Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/dLcBXmaVOkFcg6azMxjBjM-MkZM.roa
File: dLcBXmaVOkFcg6azMxjBjM-MkZM.roa (raw, json)
Hash identifier: ZUEZKl+jKxlYtbtwdCpI7bEryzS7JTVjFBDCabhWxVs=
Subject key identifier: 74:B7:01:5E:66:95:3A:41:5C:83:A6:B3:33:18:C1:8C:CF:8C:91:93
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 018EE357851A7809176CB25373D28265F747
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/dLcBXmaVOkFcg6azMxjBjM-MkZM.roa
Signing time: Mon 15 Apr 2024 19:59:07 +0000
ROA not before: Mon 15 Apr 2024 19:59:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49505
IP address blocks: 5.172.179.0/24 maxlen: 24
31.41.253.0/24 maxlen: 24
45.87.255.0/24 maxlen: 24
45.95.28.0/24 maxlen: 24
45.128.129.0/24 maxlen: 24
45.131.160.0/24 maxlen: 24
45.131.161.0/24 maxlen: 24
91.190.158.0/24 maxlen: 24
94.154.188.0/24 maxlen: 24
94.154.189.0/24 maxlen: 24
94.154.191.0/24 maxlen: 24
176.116.17.0/24 maxlen: 24
176.126.102.0/24 maxlen: 24
185.222.214.0/24 maxlen: 24
193.187.106.0/24 maxlen: 24
193.201.9.0/24 maxlen: 24
194.104.232.0/24 maxlen: 24
212.60.7.0/24 maxlen: 24
217.8.117.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 04 Jun 2024 13:06:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e3:57:85:1a:78:09:17:6c:b2:53:73:d2:82:65:f7:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Apr 15 19:59:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=74b7015e66953a415c83a6b33318c18ccf8c9193
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:65:41:63:fa:95:cb:ac:b1:90:7e:14:65:ad:
e0:39:26:39:7e:fe:7d:a6:db:f3:b0:dd:67:53:ff:
7c:4e:04:2a:5b:d6:c9:ea:ca:07:6a:8b:82:5b:91:
63:c4:2e:38:2b:e5:fb:ce:d6:40:88:28:1d:5f:0d:
61:ae:3d:65:31:63:56:08:1e:2b:e8:cc:76:d7:2c:
b0:58:cf:de:f7:98:8d:73:b1:f5:e5:fc:3d:ae:b6:
ef:7a:96:19:c8:26:a2:41:79:b5:cf:6b:40:46:69:
27:79:a4:1b:a1:e9:ce:63:9b:bd:5b:81:24:2e:b4:
fe:3b:3c:6f:c0:2d:cf:c3:f0:9d:78:d8:4c:60:21:
4c:23:0b:9a:d6:70:a2:e8:9a:e6:a9:32:73:24:ed:
5c:22:a3:04:29:c9:a4:53:be:dd:c0:d1:ca:33:3c:
8e:5c:99:54:ee:3d:3d:85:23:7b:ae:90:43:1f:83:
28:f8:b6:08:30:a2:b1:df:35:29:bd:45:5a:4d:10:
af:c0:60:30:5c:03:78:31:94:89:3a:f7:fb:36:53:
6c:88:93:48:c1:c4:99:dd:0b:c4:69:f8:c4:3c:a5:
67:de:b4:66:8c:2e:95:6b:7a:78:6c:72:0c:d9:5d:
86:c1:7e:d3:5b:e5:0e:10:5d:24:0c:13:fa:34:3c:
6c:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:B7:01:5E:66:95:3A:41:5C:83:A6:B3:33:18:C1:8C:CF:8C:91:93
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/dLcBXmaVOkFcg6azMxjBjM-MkZM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.179.0/24
31.41.253.0/24
45.87.255.0/24
45.95.28.0/24
45.128.129.0/24
45.131.160.0/23
91.190.158.0/24
94.154.188.0/23
94.154.191.0/24
176.116.17.0/24
176.126.102.0/24
185.222.214.0/24
193.187.106.0/24
193.201.9.0/24
194.104.232.0/24
212.60.7.0/24
217.8.117.0/24
Signature Algorithm: sha256WithRSAEncryption
13:b3:bd:e7:91:ec:f4:3b:30:90:80:07:fc:20:11:7e:74:9e:
8c:2c:92:5b:a1:8f:f4:b7:69:24:cd:29:7d:b9:b4:91:5c:5c:
ed:25:9c:d5:aa:f2:bc:21:90:41:d4:68:55:ce:d2:47:e8:e2:
2e:ff:f8:e2:d3:a0:32:0c:4a:6c:a3:c0:58:fd:83:cd:cb:cf:
9d:33:0b:8a:9d:9c:20:80:26:03:69:5e:3f:5e:20:da:22:50:
b4:c1:05:73:b1:a2:be:3e:d8:4d:c5:84:89:5e:cd:49:e0:73:
4f:41:15:30:d1:2d:73:f2:22:a6:b6:1a:4a:06:b3:0f:a8:78:
74:98:41:8e:53:a3:36:00:89:b4:0b:0d:dc:94:82:69:a4:4c:
46:ac:ff:74:9c:22:a5:8d:9f:ba:be:76:fa:93:2d:68:af:f3:
4f:92:c9:68:70:80:f2:ce:44:22:04:98:b1:8a:28:4f:99:ec:
31:7e:eb:5b:cc:c4:76:ec:81:f3:f3:ee:3a:59:09:6c:2d:9d:
04:a0:43:52:da:e6:48:e5:81:65:9c:f5:93:6c:0b:d2:f1:9b:
ae:a1:5b:93:26:fa:02:52:21:40:85:40:38:b5:bb:89:c4:61:
41:60:06:98:9e:02:30:66:0c:20:cd:01:13:1b:a7:4c:be:a5:
20:23:fd:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:51 2024 by rpki-client on console-ams.rpki-client.org