Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/9s0Kzl_t-XY3G_BJLSzq9vQv9iU.roa
File: 9s0Kzl_t-XY3G_BJLSzq9vQv9iU.roa (raw, json)
Hash identifier: Qiexy1GiiIQNhlKH5g6VrADf3/7wye27xwvB9sNR4ec=
Subject key identifier: F6:CD:0A:CE:5F:ED:F9:76:37:1B:F0:49:2D:2C:EA:F6:F4:2F:F6:25
Certificate issuer: /CN=5fbe65ae23f207fa695255f55a907ac1608be094
Certificate serial: 018D595D2236C7367FFD37AF505DC87DE766
Authority key identifier: 5F:BE:65:AE:23:F2:07:FA:69:52:55:F5:5A:90:7A:C1:60:8B:E0:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X75lriPyB_ppUlX1WpB6wWCL4JQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/9s0Kzl_t-XY3G_BJLSzq9vQv9iU.roa
Signing time: Tue 30 Jan 2024 07:54:52 +0000
ROA not before: Tue 30 Jan 2024 07:54:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49981
IP address blocks: 5.253.63.0/24 maxlen: 24
79.133.180.0/24 maxlen: 24
185.233.184.0/24 maxlen: 24
185.244.48.0/24 maxlen: 24
185.250.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Apr 2024 14:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:59:5d:22:36:c7:36:7f:fd:37:af:50:5d:c8:7d:e7:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fbe65ae23f207fa695255f55a907ac1608be094
Validity
Not Before: Jan 30 07:54:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f6cd0ace5fedf976371bf0492d2ceaf6f42ff625
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:50:2c:6e:e6:b4:6f:ab:2a:10:a7:f6:76:76:
0c:67:75:e9:58:9a:7b:36:ba:2e:0b:64:7c:72:0d:
17:80:ff:71:b4:34:f7:f4:41:e6:18:6c:fa:60:ae:
e8:88:bf:87:b1:f6:8f:5f:ee:50:74:49:55:a2:be:
a2:0e:74:cb:c0:1c:13:05:91:c9:8b:e7:6e:59:a0:
be:4c:2d:92:88:03:96:69:9b:1e:a4:0b:92:57:2b:
19:1f:e0:af:70:18:f1:3c:bd:28:00:f2:39:86:4b:
c4:da:ee:9e:68:aa:70:99:1b:36:ea:b3:7c:18:e9:
8c:14:50:29:6d:3a:f8:9f:35:f9:27:5f:22:de:11:
46:74:4f:bc:cc:71:2c:b7:d2:9a:9d:42:bc:e2:9d:
32:7d:ee:b8:8a:70:95:11:ec:b4:6b:50:4f:db:95:
65:02:77:ea:c3:2c:7e:d9:e9:79:b0:29:a6:9d:f3:
41:04:7f:00:ae:24:aa:12:34:56:ea:95:f1:8b:e4:
7f:78:cd:f6:79:1b:7a:ff:60:e8:2e:1d:ab:61:92:
e1:bf:5d:d5:ff:37:85:75:19:89:f1:0b:70:84:fd:
d2:0b:75:18:c6:58:a9:eb:e6:cf:ed:b7:e5:f6:31:
35:f0:17:2e:c9:fd:c2:bb:94:24:f7:e7:89:d9:bd:
c4:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:CD:0A:CE:5F:ED:F9:76:37:1B:F0:49:2D:2C:EA:F6:F4:2F:F6:25
X509v3 Authority Key Identifier:
keyid:5F:BE:65:AE:23:F2:07:FA:69:52:55:F5:5A:90:7A:C1:60:8B:E0:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X75lriPyB_ppUlX1WpB6wWCL4JQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/9s0Kzl_t-XY3G_BJLSzq9vQv9iU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/X75lriPyB_ppUlX1WpB6wWCL4JQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.63.0/24
79.133.180.0/24
185.233.184.0/24
185.244.48.0/24
185.250.45.0/24
Signature Algorithm: sha256WithRSAEncryption
67:71:81:1d:b7:37:7a:cc:05:a0:f4:66:93:0f:27:eb:66:6b:
1d:4d:c9:dd:73:30:31:7c:fc:3e:29:5f:9d:d3:8f:c4:57:f7:
15:6f:63:98:0d:f9:88:72:90:06:5f:66:f1:1a:d6:ca:bd:f5:
f6:6d:3a:ea:b3:b0:20:dc:59:00:63:ab:00:35:3c:36:e6:dc:
80:7d:84:21:d8:a8:47:00:21:97:97:6d:cc:17:b3:50:32:3b:
82:95:c5:04:a8:19:80:8d:65:84:09:73:a0:ee:27:e3:56:cb:
ce:45:d7:01:3b:22:88:38:b4:ca:1a:9e:1e:a3:ab:4a:4d:9d:
5a:b3:30:97:7c:a7:b8:93:70:63:1c:9d:32:0e:e0:62:a6:13:
d0:38:5d:ef:c0:fb:18:db:b5:70:65:8b:0d:c4:2b:26:14:6c:
9c:42:3e:29:2e:6f:d9:b0:17:99:6c:fb:a9:4e:c6:87:20:a6:
de:da:81:19:27:1c:00:9e:c0:73:4c:60:cd:40:e8:13:c3:5b:
5a:41:1b:24:49:55:63:68:23:18:0a:01:da:e0:34:26:8a:d4:
19:44:ac:48:52:30:58:82:7c:38:38:11:e6:5b:66:62:f9:ff:
93:70:f0:2b:96:cf:97:44:2c:3c:b9:7a:56:6d:c7:28:51:5e:
9a:b7:86:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:59 2024 by rpki-client on console-fra.rpki-client.org