Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/cc558c-35e5-4dd6-867b-8b05b778e0d5/1/ay3FhyHE9Wh1KzngHJUCk0gkh70.roa
File: ay3FhyHE9Wh1KzngHJUCk0gkh70.roa (raw, json)
Hash identifier: sqj0Au7wQwkFinaulRHJK36nWIy7kkqrnERPJpUK26Q=
Subject key identifier: 6B:2D:C5:87:21:C4:F5:68:75:2B:39:E0:1C:95:02:93:48:24:87:BD
Certificate issuer: /CN=dc377b5d022bf0be4a6224b47eea6ca0b81bf037
Certificate serial: 019072C3468A915B5209B8A01D30FFE3FCC2
Authority key identifier: DC:37:7B:5D:02:2B:F0:BE:4A:62:24:B4:7E:EA:6C:A0:B8:1B:F0:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Dd7XQIr8L5KYiS0fupsoLgb8Dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/cc558c-35e5-4dd6-867b-8b05b778e0d5/1/ay3FhyHE9Wh1KzngHJUCk0gkh70.roa
Signing time: Tue 02 Jul 2024 09:25:18 +0000
ROA not before: Tue 02 Jul 2024 09:25:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 28756
IP address blocks: 145.64.128.0/21 maxlen: 21
145.64.128.0/22 maxlen: 22
145.64.130.0/24 maxlen: 24
145.64.132.0/22 maxlen: 22
145.64.132.0/23 maxlen: 23
145.64.134.0/24 maxlen: 24
145.64.135.0/24 maxlen: 24
145.64.136.0/22 maxlen: 22
145.64.140.0/22 maxlen: 22
145.64.144.0/20 maxlen: 20
145.64.144.0/23 maxlen: 23
145.64.146.0/24 maxlen: 24
145.64.147.0/24 maxlen: 24
145.64.148.0/24 maxlen: 24
145.64.149.0/24 maxlen: 24
145.64.157.0/24 maxlen: 24
145.64.158.0/24 maxlen: 24
145.64.159.0/24 maxlen: 24
145.64.160.0/20 maxlen: 20
145.64.160.0/24 maxlen: 24
145.64.161.0/24 maxlen: 24
145.64.162.0/24 maxlen: 24
145.64.170.0/24 maxlen: 24
145.64.240.0/21 maxlen: 21
145.64.241.0/24 maxlen: 24
145.64.242.0/24 maxlen: 24
145.64.245.0/24 maxlen: 24
145.64.246.0/24 maxlen: 24
145.64.248.0/21 maxlen: 21
145.64.248.0/22 maxlen: 22
145.64.248.0/24 maxlen: 24
145.64.250.0/24 maxlen: 24
145.64.252.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 10 Jul 2024 17:45:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:72:c3:46:8a:91:5b:52:09:b8:a0:1d:30:ff:e3:fc:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc377b5d022bf0be4a6224b47eea6ca0b81bf037
Validity
Not Before: Jul 2 09:25:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6b2dc58721c4f568752b39e01c950293482487bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:b2:e9:51:b4:48:f4:3b:fd:d5:30:42:8f:0e:
03:91:6b:b0:cf:97:4e:fb:36:94:6a:24:a9:aa:dd:
3f:9b:4d:53:91:b0:f2:46:b7:03:0e:f2:8e:22:28:
e3:da:ae:3b:79:17:38:a2:2f:9c:b4:a0:07:9c:84:
ce:a5:90:5e:8a:44:53:8a:31:70:7f:06:0c:a0:ab:
f4:3f:34:f1:c6:15:6b:c7:78:56:a4:72:03:d7:e5:
27:f4:d8:7a:7e:3e:a1:88:d8:78:d5:9e:c5:1a:8a:
12:f6:07:d5:1e:84:db:33:58:18:cd:a9:59:94:cb:
79:fd:c3:dc:a2:ef:96:b7:eb:99:aa:ed:b9:a8:f5:
ca:3b:c8:f5:62:1a:aa:6b:5f:25:33:ee:de:15:a1:
1a:6a:8a:55:d6:91:66:3a:18:b9:06:12:55:f5:73:
16:50:67:ae:f6:e5:27:bc:95:ba:7b:31:a5:df:ac:
db:7a:16:6b:05:ed:78:e2:63:f2:b2:7a:1c:f8:f6:
c9:e6:25:7d:85:42:f8:7f:2f:fb:7a:81:0b:e6:cd:
c1:34:70:67:57:b5:ee:e4:df:00:e8:88:3b:d3:a6:
77:47:c3:8d:ea:ab:4c:9d:13:2a:29:5e:8c:e2:43:
1f:ce:5e:ad:cd:06:a8:27:02:8a:3f:ac:31:db:b5:
c2:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:2D:C5:87:21:C4:F5:68:75:2B:39:E0:1C:95:02:93:48:24:87:BD
X509v3 Authority Key Identifier:
keyid:DC:37:7B:5D:02:2B:F0:BE:4A:62:24:B4:7E:EA:6C:A0:B8:1B:F0:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Dd7XQIr8L5KYiS0fupsoLgb8Dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/cc558c-35e5-4dd6-867b-8b05b778e0d5/1/ay3FhyHE9Wh1KzngHJUCk0gkh70.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/cc558c-35e5-4dd6-867b-8b05b778e0d5/1/3Dd7XQIr8L5KYiS0fupsoLgb8Dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.64.128.0-145.64.175.255
145.64.240.0/20
Signature Algorithm: sha256WithRSAEncryption
1d:99:8c:5a:da:17:be:24:bc:c4:6d:c7:05:74:b2:df:51:19:
71:b6:20:d1:1a:17:e9:c1:24:41:fd:e6:59:6e:20:7d:27:0c:
35:cd:00:6e:c5:bc:48:05:54:d4:73:d0:7f:5c:ba:71:07:5a:
3c:62:11:a1:91:27:cb:87:1b:46:d4:f7:92:64:59:f7:33:b8:
d0:36:4e:34:a6:c5:b2:61:d9:59:10:fc:3a:2c:56:c7:4c:15:
ec:a2:5f:54:98:fb:64:ec:ff:99:9c:d6:eb:76:e4:2a:1b:72:
93:cc:83:6b:f8:8c:4a:0b:9a:e0:f8:a3:e9:a0:39:18:c9:f3:
5f:0a:80:d9:fc:aa:54:2f:e2:1d:43:10:1d:16:61:da:04:f1:
94:f4:52:cb:93:cf:f6:f1:53:9f:9c:02:c7:c3:74:a6:55:d3:
76:33:bf:0d:d9:70:17:22:14:64:ee:a7:52:0c:65:56:35:a4:
5f:fd:14:b5:90:53:a4:e3:e1:0d:bf:f4:fc:4d:e1:18:ff:3e:
fc:17:77:ab:f9:92:1e:0a:56:fd:77:4e:fd:97:c9:1a:be:20:
42:bf:56:6d:2c:6f:c7:56:cc:c5:df:66:36:59:0c:40:0e:21:
5f:f7:27:48:98:62:42:49:df:83:ea:2f:57:b5:06:e0:1d:9f:
24:07:ed:cb
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Jul 10 20:21:59 2024 by rpki-client on console-ams.rpki-client.org