Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/d76bf8-541f-4efc-98c5-c4dcc7f6b7df/1/dB5c51X54AuwUzi8EDUmFOI9m7w.roa
File: dB5c51X54AuwUzi8EDUmFOI9m7w.roa (raw, json)
Hash identifier: ZDrMuEcsucwbeKworcAdWM0ZBZzZDVGZIIVpfTD1nY4=
Subject key identifier: 74:1E:5C:E7:55:F9:E0:0B:B0:53:38:BC:10:35:26:14:E2:3D:9B:BC
Certificate issuer: /CN=bfe3971a32c0692c4e342e911790662470cf31b2
Certificate serial: 0193912D5E89D4A763B8189A06F09CA71CF5
Authority key identifier: BF:E3:97:1A:32:C0:69:2C:4E:34:2E:91:17:90:66:24:70:CF:31:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v-OXGjLAaSxONC6RF5BmJHDPMbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/d76bf8-541f-4efc-98c5-c4dcc7f6b7df/1/dB5c51X54AuwUzi8EDUmFOI9m7w.roa
Signing time: Wed 04 Dec 2024 10:18:09 +0000
ROA not before: Wed 04 Dec 2024 10:18:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201814
IP address blocks: 5.181.188.0/22 maxlen: 22
5.181.189.0/24 maxlen: 24
91.223.3.0/24 maxlen: 24
95.214.52.0/22 maxlen: 23
95.214.52.0/23 maxlen: 23
95.214.54.0/23 maxlen: 23
146.19.24.0/24 maxlen: 24
178.211.139.0/24 maxlen: 24
185.16.36.0/22 maxlen: 24
185.225.191.0/24 maxlen: 24
185.248.24.0/24 maxlen: 24
193.34.212.0/22 maxlen: 22
193.34.212.0/23 maxlen: 23
193.34.214.0/23 maxlen: 23
193.34.215.0/24 maxlen: 24
195.3.220.0/22 maxlen: 22
195.3.220.0/23 maxlen: 23
195.3.222.0/23 maxlen: 23
195.3.222.0/24 maxlen: 24
212.23.222.0/24 maxlen: 24
2a03:cfc0::/32 maxlen: 32
2a03:cfc0::/33 maxlen: 33
2a03:cfc0:8000::/33 maxlen: 33
2a09:d580::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 04 Dec 2024 13:04:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:91:2d:5e:89:d4:a7:63:b8:18:9a:06:f0:9c:a7:1c:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfe3971a32c0692c4e342e911790662470cf31b2
Validity
Not Before: Dec 4 10:18:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=741e5ce755f9e00bb05338bc10352614e23d9bbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:48:6a:11:17:15:22:e9:cf:c3:45:2f:12:89:
89:3e:41:95:db:04:4c:71:bb:dd:16:30:37:33:62:
fa:40:28:fd:f0:7b:06:70:ae:e8:b0:8c:8a:45:d9:
28:fa:99:9a:85:ce:a4:6b:85:a5:1e:1f:65:b1:26:
14:ab:99:ea:74:c3:4e:ea:6d:dc:e9:5e:f4:e2:0a:
28:93:cc:92:98:2d:d0:9d:82:d5:f2:b4:48:bc:e3:
36:84:fc:b2:68:ce:eb:94:a2:0d:4b:cd:bf:f5:8b:
93:46:5a:25:e8:7f:df:54:d2:2a:3e:70:b5:cc:dd:
d5:f9:96:1e:1a:b5:3e:62:cb:a5:e9:8d:36:29:0b:
c4:6b:ac:2d:6b:ca:09:4b:8b:91:9b:76:54:67:e8:
6f:15:0a:e2:45:83:8c:37:de:6f:36:0a:f0:03:48:
1c:b9:13:f7:89:70:95:40:a3:83:60:5a:d1:fa:71:
b7:b9:1a:d2:98:87:62:dd:34:ee:62:d6:2f:45:0e:
d2:0a:8f:e4:b3:c8:50:61:4c:18:f7:5e:79:6f:d8:
7d:df:9e:4d:42:e1:4e:82:b3:3d:86:c4:0e:cd:bc:
9a:43:8c:c6:fc:1c:16:02:5c:ee:84:5c:64:30:c8:
92:23:26:f7:a5:b6:02:8c:14:b1:e5:8c:06:5b:d2:
ef:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:1E:5C:E7:55:F9:E0:0B:B0:53:38:BC:10:35:26:14:E2:3D:9B:BC
X509v3 Authority Key Identifier:
keyid:BF:E3:97:1A:32:C0:69:2C:4E:34:2E:91:17:90:66:24:70:CF:31:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v-OXGjLAaSxONC6RF5BmJHDPMbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/d76bf8-541f-4efc-98c5-c4dcc7f6b7df/1/dB5c51X54AuwUzi8EDUmFOI9m7w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/d76bf8-541f-4efc-98c5-c4dcc7f6b7df/1/v-OXGjLAaSxONC6RF5BmJHDPMbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.188.0/22
91.223.3.0/24
95.214.52.0/22
146.19.24.0/24
178.211.139.0/24
185.16.36.0/22
185.225.191.0/24
185.248.24.0/24
193.34.212.0/22
195.3.220.0/22
212.23.222.0/24
IPv6:
2a03:cfc0::/32
2a09:d580::/29
Signature Algorithm: sha256WithRSAEncryption
6d:43:67:6d:1f:02:53:f9:94:15:c6:a5:92:29:64:57:d7:50:
08:d9:32:c8:81:a7:28:c1:0e:1d:f2:5a:82:09:69:7b:99:02:
cd:a6:09:4a:fe:1e:a2:f2:8b:3d:f2:1f:72:ed:2b:4c:78:1a:
32:d7:b3:4f:be:b8:db:a6:01:ba:ef:95:2a:84:05:31:83:81:
16:f1:dd:9e:68:5a:86:15:38:e3:0a:62:34:ee:63:4d:b7:89:
d2:90:fc:35:60:d7:07:d4:b1:5a:32:1d:e8:30:5a:b7:15:33:
b1:b3:9b:3e:0a:92:ee:b5:e5:a0:79:97:06:ed:0a:0d:83:b2:
05:39:df:92:98:63:a7:8b:59:cc:74:4f:ce:1b:87:a4:00:6a:
fc:ba:7b:14:06:7b:a4:d6:2b:ea:9f:8d:15:34:fe:f1:7e:ac:
2a:7c:14:b4:9f:03:35:df:58:19:b7:25:f4:48:d9:c1:59:0c:
f9:d5:9f:04:a6:73:f7:af:95:60:3a:31:f1:0e:b8:52:a6:e4:
d3:47:80:da:ec:cc:1d:61:45:8b:4a:70:03:eb:83:e3:ab:b4:
12:a5:0e:ff:c6:98:5b:ae:f9:4f:f6:e5:31:0c:cf:53:20:ee:
44:e2:72:cc:e2:4f:15:11:28:83:d3:bb:ee:1e:51:cc:43:9b:
88:3e:37:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 05:24:45 2025 by rpki-client