Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/4SPw5C0cNY9-9mGztn4734ek1q0.roa
File: 4SPw5C0cNY9-9mGztn4734ek1q0.roa (raw, json)
Hash identifier: 34d3FAiC/LTpC4XrGfV+PaBw/7KFPrwjHG307lP0ffQ=
Subject key identifier: E1:23:F0:E4:2D:1C:35:8F:7E:F6:61:B3:B6:7E:3B:DF:87:A4:D6:AD
Certificate issuer: /CN=81c8b73ab7bdeb76ff48b2ca099616edbe71c426
Certificate serial: 01856FCB922E493B71D9227067299A7B10AC
Authority key identifier: 81:C8:B7:3A:B7:BD:EB:76:FF:48:B2:CA:09:96:16:ED:BE:71:C4:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gci3Ore963b_SLLKCZYW7b5xxCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/4SPw5C0cNY9-9mGztn4734ek1q0.roa
Signing time: Mon 02 Jan 2023 00:04:50 +0000
ROA not before: Mon 02 Jan 2023 00:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 40676
IP address blocks: 45.81.148.0/24 maxlen: 24
185.229.243.0/24 maxlen: 24
193.39.187.0/24 maxlen: 24
5.181.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 May 2023 22:46:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:cb:92:2e:49:3b:71:d9:22:70:67:29:9a:7b:10:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81c8b73ab7bdeb76ff48b2ca099616edbe71c426
Validity
Not Before: Jan 2 00:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e123f0e42d1c358f7ef661b3b67e3bdf87a4d6ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:db:ae:2a:86:55:cf:8e:f9:59:00:b2:b7:c3:
03:43:45:2e:f3:69:c3:ee:66:7e:4e:cb:3d:6e:cc:
05:42:d7:80:37:51:a1:8d:8a:db:a6:ac:42:b2:24:
0d:82:57:91:c8:81:b2:61:24:96:60:55:2c:c5:89:
37:98:b3:e9:00:01:e0:a9:ed:69:99:07:07:e5:7b:
9a:f1:0c:12:f8:35:eb:7a:c6:db:88:11:87:3f:7b:
01:46:5a:71:24:ae:f3:95:47:64:85:65:ce:fc:cb:
69:8c:c0:92:30:90:1a:cc:0b:2a:4a:16:cd:29:01:
fa:11:7f:aa:68:2b:73:91:cd:6f:66:66:5c:29:93:
60:f9:e9:00:5d:5c:b7:28:fd:f8:e7:60:9c:4f:a2:
2f:d1:6c:fc:c5:8d:72:b8:45:44:07:79:23:eb:97:
82:38:bb:29:a9:30:a5:ca:e2:c6:20:f6:f4:7a:88:
67:4c:94:85:36:01:ea:2b:b5:57:8f:fc:15:03:fe:
f6:f3:53:39:c7:af:7e:a9:56:5b:30:b1:54:c9:29:
3b:85:d0:e1:0a:c5:00:23:78:91:cc:34:46:18:a0:
b5:04:5a:d7:b8:59:34:ab:96:12:4a:b8:ce:42:dd:
bb:a6:0c:26:4d:66:24:62:ab:bd:ea:66:b1:56:4b:
02:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:23:F0:E4:2D:1C:35:8F:7E:F6:61:B3:B6:7E:3B:DF:87:A4:D6:AD
X509v3 Authority Key Identifier:
keyid:81:C8:B7:3A:B7:BD:EB:76:FF:48:B2:CA:09:96:16:ED:BE:71:C4:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gci3Ore963b_SLLKCZYW7b5xxCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/4SPw5C0cNY9-9mGztn4734ek1q0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/gci3Ore963b_SLLKCZYW7b5xxCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.166.0/24
45.81.148.0/24
185.229.243.0/24
193.39.187.0/24
Signature Algorithm: sha256WithRSAEncryption
63:f0:46:99:df:90:ff:d3:89:1d:ab:30:6e:27:a7:7b:98:dd:
6d:e2:ea:fb:37:03:3c:e7:52:1d:71:99:fc:af:2e:81:6c:d9:
0f:c5:c9:35:41:5f:49:40:a5:73:df:a3:d6:e7:7e:2c:c9:b9:
91:a4:f7:d0:48:fe:c9:fc:50:53:a7:32:b3:0f:da:ea:0f:91:
8d:44:d7:83:06:68:c0:72:8d:86:74:8d:40:78:f8:49:99:56:
76:91:37:f2:fd:e3:58:42:0c:b5:10:d5:a1:af:e2:c9:d3:26:
d6:0a:63:17:16:c9:be:13:1d:14:16:8b:cd:e7:1f:31:72:a5:
32:d9:ce:0b:42:7c:3d:5f:8e:bb:f0:f0:92:f5:c6:ba:07:fc:
4d:87:b5:0a:ef:ab:cd:2c:53:32:a8:cb:94:43:78:ed:9e:be:
33:5c:60:74:65:e2:2f:31:d9:0e:d2:19:0b:ce:02:85:f5:35:
4e:4e:cc:b3:0d:5b:5e:f2:dc:8e:22:49:b6:d6:4f:25:06:a4:
e7:67:24:2c:d6:83:60:b4:d0:15:89:eb:45:96:e3:9a:3a:fa:
c9:9d:4f:5d:64:c3:44:52:0a:19:14:9b:77:d4:1b:16:09:53:
bc:51:08:f9:76:65:25:22:5e:2b:4f:c9:2e:dc:1f:e8:89:7c:
68:89:93:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:08 2024 by rpki-client on console-fra.rpki-client.org