Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/f92e2a-e1e4-487d-9acc-ed1f30cc1c57/1/x4TL9KkW122zJ2bMBZ-uKIV9JKk.roa
File: x4TL9KkW122zJ2bMBZ-uKIV9JKk.roa (raw, json)
Hash identifier: 7nTlKoLanZ88HaYgAu0d5EPW+Oh47bPr5nuUFGQXlFU=
Subject key identifier: C7:84:CB:F4:A9:16:D7:6D:B3:27:66:CC:05:9F:AE:28:85:7D:24:A9
Certificate issuer: /CN=8777b5b36f66e13c4388c9934da507856515d073
Certificate serial: 01856DE645C0F7DD3ED59275A32409495171
Authority key identifier: 87:77:B5:B3:6F:66:E1:3C:43:88:C9:93:4D:A5:07:85:65:15:D0:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3e1s29m4TxDiMmTTaUHhWUV0HM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/f92e2a-e1e4-487d-9acc-ed1f30cc1c57/1/x4TL9KkW122zJ2bMBZ-uKIV9JKk.roa
Signing time: Sun 01 Jan 2023 15:14:45 +0000
ROA not before: Sun 01 Jan 2023 15:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48844
IP address blocks: 37.19.15.128/29 maxlen: 29
5.149.139.0/24 maxlen: 24
37.19.13.64/26 maxlen: 26
2a00:1528:aa00:d000::/56 maxlen: 56
2a00:1528:aa00:c000::/56 maxlen: 56
2a00:1528:aa00::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:e6:45:c0:f7:dd:3e:d5:92:75:a3:24:09:49:51:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8777b5b36f66e13c4388c9934da507856515d073
Validity
Not Before: Jan 1 15:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c784cbf4a916d76db32766cc059fae28857d24a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:32:b6:48:70:4e:6f:f2:ac:0c:43:60:3e:cf:
3a:ec:8d:40:73:cc:eb:75:1b:c3:a9:ab:86:72:9b:
5a:52:6c:94:97:76:d3:ab:6c:42:4a:86:97:2d:80:
58:f1:72:9d:f3:8c:cd:f9:8a:41:62:2c:24:88:59:
cf:8f:63:3a:da:cf:ba:45:5c:6e:6d:b1:7e:dc:e9:
5d:95:01:3c:2e:71:30:07:3c:f3:ca:a1:84:96:6f:
8c:3a:f6:36:2e:22:43:e4:a1:00:bf:ab:fc:21:ec:
63:08:4b:79:3f:45:d4:8f:90:98:bf:5f:0f:b8:17:
fc:07:0e:6e:9d:17:88:dc:02:ad:4c:a0:a8:ca:ad:
56:07:34:41:3d:3c:3d:1e:c8:c0:3e:f7:1c:84:de:
58:8f:6b:5d:f3:65:74:a9:03:f3:4b:21:f4:ff:7a:
49:2a:19:9c:fb:ac:c5:db:23:87:14:ae:84:82:a1:
df:de:43:eb:63:cd:28:4f:b3:a2:ff:3d:e4:ed:b1:
dc:b2:7c:8b:d7:79:11:20:4e:a3:36:0f:2e:7f:86:
c4:2f:a3:58:6c:4d:8c:08:14:df:35:e3:9e:89:98:
5b:50:86:a6:05:09:a7:31:35:26:26:72:7e:5a:4a:
c6:0d:ab:9b:f3:ef:4b:f2:e4:ab:9c:32:2f:0b:7f:
db:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:84:CB:F4:A9:16:D7:6D:B3:27:66:CC:05:9F:AE:28:85:7D:24:A9
X509v3 Authority Key Identifier:
keyid:87:77:B5:B3:6F:66:E1:3C:43:88:C9:93:4D:A5:07:85:65:15:D0:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3e1s29m4TxDiMmTTaUHhWUV0HM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/f92e2a-e1e4-487d-9acc-ed1f30cc1c57/1/x4TL9KkW122zJ2bMBZ-uKIV9JKk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/f92e2a-e1e4-487d-9acc-ed1f30cc1c57/1/h3e1s29m4TxDiMmTTaUHhWUV0HM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.149.139.0/24
37.19.13.64/26
37.19.15.128/29
IPv6:
2a00:1528:aa00::/48
Signature Algorithm: sha256WithRSAEncryption
4b:45:38:54:4d:e5:db:ed:b6:76:c6:fc:10:73:d2:df:13:7e:
b8:16:7e:a3:4d:46:a7:35:45:c5:0e:c3:0b:42:40:5f:43:43:
96:3a:7d:79:2a:1b:69:68:a7:83:73:4f:0b:20:f4:9e:d0:6f:
7c:5b:56:87:5f:d2:09:eb:f6:eb:59:31:0a:27:6b:f2:1b:81:
15:59:c6:95:4f:6b:87:a5:f7:54:4c:f4:75:33:c7:fb:de:9b:
94:53:8d:25:70:f1:81:7d:a9:ba:df:42:2a:e7:5a:04:74:13:
dd:50:33:7a:b4:a8:20:f6:6e:b5:b9:fa:b1:ab:c1:d2:b9:52:
d5:a0:e9:fa:dc:0a:2c:53:05:88:2c:c8:e2:fd:a5:64:3a:cd:
8d:69:a7:ee:5d:cf:83:74:ad:f5:d3:98:b2:60:7c:6f:7b:e3:
4f:4e:d7:16:40:ef:dd:7e:b4:2d:06:2f:a0:76:b1:f2:10:66:
05:2c:70:dc:1d:c9:c8:4d:4c:21:35:ca:ac:94:c9:9e:47:55:
3c:87:ee:51:80:a2:09:f4:c3:51:68:8b:3f:da:9e:c5:e9:31:
de:9a:da:40:ea:df:43:6d:37:ee:79:7c:3a:ea:9b:54:76:52:
bc:80:9b:d3:83:64:1f:04:16:9c:0e:49:07:1d:ad:dd:01:54:
62:20:04:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:29 2024 by rpki-client on console-fra.rpki-client.org