Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/HPye49o5jPhu_3Q_M2tncvE1K_0.roa
File: HPye49o5jPhu_3Q_M2tncvE1K_0.roa (raw, json)
Hash identifier: oqk8YDF1bfxJ+Pvm8dV1HylwXABxQdlxKmmjSzwTgvs=
Subject key identifier: 1C:FC:9E:E3:DA:39:8C:F8:6E:FF:74:3F:33:6B:67:72:F1:35:2B:FD
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 019228126C48E0A08684DB14914D398D3228
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/HPye49o5jPhu_3Q_M2tncvE1K_0.roa
Signing time: Wed 25 Sep 2024 07:25:48 +0000
ROA not before: Wed 25 Sep 2024 07:25:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58061
IP address blocks: 5.182.117.0/24 maxlen: 24
31.40.250.0/24 maxlen: 24
31.222.230.0/24 maxlen: 24
37.72.128.0/24 maxlen: 24
45.129.197.0/24 maxlen: 24
62.204.52.0/24 maxlen: 24
77.83.193.0/24 maxlen: 24
78.142.238.0/24 maxlen: 24
91.212.103.0/24 maxlen: 24
91.242.234.0/24 maxlen: 24
130.255.172.0/24 maxlen: 24
130.255.175.0/24 maxlen: 24
185.251.22.0/24 maxlen: 24
185.253.4.0/24 maxlen: 24
193.17.88.0/24 maxlen: 24
193.42.119.0/24 maxlen: 24
193.201.10.0/24 maxlen: 24
194.69.164.0/24 maxlen: 24
195.64.127.0/24 maxlen: 24
195.96.159.0/24 maxlen: 24
212.24.120.0/24 maxlen: 24
212.52.18.0/24 maxlen: 24
212.107.26.0/24 maxlen: 24
213.109.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 09:48:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:28:12:6c:48:e0:a0:86:84:db:14:91:4d:39:8d:32:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Sep 25 07:25:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1cfc9ee3da398cf86eff743f336b6772f1352bfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:38:25:7e:d1:0c:fd:e2:fe:78:ed:0f:af:e3:
8f:1b:bc:a4:d0:78:34:24:49:88:b2:cf:f6:ff:e9:
80:90:da:bf:e3:d9:f8:a8:c8:f2:c8:d0:d5:ee:f1:
d8:2d:06:d5:41:f2:2f:cf:56:5d:93:5f:fa:75:24:
2b:8d:29:57:39:8b:78:b2:92:a8:20:bc:93:03:e9:
ec:8f:e6:de:f5:55:a9:61:92:1f:7d:d0:c1:f3:ed:
07:4f:d5:ae:24:04:01:1c:9c:ac:60:c4:cf:9d:44:
e7:9f:2f:13:fa:c9:f0:f3:df:81:f3:7c:fb:6f:8f:
cb:04:b2:c7:cb:1e:ae:56:dd:28:d2:95:a9:9c:bb:
5a:5c:db:9f:bd:d1:7a:1e:26:3e:12:39:48:e2:c4:
cc:d9:84:44:d4:c1:05:5f:5b:10:a9:85:80:d2:89:
20:8a:6c:c8:1d:77:3c:56:69:05:b3:1d:ab:4c:86:
05:87:fe:94:63:61:fe:02:41:ef:05:4a:a7:8f:e6:
33:af:96:55:c4:15:6e:02:26:95:d3:fe:58:ac:b6:
72:4f:8e:6e:f5:4f:fa:58:33:2b:7f:02:ae:b4:3b:
72:46:bd:e4:04:99:66:66:2c:56:f1:3a:dd:41:6a:
5c:f7:ac:e4:37:e4:6a:1e:4c:b6:a9:61:14:fa:9d:
48:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:FC:9E:E3:DA:39:8C:F8:6E:FF:74:3F:33:6B:67:72:F1:35:2B:FD
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/HPye49o5jPhu_3Q_M2tncvE1K_0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.117.0/24
31.40.250.0/24
31.222.230.0/24
37.72.128.0/24
45.129.197.0/24
62.204.52.0/24
77.83.193.0/24
78.142.238.0/24
91.212.103.0/24
91.242.234.0/24
130.255.172.0/24
130.255.175.0/24
185.251.22.0/24
185.253.4.0/24
193.17.88.0/24
193.42.119.0/24
193.201.10.0/24
194.69.164.0/24
195.64.127.0/24
195.96.159.0/24
212.24.120.0/24
212.52.18.0/24
212.107.26.0/24
213.109.153.0/24
Signature Algorithm: sha256WithRSAEncryption
44:30:44:52:bc:bc:9a:b1:e0:a9:a4:87:f2:a6:8a:10:03:4d:
a7:b3:78:44:9d:17:e7:16:7e:0a:8e:ef:ce:f0:54:6f:c9:4f:
e6:21:e4:e4:07:9e:e6:39:71:71:39:e2:c9:75:45:7f:d3:06:
33:aa:50:f7:99:ff:68:96:17:f9:87:c2:f8:40:44:46:22:d9:
2c:b5:5e:ed:cc:16:5d:2a:df:2e:33:64:92:3c:97:59:07:ea:
c7:17:82:ff:63:4d:04:f6:3f:8b:51:fd:da:c3:a8:1d:63:c2:
25:2c:a3:ca:18:b7:51:90:8e:b2:0c:27:1a:8a:09:c9:45:c7:
41:28:bf:6d:b9:ed:9a:fe:4a:ce:9c:0e:fc:74:ca:8a:79:48:
49:dd:c5:ae:6a:c7:ba:24:9f:08:32:5d:c4:3e:36:20:8b:ad:
f8:57:6f:f3:3c:f9:84:c4:da:47:41:29:bd:3d:c0:01:91:5b:
aa:17:63:b6:03:dc:8b:1a:2b:47:9c:03:62:66:2e:bc:47:72:
07:69:74:29:23:d3:dc:cb:6a:23:bb:ad:d3:50:c0:fc:fe:3d:
b7:32:fd:d8:00:79:12:8f:a4:97:4c:6f:89:47:60:54:2f:00:
5f:fc:f5:ba:a7:d6:2f:ae:17:fc:00:30:9d:63:a1:0b:ac:c9:
f6:6d:ab:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:30:33 2025 by rpki-client