Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/790cee-d54e-4598-8bc1-2170c5c1d3ed/1/JI5RAJA7ds_sUEEiL3EF77yhL9A.roa
File: JI5RAJA7ds_sUEEiL3EF77yhL9A.roa (raw, json)
Hash identifier: jH3nUZFxrWzabWmGz86YLVBS7rlonHO11ymRtEXZUWc=
Subject key identifier: 24:8E:51:00:90:3B:76:CF:EC:50:41:22:2F:71:05:EF:BC:A1:2F:D0
Certificate issuer: /CN=4ddb3dcdf5e6bee09825c37bf3b8bdf28b6fb593
Certificate serial: 01904CDF80F56570BDE164C560738A8D471E
Authority key identifier: 4D:DB:3D:CD:F5:E6:BE:E0:98:25:C3:7B:F3:B8:BD:F2:8B:6F:B5:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tds9zfXmvuCYJcN787i98otvtZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/790cee-d54e-4598-8bc1-2170c5c1d3ed/1/JI5RAJA7ds_sUEEiL3EF77yhL9A.roa
Signing time: Tue 25 Jun 2024 00:50:34 +0000
ROA not before: Tue 25 Jun 2024 00:50:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31200
IP address blocks: 5.128.0.0/16 maxlen: 16
5.128.119.0/24 maxlen: 24
5.129.0.0/17 maxlen: 17
5.129.128.0/19 maxlen: 19
5.129.181.0/24 maxlen: 24
5.129.184.0/23 maxlen: 23
5.129.186.0/24 maxlen: 24
5.130.0.0/16 maxlen: 16
5.130.166.0/24 maxlen: 24
5.131.0.0/16 maxlen: 16
5.131.0.0/17 maxlen: 17
5.131.128.0/18 maxlen: 18
5.131.192.0/19 maxlen: 19
5.131.224.0/20 maxlen: 20
5.131.240.0/20 maxlen: 20
5.131.251.0/24 maxlen: 24
5.131.253.0/24 maxlen: 24
37.192.0.0/14 maxlen: 14
37.192.0.0/16 maxlen: 16
37.193.0.0/16 maxlen: 16
37.194.0.0/16 maxlen: 16
37.195.0.0/16 maxlen: 16
178.49.0.0/16 maxlen: 24
178.49.0.0/17 maxlen: 17
178.49.12.0/22 maxlen: 22
178.49.56.0/22 maxlen: 22
178.49.128.0/17 maxlen: 24
178.49.132.0/24 maxlen: 24
178.49.133.0/24 maxlen: 24
178.49.141.0/24 maxlen: 24
178.49.142.0/24 maxlen: 24
178.49.144.0/24 maxlen: 24
178.49.145.0/24 maxlen: 24
178.49.146.0/24 maxlen: 24
178.49.147.0/24 maxlen: 24
178.49.148.0/24 maxlen: 24
178.49.150.0/23 maxlen: 23
178.49.152.0/22 maxlen: 22
178.49.152.0/23 maxlen: 23
178.49.152.0/24 maxlen: 24
178.49.154.0/23 maxlen: 23
178.49.154.0/24 maxlen: 24
178.49.156.0/23 maxlen: 23
178.49.158.0/24 maxlen: 24
178.49.159.0/24 maxlen: 24
178.49.200.0/22 maxlen: 22
178.49.248.0/22 maxlen: 22
2a00:7700::/32 maxlen: 32
2a00:7700:8a02::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 09 Oct 2024 05:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4c:df:80:f5:65:70:bd:e1:64:c5:60:73:8a:8d:47:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ddb3dcdf5e6bee09825c37bf3b8bdf28b6fb593
Validity
