Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/c13e12-e50d-4338-8a2f-fffb5a4e762a/1/5H4xspQ2JK-2mDW5-HeKYUj9BEA.roa
File: 5H4xspQ2JK-2mDW5-HeKYUj9BEA.roa (raw, json)
Hash identifier: 7NLCxXj/UA1AYl6Hg/2+MNilopwvyy8CX44fSYQgAS8=
Subject key identifier: E4:7E:31:B2:94:36:24:AF:B6:98:35:B9:F8:77:8A:61:48:FD:04:40
Certificate issuer: /CN=27d7304c1b59dc22731bb53eff5a84ed9a30614c
Certificate serial: 018ACCA62D6E42A158FF7EAF967314A5DFFD
Authority key identifier: 27:D7:30:4C:1B:59:DC:22:73:1B:B5:3E:FF:5A:84:ED:9A:30:61:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J9cwTBtZ3CJzG7U-_1qE7ZowYUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/c13e12-e50d-4338-8a2f-fffb5a4e762a/1/5H4xspQ2JK-2mDW5-HeKYUj9BEA.roa
Signing time: Mon 25 Sep 2023 14:02:37 +0000
ROA not before: Mon 25 Sep 2023 14:02:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60781
IP address blocks: 83.149.64.0/18 maxlen: 18
212.7.208.0/22 maxlen: 22
37.48.64.0/18 maxlen: 18
212.32.224.0/19 maxlen: 19
185.17.184.0/22 maxlen: 22
81.171.0.0/19 maxlen: 19
178.162.164.0/22 maxlen: 22
178.162.168.0/22 maxlen: 22
212.7.192.0/20 maxlen: 20
178.162.176.0/20 maxlen: 20
89.149.192.0/20 maxlen: 20
89.149.192.0/18 maxlen: 18
94.75.192.0/18 maxlen: 18
95.168.160.0/20 maxlen: 20
82.192.64.0/19 maxlen: 19
81.17.51.0/24 maxlen: 24
81.17.50.0/24 maxlen: 24
81.17.49.0/24 maxlen: 24
81.17.47.0/24 maxlen: 24
81.17.55.0/24 maxlen: 24
81.17.54.0/24 maxlen: 24
81.17.53.0/24 maxlen: 24
81.17.52.0/24 maxlen: 24
62.212.64.0/19 maxlen: 19
5.79.64.0/18 maxlen: 18
213.227.128.0/19 maxlen: 19
173.234.68.0/22 maxlen: 22
85.17.0.0/16 maxlen: 16
178.162.128.0/18 maxlen: 18
95.211.0.0/16 maxlen: 16
2001:1af8::/32 maxlen: 32
2001:1af8:8000::/36 maxlen: 36
2001:1af8:8000::/40 maxlen: 40
2001:1af8:8110::/44 maxlen: 44
2001:1af8:8100::/44 maxlen: 44
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:cc:a6:2d:6e:42:a1:58:ff:7e:af:96:73:14:a5:df:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27d7304c1b59dc22731bb53eff5a84ed9a30614c
Validity
Not Before: Sep 25 14:02:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e47e31b2943624afb69835b9f8778a6148fd0440
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:47:34:6e:39:19:ed:9c:f1:e8:fe:81:b6:96:
fc:ca:46:12:b0:ae:f1:71:a3:99:7e:13:09:7d:67:
18:76:87:13:6e:db:f1:34:82:24:a5:b7:99:95:50:
0a:7a:68:49:8f:08:e3:1f:c8:98:9b:8c:ba:4c:c3:
7b:c1:01:bd:6b:82:4e:91:2a:e4:76:b1:85:6a:f4:
