Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/vEEbtCma0rJTTWXM1j52ObKx_HA.roa
File: vEEbtCma0rJTTWXM1j52ObKx_HA.roa (raw, json)
Hash identifier: JVT/HafxuFpU5zW8DSJ5QNdPrvh2+7fGtPZHbn0ZeKg=
Subject key identifier: BC:41:1B:B4:29:9A:D2:B2:53:4D:65:CC:D6:3E:76:39:B2:B1:FC:70
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 0191A208FE5871860200F8722ED6FC2B5621
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/vEEbtCma0rJTTWXM1j52ObKx_HA.roa
Signing time: Fri 30 Aug 2024 06:46:23 +0000
ROA not before: Fri 30 Aug 2024 06:46:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212667
IP address blocks: 5.182.116.0/24 maxlen: 24
45.86.3.0/24 maxlen: 24
45.90.44.0/24 maxlen: 24
45.90.47.0/24 maxlen: 24
45.128.130.0/23 maxlen: 23
46.149.174.0/24 maxlen: 24
46.174.192.0/24 maxlen: 24
46.174.193.0/24 maxlen: 24
46.174.194.0/24 maxlen: 24
46.174.195.0/24 maxlen: 24
46.174.196.0/24 maxlen: 24
46.174.197.0/24 maxlen: 24
46.174.198.0/24 maxlen: 24
46.174.199.0/24 maxlen: 24
62.204.32.0/24 maxlen: 24
178.212.78.0/24 maxlen: 24
185.253.2.0/24 maxlen: 24
188.64.140.0/24 maxlen: 24
188.93.136.0/24 maxlen: 24
195.96.141.0/24 maxlen: 24
212.18.98.0/24 maxlen: 24
212.52.13.0/24 maxlen: 24
212.60.6.0/24 maxlen: 24
212.107.24.0/24 maxlen: 24
212.115.48.0/24 maxlen: 24
212.115.50.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 30 Aug 2024 10:46:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:a2:08:fe:58:71:86:02:00:f8:72:2e:d6:fc:2b:56:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Aug 30 06:46:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bc411bb4299ad2b2534d65ccd63e7639b2b1fc70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:02:07:d2:1f:57:04:67:8f:c1:42:55:d4:8e:
78:e8:1e:59:ae:ac:67:25:d8:b8:48:6b:b4:d6:36:
fe:38:61:47:0b:7b:6a:36:3b:0b:aa:12:5b:e6:5c:
86:2c:bc:f1:fb:10:5b:42:19:d7:75:08:59:d1:42:
73:c3:11:cc:2e:09:bd:96:71:ab:8e:0d:0f:bc:f1:
49:2b:95:0b:3c:11:1c:a9:ce:79:8e:11:2b:4d:a6:
4d:9d:10:70:60:d2:92:26:e7:81:bc:ad:20:2a:0a:
ce:ec:6d:2e:64:a9:c6:61:39:12:84:10:05:c4:c8:
c1:8d:33:f4:57:2f:7c:fd:49:2d:a9:b7:00:04:f6:
63:b4:a2:34:df:c5:8c:59:40:fb:e3:aa:bc:40:9f:
8b:c1:ef:eb:14:11:59:45:36:85:a6:6c:94:ad:c4:
6c:89:38:55:fe:0d:75:72:e9:10:6c:16:06:0e:c9:
47:bc:ac:e6:6f:83:20:a9:d3:8c:7d:b3:f9:49:da:
33:6a:17:08:43:54:97:e6:75:d4:b6:f6:97:b8:78:
12:0d:3e:68:32:ec:63:89:d6:f3:f8:20:f1:15:2d:
b6:54:30:4d:5f:0d:d8:5f:cd:58:c3:0c:6b:8c:6f:
5c:2b:fe:2d:34:e2:55:32:e9:50:66:a7:b2:29:2a:
3b:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:41:1B:B4:29:9A:D2:B2:53:4D:65:CC:D6:3E:76:39:B2:B1:FC:70
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/vEEbtCma0rJTTWXM1j52ObKx_HA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.116.0/24
45.86.3.0/24
45.90.44.0/24
45.90.47.0/24
45.128.130.0/23
46.149.174.0/24
46.174.192.0/21
62.204.32.0/24
178.212.78.0/24
185.253.2.0/24
188.64.140.0/24
188.93.136.0/24
195.96.141.0/24
212.18.98.0/24
212.52.13.0/24
212.60.6.0/24
212.107.24.0/24
212.115.48.0/24
212.115.50.0/24
Signature Algorithm: sha256WithRSAEncryption
92:03:17:53:da:ca:2d:7f:9c:9d:0b:fb:05:0e:64:f2:e6:10:
1b:5e:a6:de:10:7d:f5:5c:21:4c:4e:ca:ac:c4:b3:4d:e0:dc:
98:9c:34:13:9b:a0:4a:88:c4:2e:3c:8b:79:76:71:0b:88:e5:
5b:ef:24:bc:b5:8d:84:c3:6b:fd:cb:a8:ea:a4:63:62:e5:da:
33:b0:a1:39:90:fd:c4:c1:32:92:ea:6f:24:ad:5c:cb:03:86:
66:89:69:41:8b:8e:63:3a:3d:8e:b5:bf:78:49:80:3c:f2:e9:
59:ec:cf:81:4d:aa:20:2b:1b:c4:8a:72:72:8f:9b:f5:26:3e:
d4:80:10:db:59:fb:ef:5f:ca:4c:96:dd:7a:af:32:34:46:20:
7f:06:9f:c7:17:37:27:3a:40:b2:0e:f2:8b:05:e6:d6:9d:44:
74:f1:b0:fa:58:03:17:43:39:f8:ec:6d:39:75:b4:46:a3:62:
40:c6:b2:dd:bb:15:03:b1:27:07:22:10:3e:6a:0b:8c:b5:0d:
31:89:73:cf:45:13:8a:39:cc:36:7d:87:c5:59:50:3e:e4:6b:
78:c8:34:29:db:68:c7:d6:a8:f8:2b:5f:08:bb:14:d7:83:59:
0d:93:70:e5:63:8d:a5:3d:53:52:b7:39:08:d5:e7:4a:b7:3c:
6a:e5:2a:f1
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Aug 30 12:26:51 2024 by rpki-client on console-fra.rpki-client.org