Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/5zsjLZUdTcMn8rZFiJU3kw8r1R0.roa
File: 5zsjLZUdTcMn8rZFiJU3kw8r1R0.roa (raw, json)
Hash identifier: B7Y2mbHgIaR0Pu/K0CClI1bkmzL7l9hfvgAYNvjiXOg=
Subject key identifier: E7:3B:23:2D:95:1D:4D:C3:27:F2:B6:45:88:95:37:93:0F:2B:D5:1D
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 0187758E89DF2F9629DDD605A4B54E686A29
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/5zsjLZUdTcMn8rZFiJU3kw8r1R0.roa
Signing time: Wed 12 Apr 2023 13:01:28 +0000
ROA not before: Wed 12 Apr 2023 13:01:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 185.95.102.0/23 maxlen: 24
185.95.101.0/24 maxlen: 24
185.81.174.0/24 maxlen: 24
185.81.184.0/24 maxlen: 24
185.81.187.0/24 maxlen: 24
185.97.3.0/24 maxlen: 24
185.97.1.0/24 maxlen: 24
185.68.246.0/24 maxlen: 24
185.89.43.0/24 maxlen: 24
185.89.42.0/24 maxlen: 24
185.68.247.0/24 maxlen: 24
194.104.10.0/24 maxlen: 24
185.68.184.0/24 maxlen: 24
5.181.169.0/24 maxlen: 24
5.181.168.0/24 maxlen: 24
213.232.122.0/24 maxlen: 24
213.232.120.0/24 maxlen: 24
83.171.226.0/24 maxlen: 24
83.171.224.0/24 maxlen: 24
83.171.227.0/24 maxlen: 24
185.96.38.0/24 maxlen: 24
185.89.104.0/23 maxlen: 24
185.89.108.0/22 maxlen: 24
141.98.87.0/24 maxlen: 24
5.183.255.0/24 maxlen: 24
185.88.36.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:75:8e:89:df:2f:96:29:dd:d6:05:a4:b5:4e:68:6a:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Apr 12 13:01:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e73b232d951d4dc327f2b645889537930f2bd51d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:23:89:97:d4:6b:53:e9:8a:1d:03:32:17:8e:
3c:0a:c1:43:28:d8:1b:73:b7:f9:bc:1c:56:d0:07:
57:89:aa:d4:b8:81:f4:0a:df:55:e3:6f:f7:34:cd:
3b:4b:ff:66:73:c6:b9:36:9b:1c:b9:15:d1:73:c5:
e6:48:e1:bf:4c:f2:dc:51:29:30:0c:f9:be:c8:85:
33:00:cc:04:6a:89:4d:7a:63:a0:da:6c:aa:8c:aa:
3a:18:85:fe:bb:a5:5b:27:70:8c:44:05:73:7a:f3:
a4:11:57:96:c4:ad:75:4b:f0:63:71:5f:e9:27:95:
16:9c:fa:35:4d:2d:c1:3c:a0:68:0f:00:45:4f:46:
38:98:25:f6:e9:b5:5f:f8:39:4e:87:ac:dc:59:4d:
d7:4b:83:61:4c:16:c1:f1:f1:8e:fa:e3:20:8c:1e:
6c:c6:47:91:e0:36:5c:c2:a0:43:59:5a:14:26:0e:
0e:a1:39:ef:a3:84:ba:c1:cb:af:75:68:f8:86:c6:
6f:4a:0a:ad:54:fc:d3:c7:1e:70:5d:6e:e2:e6:29:
72:ba:db:06:ac:78:67:e3:af:3f:58:7b:b9:a6:92:
11:b1:12:ae:7b:0a:c0:15:8d:0f:d8:ef:88:5f:ee:
f8:0c:f6:75:c8:0d:13:28:5c:10:4b:d7:ec:7b:6e:
3e:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:3B:23:2D:95:1D:4D:C3:27:F2:B6:45:88:95:37:93:0F:2B:D5:1D
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/5zsjLZUdTcMn8rZFiJU3kw8r1R0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.168.0/23
5.183.255.0/24
83.171.224.0/24
83.171.226.0/23
141.98.87.0/24
185.68.184.0/24
185.68.246.0/23
185.81.174.0/24
185.81.184.0/24
185.81.187.0/24
185.88.36.0/24
185.89.42.0/23
185.89.104.0/23
185.89.108.0/22
185.95.101.0-185.95.103.255
185.96.38.0/24
185.97.1.0/24
185.97.3.0/24
194.104.10.0/24
213.232.120.0/24
213.232.122.0/24
Signature Algorithm: sha256WithRSAEncryption
47:2b:c9:d5:b0:e4:3b:b5:e2:77:21:af:4f:a2:25:9f:04:52:
f8:b5:7f:a3:1a:78:6b:25:50:94:95:3d:c1:94:f6:23:d3:cc:
08:90:ba:91:80:b5:c0:e5:8e:4e:7e:3a:64:78:c1:29:d7:81:
ef:ee:07:f0:0a:60:3e:17:bd:7a:85:c1:05:65:5e:99:31:3b:
b4:50:c3:1e:ad:1b:35:ea:c5:b8:95:49:78:3e:53:f5:d9:63:
e4:10:7a:4e:38:3e:81:d6:70:a8:a9:0a:65:f2:51:a6:7b:09:
7e:75:99:ab:fe:36:b6:52:cc:9f:0d:d0:5b:9c:66:6d:5f:f6:
a2:61:99:22:e9:88:ea:e1:00:43:d3:eb:53:b9:1c:f4:9d:44:
0e:39:bd:4e:27:5c:3f:8d:77:45:3a:e4:47:63:47:09:fb:6b:
42:28:a2:7e:a6:c3:e8:fe:f5:bf:62:e5:5c:8e:e1:16:c8:1c:
a9:d6:e6:4d:d7:e0:35:6a:e3:fb:94:3e:2d:3c:1b:b7:94:9e:
3e:87:bb:90:1b:b3:35:6f:71:86:26:63:1d:ee:f7:4a:50:44:
59:a6:8a:f7:7e:35:69:74:ed:82:40:6e:6a:2f:d3:ea:0f:b1:
70:2e:4f:7e:81:b2:1d:78:17:c0:1f:b6:4e:6a:d5:e5:af:7a:
f8:99:64:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:59 2024 by rpki-client on console-fra.rpki-client.org