Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/rOiK8rO5PZ-HbRXe_vY4b6B5jqI.roa
File: rOiK8rO5PZ-HbRXe_vY4b6B5jqI.roa (raw, json)
Hash identifier: PE5f5PQnRTSdcXTemq4ZYHEKylOnuEnLYS7pqX5UdNg=
Subject key identifier: AC:E8:8A:F2:B3:B9:3D:9F:87:6D:15:DE:FE:F6:38:6F:A0:79:8E:A2
Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9
Certificate serial: 018EEEA887B9C7BB03D0E6A136E35754217D
Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/rOiK8rO5PZ-HbRXe_vY4b6B5jqI.roa
Signing time: Thu 18 Apr 2024 00:43:25 +0000
ROA not before: Thu 18 Apr 2024 00:43:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 13886
IP address blocks: 45.43.165.0/24 maxlen: 24
45.150.32.0/22 maxlen: 22
64.137.51.0/24 maxlen: 24
104.233.32.0/20 maxlen: 20
204.52.112.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 May 2024 17:52:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:ee:a8:87:b9:c7:bb:03:d0:e6:a1:36:e3:57:54:21:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9
Validity
Not Before: Apr 18 00:43:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ace88af2b3b93d9f876d15defef6386fa0798ea2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:29:31:14:d3:31:27:fc:e6:17:3c:e2:2a:4e:
2a:5a:1d:f6:f1:9e:47:d3:40:fa:49:5b:e3:56:aa:
c6:68:53:0e:f4:cf:d9:18:71:f0:71:9b:66:40:d7:
6e:48:10:d2:58:3a:48:57:ed:58:6b:f2:0c:c8:52:
5c:1c:09:2c:47:f8:c2:a5:1c:1b:f9:23:19:5d:25:
87:d9:c9:33:e3:d0:21:3d:8e:49:10:48:41:72:72:
af:05:e9:17:2b:49:04:ba:2c:b6:d2:d1:7c:49:09:
ed:21:e5:cb:f8:1e:00:88:43:f3:78:8e:76:85:f7:
39:21:0f:57:1c:5e:f4:e0:43:99:c6:9a:59:fa:ac:
5d:a9:f2:d9:22:9f:91:82:c3:27:ce:85:52:4b:0a:
53:d3:d4:dc:15:de:cd:f1:aa:f3:ef:d2:bc:94:cc:
6d:74:b2:a0:a8:ff:5d:d5:6a:fb:0e:c1:56:ee:48:
54:8a:d0:7d:1f:c0:cd:50:18:60:36:19:2a:ba:38:
d7:0b:f9:7f:75:fe:72:ec:13:dd:4d:fb:57:56:b6:
b4:1d:4a:91:16:3a:ff:b9:9f:4e:e0:46:05:e1:51:
06:50:05:6f:07:c9:58:5a:e9:12:e8:47:db:5e:42:
2d:d3:3a:7a:8e:39:64:9f:68:8e:b4:e4:47:40:99:
1f:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:E8:8A:F2:B3:B9:3D:9F:87:6D:15:DE:FE:F6:38:6F:A0:79:8E:A2
X509v3 Authority Key Identifier:
keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/rOiK8rO5PZ-HbRXe_vY4b6B5jqI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.43.165.0/24
45.150.32.0/22
64.137.51.0/24
104.233.32.0/20
204.52.112.0/24
Signature Algorithm: sha256WithRSAEncryption
80:e5:a2:f9:57:2c:b9:61:1e:8b:d4:c0:b9:ca:10:c0:62:8e:
85:d4:af:8a:9b:eb:e3:80:c1:73:62:c2:ab:a4:c8:47:34:fc:
a2:f3:21:97:29:33:d3:47:c6:ba:bc:eb:4b:35:21:0f:ef:24:
bf:4f:92:81:5e:6f:05:28:90:29:04:c4:83:ce:78:b9:0e:d5:
ec:f8:6c:1d:3e:bf:c7:46:a7:43:d3:a9:27:c8:eb:a3:a7:4b:
12:3b:ae:1d:56:46:37:09:a6:fc:0e:fc:7c:9c:f7:95:14:d8:
f8:4e:bd:85:4d:2a:56:32:f8:69:bb:45:27:ea:d4:4a:f7:c9:
35:23:73:8c:3c:61:b2:12:77:49:f5:4f:4a:95:7b:38:14:c9:
15:9a:c0:a0:b6:2b:d2:f1:03:6b:0d:2f:a6:52:4c:23:98:27:
61:84:d9:77:c0:1a:4e:73:a7:73:86:0c:83:30:12:13:71:f0:
f7:0c:f6:44:a0:56:92:3a:60:3e:0b:d6:fe:20:83:25:d6:bd:
56:9b:6a:67:49:be:57:16:c1:2f:af:76:39:e7:34:bb:b0:ae:
a3:a1:53:18:17:01:7f:74:cd:fb:58:50:0f:80:36:fa:62:10:
65:91:f1:31:da:59:2e:87:6e:cb:0e:23:80:94:82:7e:7e:4d:
2d:74:27:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 15 20:47:31 2024 by rpki-client on console-ams.rpki-client.org