Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/yw49brWnuBE1ovM_ENP_YHiVAw8.roa
File: yw49brWnuBE1ovM_ENP_YHiVAw8.roa (raw, json)
Hash identifier: /HUYy6DHrPmvTrLTR9uAQRw0Xby0L9tUKLiFX1W8Gw4=
Subject key identifier: CB:0E:3D:6E:B5:A7:B8:11:35:A2:F3:3F:10:D3:FF:60:78:95:03:0F
Certificate issuer: /CN=5fbe65ae23f207fa695255f55a907ac1608be094
Certificate serial: 0190C259A973BC02B262AB9D92741ACF081E
Authority key identifier: 5F:BE:65:AE:23:F2:07:FA:69:52:55:F5:5A:90:7A:C1:60:8B:E0:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X75lriPyB_ppUlX1WpB6wWCL4JQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/yw49brWnuBE1ovM_ENP_YHiVAw8.roa
Signing time: Wed 17 Jul 2024 20:19:34 +0000
ROA not before: Wed 17 Jul 2024 20:19:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211183
IP address blocks: 5.253.62.0/24 maxlen: 24
37.140.241.0/24 maxlen: 24
45.128.204.0/24 maxlen: 24
79.133.181.0/24 maxlen: 24
79.133.182.0/24 maxlen: 24
79.133.183.0/24 maxlen: 24
89.191.225.0/24 maxlen: 24
91.200.84.0/24 maxlen: 24
94.154.11.0/24 maxlen: 24
185.198.152.0/24 maxlen: 24
185.240.103.0/24 maxlen: 24
185.244.51.0/24 maxlen: 24
185.250.44.0/24 maxlen: 24
185.250.46.0/24 maxlen: 24
185.250.47.0/24 maxlen: 24
193.187.96.0/24 maxlen: 24
217.171.146.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Aug 2024 07:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:c2:59:a9:73:bc:02:b2:62:ab:9d:92:74:1a:cf:08:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fbe65ae23f207fa695255f55a907ac1608be094
Validity
Not Before: Jul 17 20:19:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cb0e3d6eb5a7b81135a2f33f10d3ff607895030f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:e3:78:6f:ee:e9:48:61:b1:c1:0d:32:cf:3b:
74:76:06:59:f5:07:8a:2b:5b:42:09:8d:07:04:35:
73:7a:78:ab:b1:13:0a:21:1f:30:3f:85:d7:97:f3:
d2:b1:af:f5:bc:59:5c:d3:18:bb:bb:84:9e:37:b4:
93:52:44:73:66:9c:ad:3b:f3:0a:97:df:e7:64:f8:
ea:94:25:aa:8d:93:2d:08:f7:5b:75:53:07:93:52:
93:e5:33:2a:03:05:6a:c9:6c:b2:48:d5:c1:43:79:
ea:4d:09:c2:80:5e:39:e3:ad:99:6f:a6:52:a0:77:
c4:2b:8c:be:c3:9e:18:4a:fd:72:50:9f:fd:b2:f1:
7d:d4:19:5f:8e:ee:6e:d1:a1:a8:c9:fa:77:60:3e:
cb:eb:b3:29:dc:79:1e:2c:84:b8:64:41:9e:44:f6:
c9:54:c3:1a:7f:f6:0c:18:e0:5a:09:9b:44:cd:4b:
5f:a1:02:86:d2:d3:0b:01:f5:e1:a1:ce:e6:73:6c:
e2:7a:00:27:38:03:23:ea:ed:87:0f:2d:e8:fa:d9:
8d:f0:7b:04:bb:00:5e:3b:07:e6:d0:f1:46:7b:72:
fb:db:8e:8f:4d:a2:61:3e:10:a7:bd:eb:77:71:44:
f0:57:80:73:a8:ae:29:26:78:bf:11:8c:9f:d9:59:
f4:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:0E:3D:6E:B5:A7:B8:11:35:A2:F3:3F:10:D3:FF:60:78:95:03:0F
X509v3 Authority Key Identifier:
keyid:5F:BE:65:AE:23:F2:07:FA:69:52:55:F5:5A:90:7A:C1:60:8B:E0:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X75lriPyB_ppUlX1WpB6wWCL4JQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/yw49brWnuBE1ovM_ENP_YHiVAw8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/X75lriPyB_ppUlX1WpB6wWCL4JQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.62.0/24
37.140.241.0/24
45.128.204.0/24
79.133.181.0-79.133.183.255
89.191.225.0/24
91.200.84.0/24
94.154.11.0/24
185.198.152.0/24
185.240.103.0/24
185.244.51.0/24
185.250.44.0/24
185.250.46.0/23
193.187.96.0/24
217.171.146.0/24
Signature Algorithm: sha256WithRSAEncryption
81:8c:91:29:47:d2:ec:89:05:06:bf:95:96:7e:dc:11:11:18:
2b:a5:d5:9f:ab:be:97:86:70:5f:8f:a6:e3:49:bb:c1:30:82:
96:e9:6a:cd:a4:7f:b4:6a:b7:df:60:78:37:88:32:f2:00:a2:
f5:6f:31:91:74:02:16:5a:8f:55:80:55:05:bf:04:bd:bc:ac:
2c:8c:b1:48:26:b7:1b:fa:87:9e:d1:e3:00:12:27:5e:bb:21:
af:39:cf:bc:c1:18:60:18:97:82:7d:01:f6:e9:25:eb:6f:e0:
d1:eb:29:d4:d7:a3:77:92:7b:02:d0:4e:71:0e:c8:4b:6c:46:
f0:84:f2:79:be:c5:d1:55:3d:55:75:a8:9a:03:9a:aa:e9:81:
89:c4:0c:ad:2b:ef:1f:12:8f:46:37:ad:88:cd:3f:61:3b:33:
bd:79:80:93:95:bc:a5:95:8a:84:2d:88:74:cd:76:1c:e5:3c:
09:cb:1e:a0:75:5f:43:ad:3f:b2:48:95:e4:9c:ff:67:7d:a5:
54:43:7b:76:01:e3:10:8a:52:75:55:94:8b:4b:70:90:1f:d9:
2c:5c:5b:be:1e:e8:02:67:f7:5b:79:0f:f2:c9:ba:38:fc:d0:
d4:9a:53:2a:a9:6f:3c:f5:2b:4c:06:32:ff:4a:b0:24:de:99:
c0:a7:bd:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 12 10:21:01 2024 by rpki-client on console-fra.rpki-client.org