Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/1EoDjyWBZVqVqaRLO-H7QMiMstk.roa
File: 1EoDjyWBZVqVqaRLO-H7QMiMstk.roa (raw, json)
Hash identifier: elv//R/UtY9EgEGs1uQtPq/ikN+EhmPH3osZf20q8wg=
Subject key identifier: D4:4A:03:8F:25:81:65:5A:95:A9:A4:4B:3B:E1:FB:40:C8:8C:B2:D9
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 01917622E6068B18B56E574E4494E174CE02
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/1EoDjyWBZVqVqaRLO-H7QMiMstk.roa
Signing time: Wed 21 Aug 2024 18:11:24 +0000
ROA not before: Wed 21 Aug 2024 18:11:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49505
IP address blocks: 5.172.179.0/24 maxlen: 24
31.41.253.0/24 maxlen: 24
45.10.248.0/22 maxlen: 22
45.87.255.0/24 maxlen: 24
45.94.228.0/22 maxlen: 22
45.95.28.0/24 maxlen: 24
45.95.148.0/22 maxlen: 22
45.128.129.0/24 maxlen: 24
45.129.4.0/22 maxlen: 22
45.131.160.0/24 maxlen: 24
45.131.161.0/24 maxlen: 24
45.142.254.0/24 maxlen: 24
88.151.11.0/24 maxlen: 24
91.190.158.0/24 maxlen: 24
93.190.123.0/24 maxlen: 24
94.154.188.0/24 maxlen: 24
94.154.189.0/24 maxlen: 24
94.154.191.0/24 maxlen: 24
176.116.17.0/24 maxlen: 24
176.126.98.0/24 maxlen: 24
176.126.102.0/24 maxlen: 24
185.222.214.0/24 maxlen: 24
193.187.106.0/24 maxlen: 24
193.201.9.0/24 maxlen: 24
194.50.73.0/24 maxlen: 24
194.104.232.0/24 maxlen: 24
212.60.7.0/24 maxlen: 24
217.8.117.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 31 Aug 2024 10:48:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:76:22:e6:06:8b:18:b5:6e:57:4e:44:94:e1:74:ce:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Aug 21 18:11:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d44a038f2581655a95a9a44b3be1fb40c88cb2d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:46:c9:ea:31:db:1f:c6:3d:46:b0:9d:25:ca:
a9:10:f9:ff:58:a5:65:21:39:78:90:ff:6b:f3:36:
f8:9a:e2:79:38:d4:5f:ff:be:18:c4:43:c1:f6:8c:
03:8c:02:18:cd:30:7f:81:b5:bd:c6:16:a1:bc:72:
ff:a6:82:d9:08:02:95:33:91:6b:95:19:a5:5d:04:
a7:17:b9:6d:54:06:7c:03:ab:dd:f4:28:ab:1c:3a:
9f:78:30:31:e5:16:57:7b:40:b5:63:c6:e3:46:b4:
c3:d6:33:8e:74:08:bb:6c:84:ff:71:bd:7c:86:e5:
76:9a:6f:2b:6c:d1:28:2f:6f:fc:37:d9:f0:b8:7a:
94:05:ed:a5:37:3e:35:b9:6e:35:44:77:d8:da:b4:
7f:3e:d7:bd:23:c5:1e:c6:2d:14:bb:57:1d:60:4c:
ee:15:fc:cd:6b:fd:8b:94:75:ee:b1:84:3a:98:8b:
c1:f1:3d:b5:bf:e7:d7:cf:50:20:8b:af:91:51:83:
9e:88:e7:17:4a:23:75:81:13:14:47:a4:88:3a:2a:
87:59:57:c3:f3:87:9b:13:d2:c3:06:ea:7a:f1:98:
a9:7a:f3:47:bf:7b:42:c3:fb:cb:37:44:8f:3b:26:
39:5f:4a:e4:13:7d:a4:80:73:ff:fa:ff:14:31:d8:
a8:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:4A:03:8F:25:81:65:5A:95:A9:A4:4B:3B:E1:FB:40:C8:8C:B2:D9
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/1EoDjyWBZVqVqaRLO-H7QMiMstk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.179.0/24
31.41.253.0/24
45.10.248.0/22
45.87.255.0/24
45.94.228.0/22
45.95.28.0/24
45.95.148.0/22
45.128.129.0/24
45.129.4.0/22
45.131.160.0/23
45.142.254.0/24
88.151.11.0/24
91.190.158.0/24
93.190.123.0/24
94.154.188.0/23
94.154.191.0/24
176.116.17.0/24
176.126.98.0/24
176.126.102.0/24
185.222.214.0/24
193.187.106.0/24
193.201.9.0/24
194.50.73.0/24
194.104.232.0/24
212.60.7.0/24
217.8.117.0/24
Signature Algorithm: sha256WithRSAEncryption
21:d6:ac:2d:af:22:6a:ff:5d:d6:44:d9:c3:b9:ac:6e:fc:41:
f6:bd:78:5b:c1:dd:86:ca:27:d1:bb:d9:b2:30:e9:8e:6b:a6:
22:80:0a:ea:97:ba:c8:19:cd:b8:16:6e:0f:24:0b:3e:4e:ad:
57:74:90:3c:04:6d:b3:ba:47:58:ac:b1:d7:3b:ac:f6:f1:c6:
16:70:38:73:23:bb:10:19:aa:58:fb:e1:db:8a:18:aa:4d:09:
a4:b8:0a:f0:4a:e8:e2:d0:2d:45:a0:55:ec:6c:5c:aa:32:6f:
d9:dc:5f:e6:c6:23:ad:64:e4:bd:c1:ef:ef:95:bd:d0:37:d2:
12:6f:0c:44:c2:f6:08:e3:2a:dc:dd:48:01:04:a1:71:d7:35:
f8:c5:86:8c:c5:cd:b8:1f:39:cb:bf:81:3a:30:79:bc:da:3a:
bd:e9:de:9f:cf:42:83:de:7f:e9:75:7f:dc:4b:75:b0:5a:e0:
2a:77:06:27:87:ec:27:75:d4:b9:17:6e:23:05:62:3c:63:3b:
ac:9a:2c:9e:85:ed:13:57:fe:63:a0:5e:a2:8e:7e:2d:e3:aa:
c7:6c:70:5d:1c:08:79:fd:d3:c3:7b:a4:2c:af:9f:da:2e:3b:
97:d9:ed:70:b3:37:54:e3:7c:47:97:b0:a5:98:68:ea:a4:8a:
73:17:ec:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 31 13:33:19 2024 by rpki-client on console-ams.rpki-client.org