6f:fa:99:16:87:50:35:9b:05:d4:fb:15:17:50:40:
9a:4e:96:20:52:36:51:9a:e8:00:45:f6:3f:c3:1b:
49:11:a1:bf:9f:a2:4b:7f:6d:e1:b6:12:77:f2:0e:
3c:44:9e:66:e2:dd:16:2b:06:20:4e:15:22:6f:0d:
25:bd:8f:89:70:83:68:9a:bb:9e:38:af:12:a2:00:
d1:74:27:75:98:f1:8c:22:c6:30:a3:07:b3:85:6d:
6b:b9:aa:7a:3c:b2:58:61:96:a2:6b:25:75:71:2a:
c3:61:a4:50:4c:89:1d:19:83:c7:1c:74:bf:c5:1d:
8a:b7:24:26:bc:fc:c9:ea:47:75:a6:80:d2:99:c9:
f0:8d:6b:49:12:bd:47:64:9c:40:e6:76:55:50:90:
84:2a:38:62:4c:19:57:e8:d9:98:16:fa:5f:63:41:
6d:6c:41:c5:47:d4:e4:6a:6b:20:1a:3c:6d:39:50:
d2:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:7E:31:B2:94:36:24:AF:B6:98:35:B9:F8:77:8A:61:48:FD:04:40
X509v3 Authority Key Identifier:
keyid:27:D7:30:4C:1B:59:DC:22:73:1B:B5:3E:FF:5A:84:ED:9A:30:61:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J9cwTBtZ3CJzG7U-_1qE7ZowYUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/c13e12-e50d-4338-8a2f-fffb5a4e762a/1/5H4xspQ2JK-2mDW5-HeKYUj9BEA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/c13e12-e50d-4338-8a2f-fffb5a4e762a/1/J9cwTBtZ3CJzG7U-_1qE7ZowYUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.79.64.0/18
37.48.64.0/18
62.212.64.0/19
81.17.47.0/24
81.17.49.0-81.17.55.255
81.171.0.0/19
82.192.64.0/19
83.149.64.0/18
85.17.0.0/16
89.149.192.0/18
94.75.192.0/18
95.168.160.0/20
95.211.0.0/16
173.234.68.0/22
178.162.128.0/18
185.17.184.0/22
212.7.192.0-212.7.211.255
212.32.224.0/19
213.227.128.0/19
IPv6:
2001:1af8::/32
Signature Algorithm: sha256WithRSAEncryption
56:3a:6f:fc:c4:80:ca:56:53:f0:39:39:d2:bc:ad:9d:b8:64:
d6:cd:95:4f:97:50:d4:82:1d:6b:05:08:e7:82:de:12:00:b5:
92:a3:f8:f8:33:62:d2:b2:a9:a1:d2:20:26:f7:18:54:eb:a7:
a6:07:30:9f:6a:c7:48:fb:47:51:1b:4f:e3:5a:e0:ec:6f:c3:
6a:51:21:3f:5b:a8:5a:82:ab:08:28:24:6e:04:6f:84:a1:5e:
05:ec:98:7b:5b:33:48:65:ca:01:6d:3e:ff:2e:9f:6f:71:9c:
1b:18:73:c8:9e:d3:ab:0a:58:a6:c6:79:21:9a:ad:86:33:5f:
ca:ac:94:1c:e1:48:90:ef:95:4d:26:f5:96:1a:99:59:3e:47:
c0:3d:09:4a:6f:f1:b2:30:1c:af:83:00:12:6c:3b:50:3c:d8:
84:70:50:88:57:e2:3e:ec:9a:07:9d:59:5a:55:da:91:81:4f:
95:ff:a3:37:dd:6e:65:7a:9f:1b:78:06:88:b4:77:88:de:c0:
3e:ff:75:ae:72:3b:e9:cb:cb:91:8f:39:80:07:8d:e5:78:a7:
6b:8b:9e:38:10:50:88:3e:84:b0:cd:2a:4e:6c:7c:58:cb:3a:
a6:dc:92:89:53:08:38:c8:0c:ab:cc:5c:08:4f:14:e6:bc:ab:
3d:32:73:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:51 2024 by rpki-client on console-fra.rpki-client.org