Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/sf8f0_6BGcGxKEu4J4BinZ2Zx2g.roa
File: sf8f0_6BGcGxKEu4J4BinZ2Zx2g.roa (raw, json)
Hash identifier: cgltGShA40Mdr1elm8TM2X3QpEAe3CV4B8hRIjcf7io=
Subject key identifier: B1:FF:1F:D3:FE:81:19:C1:B1:28:4B:B8:27:80:62:9D:9D:99:C7:68
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 018FE35BEACFBE16C66D5F723B9205DA98E4
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/sf8f0_6BGcGxKEu4J4BinZ2Zx2g.roa
Signing time: Tue 04 Jun 2024 13:06:42 +0000
ROA not before: Tue 04 Jun 2024 13:06:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49505
IP address blocks: 5.172.179.0/24 maxlen: 24
31.41.253.0/24 maxlen: 24
45.87.255.0/24 maxlen: 24
45.95.28.0/24 maxlen: 24
45.95.148.0/22 maxlen: 22
45.128.129.0/24 maxlen: 24
45.131.160.0/24 maxlen: 24
45.131.161.0/24 maxlen: 24
91.190.158.0/24 maxlen: 24
94.154.188.0/24 maxlen: 24
94.154.189.0/24 maxlen: 24
94.154.191.0/24 maxlen: 24
176.116.17.0/24 maxlen: 24
176.126.102.0/24 maxlen: 24
185.222.214.0/24 maxlen: 24
193.187.106.0/24 maxlen: 24
193.201.9.0/24 maxlen: 24
194.104.232.0/24 maxlen: 24
212.60.7.0/24 maxlen: 24
217.8.117.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 07 Jun 2024 12:21:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e3:5b:ea:cf:be:16:c6:6d:5f:72:3b:92:05:da:98:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Jun 4 13:06:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b1ff1fd3fe8119c1b1284bb82780629d9d99c768
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:87:d1:37:fe:f2:73:36:66:47:43:68:4b:b6:
c5:38:89:69:9d:71:c3:f8:5f:d4:0e:64:d9:a1:35:
92:4a:c7:1f:2b:f4:9b:d4:3f:31:7d:cf:33:67:6b:
ba:0f:15:eb:d9:68:7c:73:89:27:da:f5:02:34:9b:
cc:04:67:1d:27:8a:9f:75:cb:eb:94:3a:7e:1e:f6:
d9:6a:69:ca:f8:8a:50:97:15:bd:44:05:a8:2a:e4:
8a:c5:aa:9e:51:73:5d:c4:ce:f2:45:e3:35:cf:e5:
57:9c:08:a1:21:15:84:ec:32:4a:62:c7:a8:3a:00:
0e:44:76:ba:60:d5:0c:1d:c8:76:e3:3a:60:29:86:
66:fd:8a:88:b4:2f:17:21:17:6a:a7:c4:51:de:c6:
73:9d:e4:c8:22:03:c7:d0:83:6a:db:a1:a3:8e:db:
13:2d:3a:c0:cc:70:74:ae:cd:5e:e8:85:bd:10:60:
01:6f:13:ef:a8:6a:6b:dc:e5:68:b6:da:ed:0f:85:
df:e4:ad:83:07:73:e7:75:e8:a1:4d:d6:97:72:bc:
04:4b:fd:29:d8:80:94:8d:d0:28:c0:ae:5a:9c:fc:
1a:45:42:8b:fe:c6:38:0c:c3:8c:5b:fe:d8:dc:3b:
63:a0:bc:6d:dc:68:bd:cb:8d:95:0d:2e:62:d1:30:
97:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:FF:1F:D3:FE:81:19:C1:B1:28:4B:B8:27:80:62:9D:9D:99:C7:68
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/sf8f0_6BGcGxKEu4J4BinZ2Zx2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.179.0/24
31.41.253.0/24
45.87.255.0/24
45.95.28.0/24
45.95.148.0/22
45.128.129.0/24
45.131.160.0/23
91.190.158.0/24
94.154.188.0/23
94.154.191.0/24
176.116.17.0/24
176.126.102.0/24
185.222.214.0/24
193.187.106.0/24
193.201.9.0/24
194.104.232.0/24
212.60.7.0/24
217.8.117.0/24
Signature Algorithm: sha256WithRSAEncryption
55:d1:81:05:99:7d:2e:e8:90:04:af:99:fe:3a:16:45:78:12:
12:72:17:0b:53:01:37:c0:f8:d9:1e:66:6d:d4:09:da:c3:6c:
95:42:44:63:f3:fa:36:e8:f3:9f:c4:bc:0f:ad:49:bc:45:31:
ce:52:a6:92:61:00:ba:50:c5:ec:92:fe:b3:e6:d4:b0:94:59:
00:18:c2:92:d0:de:23:14:9c:69:d1:34:78:90:aa:70:fb:9c:
1c:51:b3:c8:4c:5d:b2:b9:67:e5:6c:e3:7e:5f:10:ed:52:5c:
ba:51:08:33:03:4f:74:e9:37:dd:b1:cf:69:fd:ca:b6:80:23:
c4:f6:79:e0:b4:32:7b:13:64:46:ec:81:b9:15:e7:87:52:00:
aa:72:ce:4a:77:47:64:c1:6c:7f:e7:d8:5a:26:99:34:91:85:
11:7e:41:24:97:f2:f1:8b:ba:fd:25:21:7a:f3:23:ff:3b:f5:
26:1b:d5:c5:6b:8a:6b:40:fd:f4:18:10:85:f2:70:e2:43:93:
bf:9a:ac:3a:c6:e3:e7:6a:42:56:f9:a4:5c:1e:1d:eb:37:07:
c2:34:7a:f9:d2:1d:dd:ca:3e:c3:a5:01:23:27:95:3f:09:b6:
cd:e4:7f:46:2d:a0:b8:2c:b6:d4:26:c5:24:ab:4a:4f:1b:d4:
5d:77:19:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 18:17:22 2024 by rpki-client on console-ams.rpki-client.org