Not Before: Jun 25 00:50:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=248e5100903b76cfec5041222f7105efbca12fd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:d7:c9:8a:af:2e:e5:aa:2b:10:9c:aa:5a:e3:
98:1e:06:1a:2c:31:05:a7:30:47:45:da:d0:58:e0:
81:20:8f:96:63:20:64:15:8f:f6:e9:63:9e:a6:97:
2a:9a:c1:65:e2:92:ee:c1:5a:86:cd:83:9c:4a:a0:
e3:ff:70:b1:90:1b:74:04:7d:d1:3f:21:9b:34:f2:
9d:dc:7b:dd:be:db:d7:d5:a0:a5:78:9b:eb:03:33:
be:1e:4c:f4:92:93:3d:28:b7:c2:54:c7:08:4a:81:
9d:2c:5b:b3:f5:9e:59:6e:3c:be:ca:8f:4c:5b:8d:
94:28:7c:5b:d8:1d:90:61:c9:92:da:09:84:dd:62:
18:95:02:7a:b8:f4:98:32:30:f9:2b:f4:d0:d2:52:
82:4b:cf:17:c6:63:b9:3d:1d:4d:dd:6f:db:5e:cb:
03:6a:7a:a6:58:61:68:d7:cf:70:f5:60:ae:20:3e:
d3:14:f1:11:d6:b3:65:2e:90:51:30:d2:36:a9:cf:
c9:95:a7:0d:12:5b:70:42:62:69:1e:bb:5d:9a:6d:
85:a9:34:29:af:70:71:f2:12:a7:60:46:45:06:cb:
0a:d3:af:a8:45:aa:4f:ac:41:4c:a5:af:80:19:16:
2b:fc:c7:42:ba:e4:a5:5b:68:54:eb:a2:74:9b:55:
3f:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:8E:51:00:90:3B:76:CF:EC:50:41:22:2F:71:05:EF:BC:A1:2F:D0
X509v3 Authority Key Identifier:
keyid:4D:DB:3D:CD:F5:E6:BE:E0:98:25:C3:7B:F3:B8:BD:F2:8B:6F:B5:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tds9zfXmvuCYJcN787i98otvtZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/790cee-d54e-4598-8bc1-2170c5c1d3ed/1/JI5RAJA7ds_sUEEiL3EF77yhL9A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/790cee-d54e-4598-8bc1-2170c5c1d3ed/1/Tds9zfXmvuCYJcN787i98otvtZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.128.0.0-5.129.159.255
5.129.181.0/24
5.129.184.0-5.129.186.255
5.130.0.0/15
37.192.0.0/14
178.49.0.0/16
IPv6:
2a00:7700::/32
Signature Algorithm: sha256WithRSAEncryption
85:16:86:17:3c:1a:fb:1f:64:71:6e:fb:62:b0:5a:f0:ca:33:
66:ea:ae:8d:13:3b:aa:ed:aa:31:79:f5:88:bf:11:ca:35:7a:
a8:51:f1:89:eb:0d:5c:ef:4e:6c:75:17:01:58:5e:7d:09:d1:
1d:0d:97:13:89:5f:ad:7f:38:4d:7c:b3:66:69:77:f0:bc:13:
a5:d6:d1:5f:94:d3:7a:1d:ca:47:ed:9d:b3:99:18:de:dd:c9:
d6:63:18:5b:59:c6:16:63:19:d2:f0:04:9b:3d:5e:dd:90:58:
8a:ec:f6:06:0c:7f:bf:24:39:fc:b3:e0:86:59:c6:92:c1:07:
51:9b:ac:27:d6:01:a1:c5:56:4d:65:57:70:70:4f:1b:72:7a:
3c:8c:fc:ff:5a:2d:bf:36:60:98:41:13:7d:05:71:1d:a4:ed:
b6:75:a6:24:97:a9:fa:c6:ea:a8:13:44:98:b3:37:b0:35:4c:
5a:36:10:62:9a:eb:b7:b8:5a:2b:21:01:c5:5b:09:64:26:14:
7f:c0:80:1e:47:31:3f:27:45:ab:5d:72:8e:77:25:e3:df:85:
99:75:bb:92:79:da:ca:90:66:94:49:fe:75:a4:04:69:23:e4:
ba:51:95:ad:57:9d:5f:fc:f7:14:2c:08:6a:c1:2c:dd:56:59:
29:ab:34:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 9 08:19:39 2024 by rpki-client on console-fra.rpki-client.org