Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/FLOYWT9wxbxwN6j10z3t_RAVss8.roa
File: FLOYWT9wxbxwN6j10z3t_RAVss8.roa (raw, json)
Hash identifier: BjbVocywgIWm1iQLz94Dx6k0TYZzodeBg2HYLFe7kQw=
Subject key identifier: 14:B3:98:59:3F:70:C5:BC:70:37:A8:F5:D3:3D:ED:FD:10:15:B2:CF
Certificate issuer: /CN=0ef5cb2f590d041654f4dfdb60a28f9a1544f444
Certificate serial: 0185CA080F26916260F5817BEA3E55CA3A57
Authority key identifier: 0E:F5:CB:2F:59:0D:04:16:54:F4:DF:DB:60:A2:8F:9A:15:44:F4:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/FLOYWT9wxbxwN6j10z3t_RAVss8.roa
Signing time: Thu 19 Jan 2023 12:36:43 +0000
ROA not before: Thu 19 Jan 2023 12:36:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58061
IP address blocks: 37.252.3.0/24 maxlen: 24
37.252.14.0/23 maxlen: 23
37.252.13.0/24 maxlen: 24
213.142.146.0/23 maxlen: 23
185.238.170.0/23 maxlen: 23
185.238.168.0/23 maxlen: 23
37.1.200.0/21 maxlen: 21
37.1.216.0/21 maxlen: 21
5.45.72.0/22 maxlen: 22
5.45.76.0/22 maxlen: 22
5.45.84.0/22 maxlen: 22
5.45.88.0/22 maxlen: 22
5.45.92.0/22 maxlen: 22
176.97.79.0/24 maxlen: 24
46.102.106.0/24 maxlen: 24
5.61.48.0/22 maxlen: 22
5.61.56.0/22 maxlen: 22
5.61.52.0/22 maxlen: 22
5.45.64.0/21 maxlen: 21
45.136.48.0/22 maxlen: 22
2a02:c6c3::/32 maxlen: 32
2a02:c6c1:2::/48 maxlen: 48
2a02:c6c2::/32 maxlen: 32
Validation: Failed, certificate revoked on Sat 21 Jan 2023 10:33:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ca:08:0f:26:91:62:60:f5:81:7b:ea:3e:55:ca:3a:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ef5cb2f590d041654f4dfdb60a28f9a1544f444
Validity
Not Before: Jan 19 12:36:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=14b398593f70c5bc7037a8f5d33dedfd1015b2cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:39:a9:1a:78:04:90:77:9e:1a:46:fb:e1:50:
63:f7:fe:5c:21:4d:93:56:05:df:79:c3:cf:98:b4:
ed:80:76:73:dd:1f:07:5f:12:ec:48:b3:ca:ad:c2:
d8:10:12:f3:70:95:0d:81:d4:99:26:37:c2:3d:b4:
92:7a:bf:1a:b0:c7:89:2e:22:95:db:4c:a5:f2:00:
90:13:ee:e2:08:0f:c8:88:d7:ed:d2:88:42:80:3c:
eb:4d:c5:37:9f:cc:7d:79:28:52:85:5d:51:66:70:
18:9c:1d:14:bf:50:52:b4:8e:f9:c1:03:a6:8b:8c:
df:df:b0:cd:03:31:1b:c2:f7:09:5e:83:65:d0:4d:
10:22:c0:4c:33:aa:7e:2a:16:4c:8e:2a:c9:b8:ba:
8e:e1:e0:2b:3f:6c:07:8c:84:5c:af:e9:4a:94:e2:
fd:0f:1b:7c:0d:93:f8:84:7a:e3:08:4a:44:12:2e:
cb:0b:d9:58:bf:52:86:08:5f:92:67:fd:44:f4:f0:
29:77:81:41:22:26:39:99:0c:7f:a4:a7:ca:f0:a6:
65:c6:4a:b1:6f:0f:c0:f2:e6:95:9e:ff:2f:c7:37:
d5:56:87:33:fe:44:c5:b0:43:f4:c4:f0:40:21:9b:
a5:fb:e8:2f:e3:dd:48:68:82:58:cf:b0:dc:ac:d3:
17:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:B3:98:59:3F:70:C5:BC:70:37:A8:F5:D3:3D:ED:FD:10:15:B2:CF
X509v3 Authority Key Identifier:
keyid:0E:F5:CB:2F:59:0D:04:16:54:F4:DF:DB:60:A2:8F:9A:15:44:F4:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/FLOYWT9wxbxwN6j10z3t_RAVss8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.45.64.0/20
5.45.84.0-5.45.95.255
5.61.48.0-5.61.59.255
37.1.200.0/21
37.1.216.0/21
37.252.3.0/24
37.252.13.0-37.252.15.255
45.136.48.0/22
46.102.106.0/24
176.97.79.0/24
185.238.168.0/22
213.142.146.0/23
IPv6:
2a02:c6c1:2::/48
2a02:c6c2::/31
Signature Algorithm: sha256WithRSAEncryption
84:69:64:b9:9f:2b:5a:b2:cf:86:e4:fd:1f:25:b0:10:7d:47:
94:92:16:4a:ee:2c:2a:fa:d4:40:76:15:d4:a3:9b:3f:2c:b4:
cb:39:ae:07:13:5d:8f:6e:3d:af:ff:30:03:fa:7c:40:b8:dd:
ac:1b:2b:2a:23:a7:70:40:58:cd:c6:c6:96:e5:da:7a:c9:73:
ae:7d:88:0c:c7:d5:81:da:4f:c0:6a:31:47:f8:9b:5d:10:a4:
6a:e9:a3:7d:13:36:18:2d:3d:4b:c8:e4:d3:be:7b:ad:ad:cb:
db:0f:f1:d2:73:4d:05:a9:d8:80:57:9a:11:f8:f9:47:9a:63:
85:1a:2d:6a:fc:0f:19:78:c7:3a:31:15:9e:c4:05:31:7c:fb:
43:b6:fc:fb:1c:b1:08:65:88:4b:be:9f:f7:d3:97:c3:c5:5e:
e8:af:a8:77:77:9b:3b:64:d6:f9:83:9d:ab:0e:64:3c:69:7c:
85:02:23:65:d8:f7:91:d5:c5:bf:5a:cd:b9:ae:ed:3d:d7:6a:
0b:43:6b:d0:2b:af:c4:76:1e:75:e1:93:6f:1e:da:2f:18:ff:
03:04:6a:9c:02:9f:a3:c8:27:b1:14:ee:a8:ad:cc:85:a1:13:
06:7f:90:e3:fa:ec:6a:11:f0:fa:8d:26:a4:a3:22:20:8e:a2:
d5:74:87:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:42 2024 by rpki-client on console-ams.rpki-client.org