Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/ObkHun1qoYndo80dtRSZvg6uqS4.roa
File: ObkHun1qoYndo80dtRSZvg6uqS4.roa (raw, json)
Hash identifier: xAnDRSypH4fMOJ0TqkPHmiU90tR1qvyUb5Qw2UGynm8=
Subject key identifier: 39:B9:07:BA:7D:6A:A1:89:DD:A3:CD:1D:B5:14:99:BE:0E:AE:A9:2E
Certificate issuer: /CN=0ef5cb2f590d041654f4dfdb60a28f9a1544f444
Certificate serial: 0188F8633547A6447FB186B8F75E8EFA454E
Authority key identifier: 0E:F5:CB:2F:59:0D:04:16:54:F4:DF:DB:60:A2:8F:9A:15:44:F4:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/ObkHun1qoYndo80dtRSZvg6uqS4.roa
Signing time: Mon 26 Jun 2023 15:47:11 +0000
ROA not before: Mon 26 Jun 2023 15:47:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58061
IP address blocks: 37.252.3.0/24 maxlen: 24
37.252.14.0/23 maxlen: 23
37.252.13.0/24 maxlen: 24
213.142.146.0/23 maxlen: 23
185.238.170.0/23 maxlen: 23
185.238.168.0/23 maxlen: 23
5.45.72.0/22 maxlen: 22
5.45.76.0/22 maxlen: 22
5.45.84.0/22 maxlen: 22
188.116.24.0/24 maxlen: 24
188.116.23.0/24 maxlen: 24
188.116.21.0/24 maxlen: 24
5.45.88.0/22 maxlen: 22
5.45.92.0/22 maxlen: 22
188.116.26.0/24 maxlen: 24
176.97.79.0/24 maxlen: 24
46.102.106.0/24 maxlen: 24
5.45.64.0/21 maxlen: 21
45.136.48.0/22 maxlen: 22
37.1.200.0/21 maxlen: 21
62.197.48.0/23 maxlen: 23
37.1.216.0/21 maxlen: 21
5.61.48.0/22 maxlen: 22
5.61.56.0/22 maxlen: 22
5.61.52.0/22 maxlen: 22
2a02:c6c3::/32 maxlen: 32
2a02:c6c1:2::/48 maxlen: 48
2a02:c6c2::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 10 Jul 2023 15:14:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:f8:63:35:47:a6:44:7f:b1:86:b8:f7:5e:8e:fa:45:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ef5cb2f590d041654f4dfdb60a28f9a1544f444
Validity
Not Before: Jun 26 15:47:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=39b907ba7d6aa189dda3cd1db51499be0eaea92e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:67:df:76:ba:72:9f:df:c9:f7:bf:21:86:09:
29:32:0c:f0:c5:1e:6f:43:74:e1:e8:29:7d:42:47:
a5:ec:f1:fa:c8:ea:ab:31:2b:4a:fb:9b:5e:4e:cc:
b7:09:d7:a0:43:59:9c:37:90:97:70:e0:44:53:ae:
8b:1e:62:e5:19:7e:9f:4c:90:50:a4:15:36:ba:40:
6b:59:c9:33:8f:5f:59:6c:2c:71:0d:1f:f2:d3:3e:
95:5f:da:42:e4:70:34:37:75:20:af:b4:80:c4:47:
e2:a3:5f:b5:e6:cc:c2:3d:5b:c7:3e:b4:2f:dc:2f:
ab:22:cf:a0:6f:2f:50:25:35:cb:2c:6a:70:de:12:
a8:97:6f:d2:fa:64:22:a9:7e:de:7c:1f:0a:6e:ac:
3d:09:a3:5e:b6:e9:98:1b:ef:81:7f:e7:39:ac:58:
37:6f:75:c2:e8:db:61:01:76:b1:38:a6:f1:16:af:
96:62:85:89:1d:41:ac:2a:6a:06:eb:aa:3f:ab:e9:
10:4c:7b:e6:f2:c4:05:73:b2:eb:f2:cf:90:08:3d:
47:b7:86:9f:83:8c:a8:e0:09:a4:7d:a0:bc:79:9a:
5c:c7:75:40:e4:dd:8c:b8:55:68:f8:25:be:f6:9c:
76:ea:88:62:47:5e:80:9a:26:3a:34:1a:2f:e4:a5:
b5:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:B9:07:BA:7D:6A:A1:89:DD:A3:CD:1D:B5:14:99:BE:0E:AE:A9:2E
X509v3 Authority Key Identifier:
keyid:0E:F5:CB:2F:59:0D:04:16:54:F4:DF:DB:60:A2:8F:9A:15:44:F4:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/ObkHun1qoYndo80dtRSZvg6uqS4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.45.64.0/20
5.45.84.0-5.45.95.255
5.61.48.0-5.61.59.255
37.1.200.0/21
37.1.216.0/21
37.252.3.0/24
37.252.13.0-37.252.15.255
45.136.48.0/22
46.102.106.0/24
62.197.48.0/23
176.97.79.0/24
185.238.168.0/22
188.116.21.0/24
188.116.23.0-188.116.24.255
188.116.26.0/24
213.142.146.0/23
IPv6:
2a02:c6c1:2::/48
2a02:c6c2::/31
Signature Algorithm: sha256WithRSAEncryption
2a:48:cb:c4:70:23:c8:4f:08:e7:b3:18:3b:79:19:b6:36:f2:
ae:de:91:f8:b4:80:e3:ad:f9:5f:95:7f:20:cc:40:02:26:39:
97:1c:57:40:39:e1:9a:df:85:f9:2d:98:b0:fe:cd:3d:88:11:
b5:1f:dd:e1:84:3c:b4:c3:2d:f4:86:b5:24:62:8e:48:11:0e:
af:15:ec:e3:e0:70:1a:ab:d0:2f:65:b4:1c:bc:68:4f:f7:51:
eb:36:cd:40:69:e8:0f:84:04:26:97:59:be:fe:8d:c3:db:c1:
a5:71:6d:b8:ab:9d:38:c2:ae:cb:ac:cc:8c:30:bb:6f:3f:77:
fe:ea:5f:ea:f3:3f:ed:8a:9a:46:fb:17:74:dc:0a:dd:15:0e:
bd:27:11:6c:06:66:4b:34:25:90:fd:60:29:ec:4c:eb:3d:43:
b1:77:9a:31:da:1a:20:4f:10:ac:73:32:ce:34:a9:2b:56:65:
b5:d5:73:f6:8a:9c:69:44:9e:b6:ae:45:92:fe:a7:6d:f2:0a:
c9:86:e9:30:bb:05:74:f2:71:d5:ea:6d:65:b5:0b:07:4e:a4:
8a:29:5e:39:f3:95:ad:69:0e:f1:5c:44:ae:4f:e2:2d:d6:97:
78:70:8b:a2:34:02:66:4a:7f:2f:5e:fb:ad:46:2b:4e:0e:42:
c7:b7:ba:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:42 2024 by rpki-client on console-ams.rpki-client.org