Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/i_yJE4trfedeGQnjO_d0V76LmKo.roa
File: i_yJE4trfedeGQnjO_d0V76LmKo.roa (raw, json)
Hash identifier: zmBLyOIbXHJAP4FSnJreUyOvxOKPPVHLyiVi/kNBMJg=
Subject key identifier: 8B:FC:89:13:8B:6B:7D:E7:5E:19:09:E3:3B:F7:74:57:BE:8B:98:AA
Certificate issuer: /CN=5fbe65ae23f207fa695255f55a907ac1608be094
Certificate serial: 018F2F540BC30F5602F8CFFE20B61EE9905B
Authority key identifier: 5F:BE:65:AE:23:F2:07:FA:69:52:55:F5:5A:90:7A:C1:60:8B:E0:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X75lriPyB_ppUlX1WpB6wWCL4JQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/i_yJE4trfedeGQnjO_d0V76LmKo.roa
Signing time: Tue 30 Apr 2024 14:06:28 +0000
ROA not before: Tue 30 Apr 2024 14:06:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49981
IP address blocks: 5.253.63.0/24 maxlen: 24
79.133.180.0/24 maxlen: 24
185.244.48.0/24 maxlen: 24
185.250.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 May 2024 13:52:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:2f:54:0b:c3:0f:56:02:f8:cf:fe:20:b6:1e:e9:90:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fbe65ae23f207fa695255f55a907ac1608be094
Validity
Not Before: Apr 30 14:06:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8bfc89138b6b7de75e1909e33bf77457be8b98aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:5e:53:48:b6:37:ba:96:b5:3e:ba:c3:49:39:
84:8c:4e:9e:35:7d:84:83:87:6b:38:b0:8c:3b:14:
04:7d:dd:ad:e0:1f:5b:ba:13:00:f1:30:64:33:2e:
fb:b1:2c:e3:f6:0b:e9:28:f0:58:53:11:7c:f1:a9:
9e:24:e2:f7:e7:67:45:d1:79:dc:59:3c:e3:02:31:
14:ff:39:cd:32:bc:8f:e8:88:2c:03:60:56:fc:4a:
ec:13:5d:d2:d6:3b:72:93:ad:38:28:85:76:fd:97:
8e:ad:7a:5d:4b:fb:0a:94:13:f4:12:99:84:8a:f6:
60:a4:99:74:e2:ac:bd:0f:94:9a:1f:d1:70:3e:53:
66:52:54:3a:4d:de:9c:a9:75:d4:46:d6:d2:92:13:
3f:8b:39:08:dc:9e:f4:bd:ec:5f:e3:5a:76:50:29:
2d:ea:f4:e0:de:41:e9:45:1a:5e:61:4d:b0:57:6c:
58:74:a2:12:c7:36:93:3d:12:77:eb:39:61:f5:36:
fa:f1:3e:a9:83:1f:f2:7e:3f:cd:bb:6c:8d:e8:d2:
e1:2d:00:38:96:24:f7:69:e2:f5:9f:f7:a5:86:e6:
59:a8:c6:fb:66:15:b7:c3:fb:85:f3:a4:d4:2c:dd:
69:04:cd:b7:5f:16:7b:46:6f:d5:a0:ac:98:4c:11:
88:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:FC:89:13:8B:6B:7D:E7:5E:19:09:E3:3B:F7:74:57:BE:8B:98:AA
X509v3 Authority Key Identifier:
keyid:5F:BE:65:AE:23:F2:07:FA:69:52:55:F5:5A:90:7A:C1:60:8B:E0:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X75lriPyB_ppUlX1WpB6wWCL4JQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/i_yJE4trfedeGQnjO_d0V76LmKo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/X75lriPyB_ppUlX1WpB6wWCL4JQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.63.0/24
79.133.180.0/24
185.244.48.0/24
185.250.45.0/24
Signature Algorithm: sha256WithRSAEncryption
01:92:c0:26:61:e5:75:2b:75:cf:5b:bf:31:6b:76:3f:bf:d0:
d9:68:27:32:bc:97:f2:3e:3e:6c:45:32:a9:a1:a2:31:27:15:
61:53:ed:a0:06:b2:05:44:20:53:b8:0c:55:be:91:18:e9:3e:
c2:c7:73:b4:fa:6d:c7:03:e8:34:46:70:4e:ce:8a:29:d6:db:
ab:1c:48:22:b0:52:d8:bf:69:5c:16:3d:39:f1:4d:cc:e4:32:
7e:ba:a7:92:17:47:51:4e:fa:90:26:05:4e:64:30:be:cf:0f:
43:57:61:15:3a:ca:ef:d3:7f:57:3f:ab:5d:a0:7a:3b:6c:19:
4e:25:38:71:fe:0a:8f:63:b3:6f:bc:78:13:1c:79:dc:de:84:
8c:df:bb:5d:07:8f:d3:d5:4d:56:18:86:2c:00:e4:1e:dd:c5:
58:41:d5:49:02:6a:b1:9d:87:16:42:0b:bf:38:51:1c:c7:1d:
53:c2:3a:b6:d6:b0:5c:a3:6a:cf:49:57:c8:60:c0:b1:8f:03:
44:7e:0b:20:47:4f:b6:b0:1b:31:12:7e:26:53:e9:ac:7d:3f:
32:73:f5:85:27:3a:5e:1a:62:97:62:f3:58:c3:d7:75:ef:20:
a9:51:be:76:61:22:af:26:4c:04:b3:6e:62:6d:3f:7b:b8:ce:
d3:a5:74:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:59 2024 by rpki-client on console-fra.rpki-client.org