Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/cdsoUFAdJgWL_j4rHsZ2vMBUeI8.roa
File: cdsoUFAdJgWL_j4rHsZ2vMBUeI8.roa (raw, json)
Hash identifier: x6nJ8K6G0r9cKksDQfXKr3zsOqSkQ6B1qQIpitYM+k4=
Subject key identifier: 71:DB:28:50:50:1D:26:05:8B:FE:3E:2B:1E:C6:76:BC:C0:54:78:8F
Certificate issuer: /CN=d3e97033a36aa9bcc0c2f167e620d7ca1493cbea
Certificate serial: 019270ADD14D29B4D2ED3722C3A7C971BBB5
Authority key identifier: D3:E9:70:33:A3:6A:A9:BC:C0:C2:F1:67:E6:20:D7:CA:14:93:CB:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0-lwM6NqqbzAwvFn5iDXyhSTy-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/cdsoUFAdJgWL_j4rHsZ2vMBUeI8.roa
Signing time: Wed 09 Oct 2024 09:48:12 +0000
ROA not before: Wed 09 Oct 2024 09:48:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49037
IP address blocks: 46.226.160.0/21 maxlen: 32
80.72.16.0/21 maxlen: 32
80.72.24.0/22 maxlen: 32
85.198.120.0/21 maxlen: 32
89.169.52.0/22 maxlen: 32
92.118.72.0/22 maxlen: 32
92.246.132.0/22 maxlen: 32
92.246.136.0/21 maxlen: 32
93.185.144.0/20 maxlen: 32
94.141.100.0/22 maxlen: 32
95.174.96.0/19 maxlen: 32
178.212.139.0/24 maxlen: 32
185.9.184.0/22 maxlen: 32
185.136.32.0/22 maxlen: 32
185.230.240.0/22 maxlen: 32
185.230.241.0/24 maxlen: 24
185.230.242.0/24 maxlen: 24
213.108.20.0/22 maxlen: 32
217.144.176.0/20 maxlen: 32
2a00:8740::/32 maxlen: 128
2a0b:1c40::/29 maxlen: 128
2a12:3280::/32 maxlen: 128
Validation: Failed, certificate revoked on Thu 02 Jan 2025 03:48:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:70:ad:d1:4d:29:b4:d2:ed:37:22:c3:a7:c9:71:bb:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3e97033a36aa9bcc0c2f167e620d7ca1493cbea
Validity
Not Before: Oct 9 09:48:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=71db2850501d26058bfe3e2b1ec676bcc054788f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:35:8b:84:91:0e:18:5a:ad:26:81:99:57:bc:
b4:c3:86:12:b1:08:1d:92:b9:bb:5b:bb:e7:34:2a:
6c:04:88:c7:27:d1:fa:78:d4:d5:23:9e:ef:85:d2:
66:55:16:f8:65:90:75:c3:82:a7:1a:38:e9:25:1b:
d1:95:1a:7f:02:b5:f5:6e:5b:fe:7e:0b:fc:7f:79:
5b:81:d7:cf:26:01:cd:0a:8b:05:18:62:75:6b:3d:
e3:c9:6e:86:fd:73:d9:70:a5:2a:48:f9:d5:91:14:
ab:ca:c3:7c:d3:dd:35:97:96:01:8e:ab:57:92:29:
28:b9:f3:9f:5b:d4:fe:b3:0a:f8:ed:3a:9d:97:8d:
a5:0d:92:15:03:0e:cd:eb:c2:ff:bf:b6:76:1c:42:
d2:6c:40:bf:31:bc:2e:63:df:57:f0:f2:a9:0f:d1:
ea:71:28:6c:0b:95:16:a8:f1:5b:49:14:ea:61:fc:
3e:36:6d:11:02:4c:aa:9d:2e:f8:59:d8:a5:35:1b:
57:6f:a7:66:6e:43:bf:92:3d:6e:29:59:d4:d3:29:
2f:d8:ca:38:9d:3a:85:52:51:a5:d8:d3:d3:e3:f5:
b7:5a:d8:f7:e6:92:f7:ea:d3:48:82:3b:84:76:ec:
f4:4f:31:10:71:d0:86:e9:55:65:22:77:6d:24:d4:
3a:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:DB:28:50:50:1D:26:05:8B:FE:3E:2B:1E:C6:76:BC:C0:54:78:8F
X509v3 Authority Key Identifier:
keyid:D3:E9:70:33:A3:6A:A9:BC:C0:C2:F1:67:E6:20:D7:CA:14:93:CB:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0-lwM6NqqbzAwvFn5iDXyhSTy-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/cdsoUFAdJgWL_j4rHsZ2vMBUeI8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/0-lwM6NqqbzAwvFn5iDXyhSTy-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.226.160.0/21
80.72.16.0-80.72.27.255
85.198.120.0/21
89.169.52.0/22
92.118.72.0/22
92.246.132.0-92.246.143.255
93.185.144.0/20
94.141.100.0/22
95.174.96.0/19
178.212.139.0/24
185.9.184.0/22
185.136.32.0/22
185.230.240.0/22
213.108.20.0/22
217.144.176.0/20
IPv6:
2a00:8740::/32
2a0b:1c40::/29
2a12:3280::/32
Signature Algorithm: sha256WithRSAEncryption
07:f2:dd:53:83:b0:a6:ca:41:e8:ec:2e:20:36:78:69:e7:6b:
c5:c9:ee:ac:fb:35:1a:b1:55:ee:79:97:a4:ac:82:c7:fb:aa:
ee:18:41:0e:49:e5:1d:99:65:4e:e0:51:9a:06:35:03:fe:89:
3d:66:e8:5f:25:8b:31:d7:f4:bc:2f:13:01:a5:91:c2:0d:28:
8e:7a:db:5d:e7:a2:9f:b3:a5:e3:e4:4e:83:8c:c1:3f:38:87:
ea:d3:e2:65:a2:ee:23:47:0e:04:4f:6d:d3:12:53:3c:db:59:
41:e2:f1:28:26:21:ab:01:f7:26:b9:5d:08:b3:3d:6c:e7:dc:
cc:49:70:56:49:ff:78:f1:b5:73:5d:6f:e4:cc:3a:61:a0:2a:
c3:98:f3:14:61:13:ce:fc:bb:dc:fa:9d:38:c7:8e:89:ea:87:
7d:f2:31:b8:26:e8:e2:79:1a:b1:d8:54:44:42:c7:64:19:70:
99:40:5b:75:4a:3a:3c:ff:2d:c7:aa:5a:13:ed:7b:50:d2:8e:
09:7c:24:b2:32:a3:67:c6:35:aa:0d:7c:ba:a2:94:01:5e:26:
b8:c4:97:a8:a5:95:5f:00:a9:07:e3:e9:f7:0b:4d:a1:c0:80:
17:aa:18:5a:a3:93:ae:65:ae:ec:7b:6d:eb:54:b7:2d:2f:4c:
8b:a5:fe:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:07:16 2025 by rpki-client