Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/j-BnoGgCjR7Tu_Ic6V9ZicJyI6Y.roa
File: j-BnoGgCjR7Tu_Ic6V9ZicJyI6Y.roa (raw, json)
Hash identifier: zLw6IrH2sBQEBuYFdQPktBHpsOtkvTn1vZeCSSONhoA=
Subject key identifier: 8F:E0:67:A0:68:02:8D:1E:D3:BB:F2:1C:E9:5F:59:89:C2:72:23:A6
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 0191526D027411BCA5D5ACD03C4656682253
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/j-BnoGgCjR7Tu_Ic6V9ZicJyI6Y.roa
Signing time: Wed 14 Aug 2024 19:46:01 +0000
ROA not before: Wed 14 Aug 2024 19:46:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212667
IP address blocks: 5.182.116.0/24 maxlen: 24
45.86.3.0/24 maxlen: 24
45.128.130.0/23 maxlen: 23
46.149.174.0/24 maxlen: 24
46.174.192.0/24 maxlen: 24
46.174.193.0/24 maxlen: 24
46.174.194.0/24 maxlen: 24
46.174.195.0/24 maxlen: 24
46.174.196.0/24 maxlen: 24
46.174.197.0/24 maxlen: 24
46.174.198.0/24 maxlen: 24
46.174.199.0/24 maxlen: 24
62.204.32.0/24 maxlen: 24
178.212.78.0/24 maxlen: 24
185.253.2.0/24 maxlen: 24
188.64.140.0/24 maxlen: 24
188.93.136.0/24 maxlen: 24
195.96.141.0/24 maxlen: 24
212.18.98.0/24 maxlen: 24
212.52.13.0/24 maxlen: 24
212.60.6.0/24 maxlen: 24
212.107.24.0/24 maxlen: 24
212.115.48.0/24 maxlen: 24
212.115.50.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 30 Aug 2024 06:46:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:52:6d:02:74:11:bc:a5:d5:ac:d0:3c:46:56:68:22:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Aug 14 19:46:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8fe067a068028d1ed3bbf21ce95f5989c27223a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:cc:a1:4b:6d:d3:78:5d:c4:b6:ab:b8:32:6f:
96:b8:43:bd:2d:01:09:d1:d2:ad:fd:e8:20:0a:22:
51:46:09:e6:2c:49:79:5f:c4:53:68:c2:42:12:4b:
0b:08:45:30:ca:e0:43:74:37:88:14:7f:f0:c8:70:
5f:65:ee:32:f0:a6:a2:1b:e0:cd:8b:b8:a1:cc:e0:
2e:8e:17:78:d3:b1:c4:e4:dd:3f:0a:eb:55:3e:1a:
89:0a:41:ae:f3:5f:59:85:7e:e6:62:9c:f6:ed:50:
17:b5:17:bd:84:31:d0:d1:d9:12:99:92:0e:42:23:
d5:76:17:98:ed:b3:c1:2e:43:b6:53:6b:72:ad:40:
f5:b4:b2:37:bb:6b:e9:33:be:48:57:0f:be:b3:5a:
50:d6:cc:e0:db:b2:3f:f8:ab:af:c8:bf:63:77:25:
13:54:9c:61:79:91:c1:4e:bc:11:8a:d8:35:73:59:
ba:32:ae:c6:ca:6b:cf:86:73:12:6f:dc:d9:dd:26:
d8:24:c8:64:a1:b0:56:d1:3c:60:32:25:43:7d:8d:
f2:69:f9:7b:59:bb:9f:22:4c:05:6b:7e:8d:7d:50:
e0:4c:10:9d:f0:b3:f3:50:5c:1f:ce:d2:4d:50:2e:
6c:99:f6:c8:7c:8c:ea:85:99:b6:a0:b7:12:65:3e:
5d:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:E0:67:A0:68:02:8D:1E:D3:BB:F2:1C:E9:5F:59:89:C2:72:23:A6
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/j-BnoGgCjR7Tu_Ic6V9ZicJyI6Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.116.0/24
45.86.3.0/24
45.128.130.0/23
46.149.174.0/24
46.174.192.0/21
62.204.32.0/24
178.212.78.0/24
185.253.2.0/24
188.64.140.0/24
188.93.136.0/24
195.96.141.0/24
212.18.98.0/24
212.52.13.0/24
212.60.6.0/24
212.107.24.0/24
212.115.48.0/24
212.115.50.0/24
Signature Algorithm: sha256WithRSAEncryption
14:46:43:64:b8:da:ec:a8:fd:a7:dd:e5:04:3a:8b:2a:7d:60:
a9:86:53:fe:b3:2f:8d:ef:d5:5c:b7:88:1e:8a:be:27:bb:8c:
77:d2:ef:88:18:a3:b5:35:92:3f:3c:2d:e7:04:95:20:6a:10:
8b:2d:1b:b1:ce:f0:45:56:da:5a:81:d4:96:18:10:1d:ce:65:
f6:83:38:30:2c:8b:6e:d7:b8:7a:3a:75:08:dc:45:2b:2a:26:
7a:60:39:f6:af:3f:42:c0:2b:2a:bc:9b:77:02:2e:3b:83:5e:
b2:5a:32:83:a7:22:bb:09:e1:c6:27:a0:5a:80:8e:3f:ac:91:
c0:52:3b:d6:32:c4:a2:fd:77:d0:bc:b1:a7:80:46:cd:da:49:
92:91:0a:b8:eb:4c:21:4f:3a:45:60:7a:62:f8:c0:b7:0f:4a:
3f:fe:a2:1c:0e:eb:b3:b2:4c:bd:b4:c5:15:3a:91:09:c4:a9:
7e:76:ff:1e:e7:59:c3:2d:02:b2:04:1b:8b:16:bc:aa:46:1e:
7a:eb:43:26:73:1d:14:02:b6:11:f1:40:17:04:53:4e:f8:04:
68:d0:cd:bc:e2:f3:5a:41:2a:a9:eb:b7:8c:37:a0:35:d2:4f:
f3:3a:76:2f:0b:03:71:05:8f:50:07:06:81:7d:eb:a3:67:12:
a6:6d:1e:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 30 09:04:40 2024 by rpki-client on console-fra.rpki-client.org