Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/1I9KD6KnCoJKTAEoGIoaIi6SJpw.roa
File: 1I9KD6KnCoJKTAEoGIoaIi6SJpw.roa (raw, json)
Hash identifier: tmWErV6HFxWmIhDza87Ox0cwOgVJC4EeuHCPfoMxqes=
Subject key identifier: D4:8F:4A:0F:A2:A7:0A:82:4A:4C:01:28:18:8A:1A:22:2E:92:26:9C
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 0191487CC3D0253E64BA258F2F405C031C0F
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/1I9KD6KnCoJKTAEoGIoaIi6SJpw.roa
Signing time: Mon 12 Aug 2024 21:27:01 +0000
ROA not before: Mon 12 Aug 2024 21:27:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212667
IP address blocks: 5.182.116.0/24 maxlen: 24
45.86.3.0/24 maxlen: 24
45.128.130.0/23 maxlen: 23
46.149.174.0/24 maxlen: 24
46.174.192.0/24 maxlen: 24
46.174.193.0/24 maxlen: 24
46.174.194.0/24 maxlen: 24
46.174.195.0/24 maxlen: 24
46.174.196.0/24 maxlen: 24
46.174.197.0/24 maxlen: 24
46.174.198.0/24 maxlen: 24
46.174.199.0/24 maxlen: 24
62.204.32.0/24 maxlen: 24
178.212.78.0/24 maxlen: 24
185.253.2.0/24 maxlen: 24
188.64.140.0/24 maxlen: 24
188.93.136.0/24 maxlen: 24
195.96.141.0/24 maxlen: 24
212.18.98.0/24 maxlen: 24
212.60.6.0/24 maxlen: 24
212.107.24.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 14 Aug 2024 19:45:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:48:7c:c3:d0:25:3e:64:ba:25:8f:2f:40:5c:03:1c:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Aug 12 21:27:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d48f4a0fa2a70a824a4c0128188a1a222e92269c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d0:88:85:2c:66:e7:74:3e:95:08:da:fe:b2:
83:69:22:1a:cc:ef:fa:a0:24:7d:3e:c7:78:c8:ce:
42:f1:53:8b:2b:a4:31:cd:53:63:b8:b6:c6:85:96:
4d:19:24:53:a0:b6:e3:da:ab:f2:3a:16:f6:de:55:
08:73:5b:3e:36:d7:47:ba:ea:9b:8d:96:62:df:c7:
64:6d:91:b4:42:ce:14:af:c1:59:61:20:70:e1:c7:
d7:bd:e6:57:e2:3b:b6:f4:d7:45:f0:bf:a5:bc:c4:
15:3e:0c:ab:28:fc:74:c2:fd:01:04:01:c1:27:63:
f4:81:46:97:47:b7:bc:dd:84:7a:f9:08:a9:ad:14:
1c:e2:4f:84:9f:ce:1e:be:00:bf:13:ed:c0:be:42:
91:fd:cb:cf:e3:b6:3d:31:54:00:ec:a3:4c:fa:68:
ea:df:18:d2:e4:59:4d:8e:24:9f:c5:ff:21:76:31:
14:93:20:b2:90:d7:81:b0:74:86:85:6f:1e:a1:e0:
33:1d:34:93:4f:12:3d:e5:f8:00:88:91:80:42:cc:
ab:c4:df:42:00:31:78:2e:3a:0a:88:b1:df:d9:29:
2b:07:ee:52:7d:69:64:65:e3:22:ff:70:e6:71:92:
47:78:c4:a0:ff:e5:1e:19:93:61:b5:cf:e0:ef:49:
fe:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:8F:4A:0F:A2:A7:0A:82:4A:4C:01:28:18:8A:1A:22:2E:92:26:9C
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/1I9KD6KnCoJKTAEoGIoaIi6SJpw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.116.0/24
45.86.3.0/24
45.128.130.0/23
46.149.174.0/24
46.174.192.0/21
62.204.32.0/24
178.212.78.0/24
185.253.2.0/24
188.64.140.0/24
188.93.136.0/24
195.96.141.0/24
212.18.98.0/24
212.60.6.0/24
212.107.24.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:40:dc:a6:bb:18:c5:1e:c5:70:df:1b:7e:14:2d:40:a1:17:
f9:fe:d7:0e:11:cd:06:ab:6a:61:56:4f:1a:bc:d7:d4:a3:78:
78:f7:7f:b7:fc:09:ea:99:2c:6a:7f:83:b8:7c:13:7b:30:6a:
b0:62:34:46:2a:3b:33:1a:2a:fc:20:95:33:76:52:d0:26:48:
ac:f6:8d:c9:53:9c:68:1a:d7:7e:7f:c4:b7:bb:3a:b8:8c:db:
a4:56:22:32:19:ae:98:46:8a:0f:c8:5a:60:56:b6:fa:c9:54:
45:4b:72:c2:44:bf:df:b3:56:01:02:4b:38:2b:fe:73:06:41:
3b:a1:46:43:a9:6f:b9:76:6a:ef:4b:74:5d:29:f8:e5:76:09:
45:c8:99:c8:55:10:0e:24:d9:47:41:2a:5e:9e:70:4d:e5:4d:
fc:08:8e:92:19:ba:13:7b:3f:7b:d6:25:f4:7d:20:9c:ec:9b:
89:40:6b:f2:96:c4:30:43:da:51:88:9b:d5:be:1a:68:d6:4a:
76:b0:53:fd:14:e6:6f:28:3b:d8:8c:fb:f3:47:ac:72:52:bb:
3f:5e:76:f1:b8:c9:a7:a7:a3:50:03:d8:af:7f:e0:0a:eb:ad:
98:05:d4:16:9c:80:c8:a0:01:14:8f:e6:e0:e8:b5:e0:2b:63:
50:e5:c0:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 14 22:47:11 2024 by rpki-client on console-ams.rpki-client.org