Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/dc7030-78cc-4800-888d-1427dd16efa4/1/V515rtzorILXwX6L2WG6DeWBYwk.roa
File: V515rtzorILXwX6L2WG6DeWBYwk.roa (raw, json)
Hash identifier: TUOwTA2BPEkRv33cqTKjReK2Ns60ZGKpAl5XcBfCjm8=
Subject key identifier: 57:9D:79:AE:DC:E8:AC:82:D7:C1:7E:8B:D9:61:BA:0D:E5:81:63:09
Certificate issuer: /CN=2e368b0aec6c7fd48d0d96b4077a23f906a86a48
Certificate serial: 0190EEB65527BEEC3FCE815026D69BA18D2B
Authority key identifier: 2E:36:8B:0A:EC:6C:7F:D4:8D:0D:96:B4:07:7A:23:F9:06:A8:6A:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LjaLCuxsf9SNDZa0B3oj-Qaoakg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/dc7030-78cc-4800-888d-1427dd16efa4/1/V515rtzorILXwX6L2WG6DeWBYwk.roa
Signing time: Fri 26 Jul 2024 11:04:05 +0000
ROA not before: Fri 26 Jul 2024 11:04:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197328
IP address blocks: 5.255.57.0/24 maxlen: 24
5.255.61.0/24 maxlen: 24
5.255.62.0/24 maxlen: 24
5.255.63.0/24 maxlen: 24
23.252.66.0/24 maxlen: 24
91.92.112.0/23 maxlen: 23
185.4.227.0/24 maxlen: 24
185.150.2.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 Aug 2024 23:26:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ee:b6:55:27:be:ec:3f:ce:81:50:26:d6:9b:a1:8d:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e368b0aec6c7fd48d0d96b4077a23f906a86a48
Validity
Not Before: Jul 26 11:04:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=579d79aedce8ac82d7c17e8bd961ba0de5816309
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b2:5f:7d:67:72:50:78:7c:b9:d2:fc:63:fb:
5a:3d:8e:1b:04:31:52:20:3f:4f:10:86:4f:e3:c9:
dc:fe:91:44:29:8f:a5:0b:ff:13:3b:b0:fd:1b:a8:
23:9a:23:57:b4:50:0b:b0:68:d8:d5:38:8c:f3:88:
bd:a3:ee:ad:56:fc:bd:e0:3c:b8:dc:29:9d:9f:f7:
d5:c5:28:42:49:7e:f5:8a:a4:0e:e1:fc:8f:f5:14:
1c:23:82:4e:a5:e4:9a:c5:da:72:47:b3:e2:4e:cb:
2e:41:a2:b6:6b:28:92:cf:fc:de:f0:ad:28:5c:25:
d3:54:02:1d:c7:56:dd:b9:c0:09:85:97:7e:e7:87:
d1:66:0b:c6:2f:8b:3c:ea:6d:d6:cc:3d:3a:af:23:
69:b6:8a:d5:1d:7c:12:58:e1:cf:cc:90:3b:11:26:
e2:93:91:99:9e:f7:fa:52:9e:c9:5b:d0:d7:7d:f3:
82:5d:a2:d3:31:2a:ef:cc:c2:2e:bf:1a:02:45:cd:
fd:d7:f7:15:fe:f8:cd:4f:88:99:6e:5e:fe:b2:39:
09:95:6c:2d:d0:eb:a3:26:ea:5d:d7:66:b0:ae:c7:
65:11:9b:76:2e:5f:3b:80:d1:7b:c4:bc:d0:e1:64:
af:e2:69:81:67:5e:40:3d:4f:9f:e6:a0:99:7e:d5:
f0:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:9D:79:AE:DC:E8:AC:82:D7:C1:7E:8B:D9:61:BA:0D:E5:81:63:09
X509v3 Authority Key Identifier:
keyid:2E:36:8B:0A:EC:6C:7F:D4:8D:0D:96:B4:07:7A:23:F9:06:A8:6A:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LjaLCuxsf9SNDZa0B3oj-Qaoakg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/dc7030-78cc-4800-888d-1427dd16efa4/1/V515rtzorILXwX6L2WG6DeWBYwk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/dc7030-78cc-4800-888d-1427dd16efa4/1/LjaLCuxsf9SNDZa0B3oj-Qaoakg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.255.57.0/24
5.255.61.0-5.255.63.255
23.252.66.0/24
91.92.112.0/23
185.4.227.0/24
185.150.2.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:f4:62:c5:d8:8f:41:10:39:2b:0f:ed:62:39:11:6f:0a:27:
e9:b4:4a:ce:39:60:1e:a4:2f:9d:d3:39:7b:9b:d1:58:a9:63:
d7:53:be:1c:64:69:4d:d2:a2:bc:ac:c7:89:cd:37:e0:4b:1a:
68:52:a7:29:e2:f3:85:3b:94:72:55:11:49:c1:7c:a2:49:f8:
fe:c6:56:06:9f:2e:09:14:27:33:4f:bb:00:78:a1:61:1f:4c:
df:fa:6f:2e:c5:9a:60:9d:3a:18:5d:7d:98:38:71:d3:02:a8:
2b:09:f3:2a:7c:d0:f7:7f:04:c7:f5:59:95:9b:1c:3b:cd:4b:
23:b1:6a:e3:b2:5e:40:19:0d:43:64:8c:21:f4:5f:e6:4a:28:
b7:77:da:a8:24:b9:77:75:7e:94:91:39:85:a0:31:2f:e4:15:
d4:8f:5c:01:f5:8c:36:03:e3:f1:fa:ae:e2:d3:23:cc:a7:a5:
1b:9f:82:45:d1:58:59:16:7e:c2:60:09:f3:4c:1e:46:65:97:
11:a5:22:f0:6d:52:41:f8:cc:de:ab:8c:28:90:4c:8c:02:68:
34:a4:ba:d2:aa:22:24:9b:cb:43:a8:fe:b7:a7:16:de:67:6d:
32:f7:5f:f4:df:84:2e:e4:63:dd:f9:e7:17:61:9e:1a:ef:01:
e5:d4:6d:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 24 03:07:10 2024 by rpki-client on console-ams.rpki-client.org