Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/0nwE4LH-PnRnazo4HtF49Ef1uQE.roa
File: 0nwE4LH-PnRnazo4HtF49Ef1uQE.roa (raw, json)
Hash identifier: 2/S0/uGiPX2ln4PwoemXV64cQ8QmsNRSvskzHUavY0M=
Subject key identifier: D2:7C:04:E0:B1:FE:3E:74:67:6B:3A:38:1E:D1:78:F4:47:F5:B9:01
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 0191487CC0375D8479853E269E6327DDBA45
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/0nwE4LH-PnRnazo4HtF49Ef1uQE.roa
Signing time: Mon 12 Aug 2024 21:27:00 +0000
ROA not before: Mon 12 Aug 2024 21:27:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49505
IP address blocks: 5.172.179.0/24 maxlen: 24
31.41.253.0/24 maxlen: 24
45.10.248.0/22 maxlen: 22
45.87.255.0/24 maxlen: 24
45.94.228.0/22 maxlen: 22
45.95.28.0/24 maxlen: 24
45.95.148.0/22 maxlen: 22
45.128.129.0/24 maxlen: 24
45.129.4.0/22 maxlen: 22
45.131.160.0/24 maxlen: 24
45.131.161.0/24 maxlen: 24
91.190.158.0/24 maxlen: 24
93.190.123.0/24 maxlen: 24
94.154.188.0/24 maxlen: 24
94.154.189.0/24 maxlen: 24
94.154.191.0/24 maxlen: 24
176.116.17.0/24 maxlen: 24
176.126.98.0/24 maxlen: 24
176.126.102.0/24 maxlen: 24
185.222.214.0/24 maxlen: 24
193.187.106.0/24 maxlen: 24
193.201.9.0/24 maxlen: 24
194.104.232.0/24 maxlen: 24
212.60.7.0/24 maxlen: 24
217.8.117.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 14 Aug 2024 19:45:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:48:7c:c0:37:5d:84:79:85:3e:26:9e:63:27:dd:ba:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Aug 12 21:27:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d27c04e0b1fe3e74676b3a381ed178f447f5b901
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f5:32:18:22:41:f1:b7:ca:dd:73:8e:de:3d:
f3:2f:b7:40:52:b0:0e:ab:00:ca:0f:1a:eb:39:16:
b2:17:68:5f:60:ed:c3:28:b2:61:f4:dd:22:fc:32:
aa:5e:c3:32:3f:f1:b7:89:42:a4:44:58:4b:6f:1d:
f5:66:63:79:10:ff:91:79:1a:86:55:15:89:20:e2:
4a:cf:63:3f:57:82:e4:a7:0d:b9:32:3e:b8:3f:d9:
ab:63:e7:63:6e:1e:68:3e:8b:49:eb:ee:1f:0a:9f:
4f:e9:d5:0c:66:87:2e:f3:56:f9:29:ff:ca:e9:e7:
22:d9:e5:fb:18:2c:a9:3d:91:55:36:18:9d:30:12:
51:46:6f:d8:7b:04:a7:55:af:7a:f7:78:62:47:7c:
8a:29:56:67:3a:1a:fd:09:30:ad:78:57:58:3a:3a:
f9:cd:ba:38:0d:2b:89:ba:a9:e7:c7:fc:c6:99:89:
36:71:77:1d:7f:c6:86:ce:1e:fc:1d:cd:7e:58:b6:
67:96:6a:a0:b9:cf:a6:82:b8:b3:aa:39:a6:f2:9d:
6a:48:eb:a0:b5:e0:e4:fa:6c:86:2c:aa:95:60:72:
c2:50:25:70:1f:99:59:7c:d4:9d:2e:ff:08:00:a0:
db:c1:ab:e6:73:0b:49:fc:4f:0d:b4:08:b2:49:98:
b2:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:7C:04:E0:B1:FE:3E:74:67:6B:3A:38:1E:D1:78:F4:47:F5:B9:01
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/0nwE4LH-PnRnazo4HtF49Ef1uQE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.179.0/24
31.41.253.0/24
45.10.248.0/22
45.87.255.0/24
45.94.228.0/22
45.95.28.0/24
45.95.148.0/22
45.128.129.0/24
45.129.4.0/22
45.131.160.0/23
91.190.158.0/24
93.190.123.0/24
94.154.188.0/23
94.154.191.0/24
176.116.17.0/24
176.126.98.0/24
176.126.102.0/24
185.222.214.0/24
193.187.106.0/24
193.201.9.0/24
194.104.232.0/24
212.60.7.0/24
217.8.117.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:3d:a2:b9:a9:b8:07:aa:e4:75:56:6a:f7:27:11:ea:ae:db:
66:59:a9:4d:2d:4b:32:09:ca:0c:c1:d1:31:20:2e:3b:27:a0:
13:c4:9b:89:40:30:c8:9a:32:e3:ba:6f:13:b7:58:4e:ee:bb:
1c:97:d5:90:b5:75:cf:19:ef:6e:8a:38:91:85:3e:21:9a:e5:
86:b3:03:e0:20:58:ff:a6:f7:a2:ac:cc:19:ef:9f:cb:6e:8e:
74:c1:c4:4f:e1:ae:7c:9b:99:aa:c3:63:98:91:44:1a:2f:19:
2b:d2:16:fd:8f:c8:51:c3:56:65:d8:7c:21:c1:00:40:f7:ed:
15:37:7e:b2:ca:17:2d:8b:06:f4:4a:23:a2:3d:2c:b3:31:e0:
30:28:77:3b:5e:af:55:52:56:2b:c6:e7:3f:63:fe:e5:2e:9e:
0e:84:54:cc:4f:a2:c9:7d:c9:13:56:d4:48:6f:ca:19:56:69:
52:a9:6f:48:bc:11:00:b5:3b:61:77:92:26:c5:16:aa:4b:03:
61:0e:1a:ec:a3:c0:35:5e:9c:c4:7a:92:4a:b6:88:ef:16:8a:
db:eb:85:c1:74:86:98:9b:77:aa:91:08:62:0f:8e:07:de:54:
3d:40:9b:85:04:ce:04:49:2b:10:d7:63:fc:1a:09:50:90:cd:
e8:7a:7f:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 14 22:47:11 2024 by rpki-client on console-ams.rpki-client.org