Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/z9FaI0654KuPleQ3BI9tJ07zla8.roa
File: z9FaI0654KuPleQ3BI9tJ07zla8.roa (raw, json)
Hash identifier: m8FBOGoVgI6MPXiWtD08vdVNLUGZwZrFJ2uing24DJo=
Subject key identifier: CF:D1:5A:23:4E:B9:E0:AB:8F:95:E4:37:04:8F:6D:27:4E:F3:95:AF
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 0191526CFEA0A5DD790A26B4D7240645497E
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/z9FaI0654KuPleQ3BI9tJ07zla8.roa
Signing time: Wed 14 Aug 2024 19:46:00 +0000
ROA not before: Wed 14 Aug 2024 19:46:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49505
IP address blocks: 5.172.179.0/24 maxlen: 24
31.41.253.0/24 maxlen: 24
45.10.248.0/22 maxlen: 22
45.87.255.0/24 maxlen: 24
45.94.228.0/22 maxlen: 22
45.95.28.0/24 maxlen: 24
45.95.148.0/22 maxlen: 22
45.128.129.0/24 maxlen: 24
45.129.4.0/22 maxlen: 22
45.131.160.0/24 maxlen: 24
45.131.161.0/24 maxlen: 24
45.142.254.0/24 maxlen: 24
88.151.11.0/24 maxlen: 24
91.190.158.0/24 maxlen: 24
93.190.123.0/24 maxlen: 24
94.154.188.0/24 maxlen: 24
94.154.189.0/24 maxlen: 24
94.154.191.0/24 maxlen: 24
176.116.17.0/24 maxlen: 24
176.126.98.0/24 maxlen: 24
176.126.102.0/24 maxlen: 24
185.222.214.0/24 maxlen: 24
193.187.106.0/24 maxlen: 24
193.201.9.0/24 maxlen: 24
194.104.232.0/24 maxlen: 24
212.60.7.0/24 maxlen: 24
217.8.117.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 21 Aug 2024 18:11:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:52:6c:fe:a0:a5:dd:79:0a:26:b4:d7:24:06:45:49:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Aug 14 19:46:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cfd15a234eb9e0ab8f95e437048f6d274ef395af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:40:ea:60:f3:49:eb:f7:58:77:65:df:4b:40:
35:76:8c:5c:c5:13:e1:9f:e0:f9:fa:7c:95:b3:39:
d2:04:09:39:4f:39:4f:a2:2d:aa:c3:31:9e:f2:9a:
0e:f8:e1:7b:07:47:2a:b6:1d:c0:5b:2d:16:ab:34:
2d:ad:f2:be:8a:38:8b:8a:ae:28:06:f2:ff:fb:e1:
4f:11:81:c0:4b:3b:48:bb:51:03:f1:de:da:b9:94:
30:a1:9e:2f:b9:2d:bd:ca:41:cd:fc:0d:b0:f7:fd:
71:fb:49:9a:9d:5e:67:ce:31:3a:79:8e:f1:0b:c8:
4f:0c:be:6f:1a:f4:f4:c4:d4:94:77:5c:98:7a:44:
35:c3:89:d7:21:ec:e6:34:91:19:e9:1c:b1:be:03:
ae:11:34:07:c9:3c:fc:35:09:ac:2a:c0:85:d2:80:
cc:ec:75:1a:e5:2b:85:28:86:b3:aa:61:3e:65:8a:
ec:d0:66:14:65:71:65:c9:de:c6:ba:72:a1:b8:47:
ff:55:31:28:4d:fa:97:bc:af:15:40:8a:14:d3:80:
0a:92:c5:49:b7:56:da:0b:3e:fb:d3:f9:4b:28:35:
29:3d:da:80:a4:df:f5:ff:ec:36:a2:61:e8:c4:53:
75:07:2e:0c:c5:b4:5d:96:c3:e5:1b:e6:e2:03:e0:
e2:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:D1:5A:23:4E:B9:E0:AB:8F:95:E4:37:04:8F:6D:27:4E:F3:95:AF
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/z9FaI0654KuPleQ3BI9tJ07zla8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.179.0/24
31.41.253.0/24
45.10.248.0/22
45.87.255.0/24
45.94.228.0/22
45.95.28.0/24
45.95.148.0/22
45.128.129.0/24
45.129.4.0/22
45.131.160.0/23
45.142.254.0/24
88.151.11.0/24
91.190.158.0/24
93.190.123.0/24
94.154.188.0/23
94.154.191.0/24
176.116.17.0/24
176.126.98.0/24
176.126.102.0/24
185.222.214.0/24
193.187.106.0/24
193.201.9.0/24
194.104.232.0/24
212.60.7.0/24
217.8.117.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:37:af:4c:e9:ec:55:45:11:83:d0:8c:16:30:74:c1:c6:84:
1e:ab:95:06:a8:22:b1:7d:e0:99:c8:8a:48:0f:9b:a6:87:cb:
0f:d2:89:f0:fa:2d:dd:d8:8e:d1:5c:20:6b:f6:01:e8:53:3a:
9c:71:8b:d7:74:82:cc:f1:1d:c7:38:96:76:ee:fb:3c:5d:d9:
9a:e9:90:13:ec:fc:39:87:de:50:e7:71:bb:7d:eb:5e:81:3c:
42:c3:51:20:44:0b:91:cc:ba:38:a7:63:af:0d:aa:2a:fe:d5:
17:10:01:d7:5e:b4:d3:9b:32:41:b0:4c:3a:42:1e:41:b5:13:
f4:96:3c:d3:e0:32:47:a9:7e:94:84:72:97:4a:01:c3:d5:d9:
57:f4:49:bb:8d:33:f6:96:47:5b:c4:65:26:e4:f0:6e:30:52:
5a:c0:ae:34:e2:cb:37:44:85:65:21:17:03:33:6d:7c:a0:ab:
d8:70:48:5c:45:33:48:4b:77:f6:70:8c:19:66:ee:a6:1e:0e:
0b:15:11:85:30:b6:b4:28:85:00:8d:f4:e2:7f:95:0b:51:ac:
e6:1a:c4:87:e3:bf:b8:02:0a:a0:45:ff:de:bd:0f:b3:d5:b0:
bc:57:17:96:b4:dd:c0:12:86:0d:ec:59:a1:f2:7d:a8:84:7a:
eb:38:a2:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 21 23:31:40 2024 by rpki-client on console-ams.rpki-client.org