:c2:88:34:e9:f3:94:e0:f2:
df:ed:50:75:7e:af:46:5f:17:f3:63:65:50:03:d1:ba:bf:bc:
11:dd:86:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 3 19:50:06 2024 by rpki-client on console-fra.rpki-client.org