Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/a1ae70-7996-4687-a0d7-5e0f4ab809bb/1/gd5P-8M_qWjWr5Ykhb0LPqAwL5s.roa
File: gd5P-8M_qWjWr5Ykhb0LPqAwL5s.roa (raw, json)
Hash identifier: 5VGqae4n4ews94VLddMSatSZqEdcIGbkgpZ6Q8cAjDk=
Subject key identifier: 81:DE:4F:FB:C3:3F:A9:68:D6:AF:96:24:85:BD:0B:3E:A0:30:2F:9B
Certificate issuer: /CN=743e447edb8a5e0e1b1d7f5cdc287c364a5fb0b5
Certificate serial: 019104D9708602A9924688B6F6C22EF7F96F
Authority key identifier: 74:3E:44:7E:DB:8A:5E:0E:1B:1D:7F:5C:DC:28:7C:36:4A:5F:B0:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dD5EftuKXg4bHX9c3Ch8NkpfsLU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/a1ae70-7996-4687-a0d7-5e0f4ab809bb/1/gd5P-8M_qWjWr5Ykhb0LPqAwL5s.roa
Signing time: Tue 30 Jul 2024 18:14:04 +0000
ROA not before: Tue 30 Jul 2024 18:14:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 151.145.128.0/19 maxlen: 19
158.120.48.0/24 maxlen: 24
158.120.50.0/24 maxlen: 24
158.120.52.0/24 maxlen: 24
158.120.54.0/24 maxlen: 24
158.120.56.0/24 maxlen: 24
158.120.58.0/24 maxlen: 24
158.120.60.0/24 maxlen: 24
158.120.62.0/24 maxlen: 24
170.100.128.0/22 maxlen: 22
170.100.147.0/24 maxlen: 24
170.100.148.0/22 maxlen: 22
170.100.152.0/21 maxlen: 21
170.100.192.0/21 maxlen: 21
170.100.200.0/22 maxlen: 22
192.6.64.0/22 maxlen: 22
192.6.172.0/22 maxlen: 22
192.6.252.0/22 maxlen: 22
192.25.180.0/22 maxlen: 22
192.25.200.0/22 maxlen: 22
192.25.208.0/22 maxlen: 22
192.25.232.0/22 maxlen: 22
192.25.244.0/22 maxlen: 22
192.137.24.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 30 Jul 2024 19:16:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:04:d9:70:86:02:a9:92:46:88:b6:f6:c2:2e:f7:f9:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=743e447edb8a5e0e1b1d7f5cdc287c364a5fb0b5
Validity
Not Before: Jul 30 18:14:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=81de4ffbc33fa968d6af962485bd0b3ea0302f9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:4f:06:d1:59:ad:de:f6:7d:36:b7:cd:01:0b:
1e:cf:4c:e7:49:a6:91:d4:c4:26:b9:c4:0d:b2:a0:
c6:b1:34:0a:fe:dc:3c:40:8f:4c:49:fa:61:e3:5a:
bd:73:07:46:ae:9f:67:95:fc:d2:ce:c5:47:bb:ab:
b3:9b:50:7a:d7:68:1c:69:25:f2:2c:a8:38:57:0d:
a6:cd:62:fb:bf:4f:84:bc:83:ad:6c:4a:7c:38:a5:
3f:9f:8f:e8:9e:0f:cf:a1:d2:b2:77:3b:53:ce:df:
85:01:73:74:99:43:33:e4:2a:9b:79:7f:53:42:4e:
29:0b:e6:69:16:a2:3d:11:c6:0e:9f:e6:bd:63:4c:
a2:13:a8:f6:de:0a:ae:38:32:2c:4b:c3:0d:30:b3:
60:20:05:c7:02:6e:eb:86:93:33:65:b4:d3:37:b5:
49:24:f6:26:36:4b:86:5c:69:0b:ee:57:55:1a:10:
6a:f3:36:f2:21:ca:e2:d0:9b:78:d3:46:0e:6e:9c:
2a:03:c2:a0:ac:3e:dc:26:fd:33:85:71:1a:7b:1b:
cc:eb:37:56:56:20:b9:f9:c6:d1:11:20:5b:20:c5:
fd:26:34:52:a2:9a:9a:df:86:c0:15:0e:44:46:0c:
a2:f8:3d:a7:01:e8:5d:ea:00:f4:4a:cd:4d:99:31:
e9:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:DE:4F:FB:C3:3F:A9:68:D6:AF:96:24:85:BD:0B:3E:A0:30:2F:9B
X509v3 Authority Key Identifier:
keyid:74:3E:44:7E:DB:8A:5E:0E:1B:1D:7F:5C:DC:28:7C:36:4A:5F:B0:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dD5EftuKXg4bHX9c3Ch8NkpfsLU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a1ae70-7996-4687-a0d7-5e0f4ab809bb/1/gd5P-8M_qWjWr5Ykhb0LPqAwL5s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a1ae70-7996-4687-a0d7-5e0f4ab809bb/1/dD5EftuKXg4bHX9c3Ch8NkpfsLU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.145.128.0/19
158.120.48.0/24
158.120.50.0/24
158.120.52.0/24
158.120.54.0/24
158.120.56.0/24
158.120.58.0/24
158.120.60.0/24
158.120.62.0/24
170.100.128.0/22
170.100.147.0-170.100.159.255
170.100.192.0-170.100.203.255
192.6.64.0/22
192.6.172.0/22
192.6.252.0/22
192.25.180.0/22
192.25.200.0/22
192.25.208.0/22
192.25.232.0/22
192.25.244.0/22
192.137.24.0/22
Signature Algorithm: sha256WithRSAEncryption
79:44:9f:80:10:47:7c:51:88:d8:ab:7c:9f:37:e6:bc:dc:44:
37:eb:5d:12:04:44:0f:68:12:d5:13:0b:9b:86:be:04:29:8b:
86:a5:cd:86:05:1d:9c:fe:5a:fd:37:51:22:53:50:f2:15:d8:
22:c1:b7:c8:89:dc:3f:09:0c:4c:30:f4:6f:20:dc:78:95:74:
7e:42:ec:2f:98:0e:64:28:11:a3:44:6f:9a:34:36:dd:c2:43:
d1:48:74:0a:39:bc:fb:57:78:ad:95:58:53:04:1d:ff:1b:3f:
e1:97:ae:a6:07:ff:2c:df:00:c3:4d:10:5e:12:9a:98:20:4b:
ef:bb:fe:80:55:48:f2:be:62:0e:ee:d1:85:73:41:c9:c8:7f:
99:fa:c8:ca:23:7f:53:a2:4a:c3:5a:a0:1d:46:c9:31:e4:ac:
f7:90:48:f3:26:f3:61:9c:13:d8:61:a5:92:58:cd:99:7b:c1:
63:e2:51:bd:a5:a0:4a:b4:7e:91:5a:a3:23:04:34:0a:46:d6:
b9:d2:2a:0b:31:1e:86:c2:99:47:4a:6e:f4:5b:8e:13:f5:47:
1a:7c:8f:c5:7e:28:54:63:6d:db:1d:76:62:12:08:d4:eb:7f:
41:3c:9b:0a:90:df:d6:d8:c2:fb:99:46:85:6b:f8:ff:23:af:
7e:3e:fb:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 30 20:53:00 2024 by rpki-client on console-fra.rpki-client.org