Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/cc558c-35e5-4dd6-867b-8b05b778e0d5/1/EFv3IM7K0IlGM5dW-9-BzNu0Tgo.roa
File: EFv3IM7K0IlGM5dW-9-BzNu0Tgo.roa (raw, json)
Hash identifier: VTotzWnnl5itUBO2pqwspMZokNek6rAnaE5IK+KAAQo=
Subject key identifier: 10:5B:F7:20:CE:CA:D0:89:46:33:97:56:FB:DF:81:CC:DB:B4:4E:0A
Certificate issuer: /CN=dc377b5d022bf0be4a6224b47eea6ca0b81bf037
Certificate serial: 0190BBEF357B7D5AC8CD9BB225B81899C897
Authority key identifier: DC:37:7B:5D:02:2B:F0:BE:4A:62:24:B4:7E:EA:6C:A0:B8:1B:F0:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Dd7XQIr8L5KYiS0fupsoLgb8Dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/cc558c-35e5-4dd6-867b-8b05b778e0d5/1/EFv3IM7K0IlGM5dW-9-BzNu0Tgo.roa
Signing time: Tue 16 Jul 2024 14:25:34 +0000
ROA not before: Tue 16 Jul 2024 14:25:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 28756
IP address blocks: 145.64.128.0/21 maxlen: 21
145.64.128.0/22 maxlen: 22
145.64.130.0/24 maxlen: 24
145.64.132.0/22 maxlen: 22
145.64.132.0/23 maxlen: 23
145.64.134.0/24 maxlen: 24
145.64.135.0/24 maxlen: 24
145.64.136.0/22 maxlen: 22
145.64.140.0/22 maxlen: 22
145.64.144.0/20 maxlen: 20
145.64.144.0/23 maxlen: 23
145.64.146.0/24 maxlen: 24
145.64.147.0/24 maxlen: 24
145.64.148.0/24 maxlen: 24
145.64.149.0/24 maxlen: 24
145.64.152.0/23 maxlen: 23
145.64.157.0/24 maxlen: 24
145.64.158.0/24 maxlen: 24
145.64.159.0/24 maxlen: 24
145.64.160.0/20 maxlen: 20
145.64.160.0/24 maxlen: 24
145.64.161.0/24 maxlen: 24
145.64.162.0/24 maxlen: 24
145.64.170.0/24 maxlen: 24
145.64.240.0/21 maxlen: 21
145.64.240.0/22 maxlen: 22
145.64.241.0/24 maxlen: 24
145.64.242.0/24 maxlen: 24
145.64.244.0/22 maxlen: 22
145.64.245.0/24 maxlen: 24
145.64.246.0/24 maxlen: 24
145.64.248.0/21 maxlen: 21
145.64.248.0/22 maxlen: 22
145.64.248.0/24 maxlen: 24
145.64.250.0/24 maxlen: 24
145.64.252.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 03 Oct 2024 08:14:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:bb:ef:35:7b:7d:5a:c8:cd:9b:b2:25:b8:18:99:c8:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc377b5d022bf0be4a6224b47eea6ca0b81bf037
Validity
Not Before: Jul 16 14:25:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=105bf720cecad08946339756fbdf81ccdbb44e0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ff:16:e6:86:33:61:72:94:22:ec:2a:0a:23:
6d:76:66:c9:84:51:9e:90:65:97:50:f6:27:5e:1a:
25:0f:87:59:99:c7:3d:8e:10:ef:95:32:45:84:1d:
07:66:79:ba:57:0d:e4:6b:15:95:32:11:51:8d:a3:
3f:6a:2d:d2:92:b6:f1:1a:71:aa:d9:ab:e9:f9:c8:
93:2c:ad:28:3b:ea:c3:45:2e:07:7b:26:98:d4:bc:
9c:53:4d:0a:5b:4a:f9:54:70:e5:09:42:65:62:3d:
8c:a8:83:f5:4d:c7:05:30:e8:78:17:74:6a:51:de:
e4:a4:18:b6:a0:09:59:1e:e0:24:d6:9c:af:f3:dd:
d4:97:c1:86:83:ba:e8:ee:e5:c5:24:58:de:c4:60:
8e:0f:41:7a:c0:35:33:70:9f:58:56:5c:93:d0:2e:
cd:0d:fd:99:7e:a9:21:e6:46:a6:a5:82:b4:90:d6:
dd:55:7d:88:ac:ea:0f:76:5c:7c:b4:42:aa:1d:0b:
9b:fd:80:ca:98:dd:64:61:70:cb:00:22:cf:84:5c:
e6:cf:b3:c7:5a:14:85:56:ab:63:d9:e9:6d:c5:6b:
22:2f:ff:02:bf:dc:5f:4e:a0:89:e0:fa:81:90:e1:
0a:57:32:5f:80:27:93:97:2e:de:77:30:28:11:a3:
6f:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:5B:F7:20:CE:CA:D0:89:46:33:97:56:FB:DF:81:CC:DB:B4:4E:0A
X509v3 Authority Key Identifier:
keyid:DC:37:7B:5D:02:2B:F0:BE:4A:62:24:B4:7E:EA:6C:A0:B8:1B:F0:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Dd7XQIr8L5KYiS0fupsoLgb8Dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/cc558c-35e5-4dd6-867b-8b05b778e0d5/1/EFv3IM7K0IlGM5dW-9-BzNu0Tgo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/cc558c-35e5-4dd6-867b-8b05b778e0d5/1/3Dd7XQIr8L5KYiS0fupsoLgb8Dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.64.128.0-145.64.175.255
145.64.240.0/20
Signature Algorithm: sha256WithRSAEncryption
3b:bc:0d:9d:0b:c7:3a:d6:98:8d:48:55:76:f3:ad:95:ad:a5:
74:ea:9e:97:7e:cb:c5:21:db:32:14:96:b6:24:ef:e2:be:08:
97:0c:56:73:7c:ad:99:66:eb:82:e2:ec:d4:7a:31:1e:7f:99:
bd:92:37:c0:d2:ff:bf:4d:9f:57:27:c0:78:9d:2c:d3:c3:53:
8b:fd:d4:9c:04:7a:d9:d5:b5:e2:f5:21:35:af:3f:e9:3a:28:
ea:5b:d4:b2:d3:6e:85:a2:e5:3c:ac:f3:02:2e:44:80:07:01:
5f:6c:22:90:e2:de:c3:d0:fc:b8:65:00:a2:83:be:e2:e4:d8:
71:74:69:54:f5:6e:46:cd:69:dd:9a:80:f1:04:0f:75:db:00:
0b:e2:d3:a9:05:83:f9:c5:0f:6d:c4:b0:47:e6:4b:bd:38:7c:
7d:65:02:0f:b8:c7:4a:28:9f:ba:ef:2d:4a:df:23:ab:11:9b:
78:60:8a:e3:be:3a:8b:ba:f1:91:87:29:ce:03:b1:ea:42:cc:
07:30:d4:ba:8b:1d:60:fd:39:80:d7:d3:06:ae:d0:0b:b8:e0:
54:79:f2:49:c7:a8:53:70:98:7e:71:e3:e7:9c:fb:31:ef:17:
17:1b:eb:32:78:14:5d:b3:89:c3:a6:6b:b5:57:62:97:d0:da:
65:25:7f:d9
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:34:17 2025 by rpki-client