Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/22a3c7-6fe5-49e1-935d-8bb80152ab34/1/cXDzXlDBXTH1eKJOvEVQfgnFq3U.roa
File: cXDzXlDBXTH1eKJOvEVQfgnFq3U.roa (raw, json)
Hash identifier: hOdIBi+YAiBEgj5y9ahenQz3BtysHxXaBe/46XdCWDs=
Subject key identifier: 71:70:F3:5E:50:C1:5D:31:F5:78:A2:4E:BC:45:50:7E:09:C5:AB:75
Certificate issuer: /CN=e7fed4e778209c3cae93d4b76d350704462c3aab
Certificate serial: 01857295C20B0ECA08A0337B56D19666453B
Authority key identifier: E7:FE:D4:E7:78:20:9C:3C:AE:93:D4:B7:6D:35:07:04:46:2C:3A:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5_7U53ggnDyuk9S3bTUHBEYsOqs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/22a3c7-6fe5-49e1-935d-8bb80152ab34/1/cXDzXlDBXTH1eKJOvEVQfgnFq3U.roa
Signing time: Mon 02 Jan 2023 13:04:55 +0000
ROA not before: Mon 02 Jan 2023 13:04:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58224
IP address blocks: 89.38.242.0/23 maxlen: 23
89.33.234.0/23 maxlen: 23
89.35.156.0/23 maxlen: 23
89.35.176.0/23 maxlen: 23
45.140.28.0/22 maxlen: 22
89.43.204.0/23 maxlen: 23
89.42.32.0/23 maxlen: 23
89.37.30.0/23 maxlen: 23
89.40.128.0/23 maxlen: 23
89.33.204.0/23 maxlen: 23
89.34.168.0/23 maxlen: 23
89.39.186.0/23 maxlen: 23
89.34.176.0/23 maxlen: 23
89.44.202.0/23 maxlen: 23
89.44.112.0/23 maxlen: 23
89.44.118.0/23 maxlen: 23
89.34.88.0/23 maxlen: 23
89.46.44.0/23 maxlen: 23
89.34.94.0/23 maxlen: 23
89.35.58.0/23 maxlen: 23
89.45.230.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:31:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:95:c2:0b:0e:ca:08:a0:33:7b:56:d1:96:66:45:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7fed4e778209c3cae93d4b76d350704462c3aab
Validity
Not Before: Jan 2 13:04:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7170f35e50c15d31f578a24ebc45507e09c5ab75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:e4:ba:c6:e8:a1:9a:64:c3:e4:6f:18:f5:e6:
c9:19:ad:92:86:87:a9:5c:2f:ab:df:89:67:8c:84:
7f:a2:15:56:f2:a8:99:b9:92:51:dd:01:00:73:7d:
89:bf:0b:10:6a:5d:28:1c:78:73:5f:c1:23:e8:01:
d1:71:5a:b5:39:ff:6e:47:f4:6e:17:f9:b3:d6:e5:
2e:2f:86:9e:63:dd:ed:a7:2e:f2:2f:c1:27:0e:d7:
94:cd:94:1e:ee:9a:4a:e6:9a:89:99:46:7d:29:12:
16:4b:48:18:cf:76:50:c8:cd:e8:e4:47:9b:b0:ef:
07:ba:f2:18:4d:f1:f6:a8:c1:28:67:17:47:b1:25:
65:fe:49:33:29:f8:f5:09:b6:10:33:fb:be:28:23:
45:be:ee:38:c8:35:c9:11:af:0e:93:9b:18:f5:2d:
85:7c:69:cf:2e:fe:0f:de:3a:41:df:e1:a7:cd:3f:
5a:a6:d2:45:b9:f8:ff:c8:e3:be:3b:68:84:4b:9d:
7c:ff:60:e8:97:33:17:d9:c5:d7:9a:61:52:8e:5e:
b0:70:2e:a8:97:77:76:9f:9a:20:c1:0e:29:5c:41:
78:31:a7:7f:b1:cc:77:f1:71:90:95:2c:4d:89:68:
3d:6c:86:fe:81:5a:9b:6f:b6:00:11:87:12:57:9d:
62:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:70:F3:5E:50:C1:5D:31:F5:78:A2:4E:BC:45:50:7E:09:C5:AB:75
X509v3 Authority Key Identifier:
keyid:E7:FE:D4:E7:78:20:9C:3C:AE:93:D4:B7:6D:35:07:04:46:2C:3A:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5_7U53ggnDyuk9S3bTUHBEYsOqs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/22a3c7-6fe5-49e1-935d-8bb80152ab34/1/cXDzXlDBXTH1eKJOvEVQfgnFq3U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/22a3c7-6fe5-49e1-935d-8bb80152ab34/1/5_7U53ggnDyuk9S3bTUHBEYsOqs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.28.0/22
89.33.204.0/23
89.33.234.0/23
89.34.88.0/23
89.34.94.0/23
89.34.168.0/23
89.34.176.0/23
89.35.58.0/23
89.35.156.0/23
89.35.176.0/23
89.37.30.0/23
89.38.242.0/23
89.39.186.0/23
89.40.128.0/23
89.42.32.0/23
89.43.204.0/23
89.44.112.0/23
89.44.118.0/23
89.44.202.0/23
89.45.230.0/23
89.46.44.0/23
Signature Algorithm: sha256WithRSAEncryption
6a:e0:7d:a9:2a:53:89:f7:0b:47:bd:0b:00:db:e6:20:a8:ba:
19:4b:ba:c0:a0:3b:cc:68:8c:f7:20:3c:1d:14:f5:16:99:03:
97:c8:9c:1c:e4:12:00:e1:5e:0a:06:33:41:27:30:1a:84:a8:
cb:3a:01:75:36:e7:ee:a2:a9:e3:e0:82:e2:6b:23:58:dd:da:
13:12:62:fb:1c:64:9b:99:04:70:56:94:fb:bc:74:de:9d:91:
b0:44:70:f4:56:df:41:cd:db:4f:11:75:87:b1:70:39:f9:5a:
fe:24:a7:7f:02:32:27:9d:90:b7:28:7a:00:8d:56:ac:4e:3a:
b5:41:28:aa:d6:64:02:69:dd:bd:51:f7:02:10:10:07:6d:de:
55:65:e9:62:29:bc:1a:ba:fd:40:c5:4e:67:8d:7e:33:bf:42:
a1:f6:8d:f1:ae:c6:55:4b:30:02:dd:e7:01:6a:97:e0:c9:43:
6c:21:b4:19:ad:e1:75:83:c1:10:a1:21:1f:c3:25:f4:c1:4b:
ad:39:48:32:09:42:13:d5:4a:18:93:52:2f:ce:c5:33:76:94:
d6:e1:6f:58:57:93:0c:23:54:c4:95:20:fc:0a:8f:6c:4e:22:
9f:3d:53:33:2b:33:d4:d8:fb:d2:d2:db:a9:4f:6e:da:d5:82:
c6:de:3f:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:24 2024 by rpki-client on console-ams.rpki-client.org