Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/31c815-d96a-4bb6-8ccf-f2b81079b746/1/JFezLD-QK5ph-hRcXS3UnByGxHE.roa
File: JFezLD-QK5ph-hRcXS3UnByGxHE.roa (raw, json)
Hash identifier: ytbAOd5iZsbfj1OvP51DH+0uI05IYjAqEpfzqaTLSTg=
Subject key identifier: 24:57:B3:2C:3F:90:2B:9A:61:FA:14:5C:5D:2D:D4:9C:1C:86:C4:71
Certificate issuer: /CN=b2853aa1eb32bfee0feb1483c14936d101f16edf
Certificate serial: 019061F70CC887D83F5E72C045FDA71FF68A
Authority key identifier: B2:85:3A:A1:EB:32:BF:EE:0F:EB:14:83:C1:49:36:D1:01:F1:6E:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/soU6oesyv-4P6xSDwUk20QHxbt8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/31c815-d96a-4bb6-8ccf-f2b81079b746/1/JFezLD-QK5ph-hRcXS3UnByGxHE.roa
Signing time: Sat 29 Jun 2024 03:08:18 +0000
ROA not before: Sat 29 Jun 2024 03:08:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57724
IP address blocks: 45.10.240.0/22 maxlen: 32
45.10.240.0/24 maxlen: 24
45.10.241.0/24 maxlen: 24
45.10.242.0/24 maxlen: 24
45.10.243.0/24 maxlen: 24
91.215.40.0/24 maxlen: 32
91.215.41.0/24 maxlen: 24
91.215.42.0/24 maxlen: 24
91.215.43.0/24 maxlen: 24
95.129.232.0/24 maxlen: 32
95.129.233.0/24 maxlen: 32
185.129.100.0/24 maxlen: 24
185.129.101.0/24 maxlen: 24
185.129.102.0/24 maxlen: 24
185.129.103.0/24 maxlen: 24
185.178.208.0/24 maxlen: 24
185.178.209.0/24 maxlen: 24
185.178.210.0/24 maxlen: 24
2a0a:4180::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jul 2024 04:16:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:61:f7:0c:c8:87:d8:3f:5e:72:c0:45:fd:a7:1f:f6:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2853aa1eb32bfee0feb1483c14936d101f16edf
Validity
Not Before: Jun 29 03:08:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2457b32c3f902b9a61fa145c5d2dd49c1c86c471
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:65:97:ba:a6:b2:6e:83:3f:0a:24:9d:ca:06:
5d:5f:83:b0:b5:14:e5:8c:08:8a:5e:61:11:35:69:
38:ac:e2:a8:fc:25:f7:05:60:b5:c8:7b:93:69:6c:
b6:a6:1f:57:40:ab:5c:20:80:da:c7:2f:09:a0:45:
95:d5:a5:a4:d0:e1:8a:63:1f:45:cd:29:0b:11:bb:
d7:3b:df:35:8c:47:83:18:49:87:30:9a:e3:5f:c7:
63:c9:86:f0:fb:81:e7:1d:10:00:c4:e6:fd:88:04:
89:5e:de:e7:56:06:60:94:ea:1e:09:11:ef:af:01:
fa:f8:fb:b5:31:9e:a7:24:a6:84:cf:84:6b:f9:7f:
9f:13:5a:0f:e4:6f:f3:c5:f9:68:69:81:11:91:f0:
93:3c:91:84:1e:ec:38:c9:ae:a1:c5:c4:18:b6:d3:
0e:c9:fd:a3:12:2a:93:82:7e:47:51:e2:df:0d:c2:
f1:15:35:96:3d:ae:59:2c:c3:b3:9c:ec:74:1f:f3:
e2:f2:21:5b:3c:3c:56:2e:7d:1a:d5:85:60:86:4a:
e0:6f:71:85:e6:51:00:d8:f1:cb:e2:df:17:bb:45:
74:a9:95:fd:33:a4:63:dc:57:0f:bd:f6:18:a1:a6:
65:87:b9:59:ef:44:e7:f9:46:9e:d5:f2:a8:09:fc:
96:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:57:B3:2C:3F:90:2B:9A:61:FA:14:5C:5D:2D:D4:9C:1C:86:C4:71
X509v3 Authority Key Identifier:
keyid:B2:85:3A:A1:EB:32:BF:EE:0F:EB:14:83:C1:49:36:D1:01:F1:6E:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/soU6oesyv-4P6xSDwUk20QHxbt8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/31c815-d96a-4bb6-8ccf-f2b81079b746/1/JFezLD-QK5ph-hRcXS3UnByGxHE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/31c815-d96a-4bb6-8ccf-f2b81079b746/1/soU6oesyv-4P6xSDwUk20QHxbt8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.240.0/22
91.215.40.0/22
95.129.232.0/23
185.129.100.0/22
185.178.208.0-185.178.210.255
IPv6:
2a0a:4180::/48
Signature Algorithm: sha256WithRSAEncryption
7f:e6:61:3f:be:3a:cd:2b:c3:7b:fa:04:08:89:92:97:b6:ea:
d6:00:39:e4:09:a9:f4:6a:c1:1d:b4:ba:31:d1:2e:d1:9a:36:
be:ee:af:f5:6d:e3:10:1c:76:28:23:07:30:0f:fb:74:99:f6:
15:b7:85:af:f8:9b:ff:cd:fa:b1:25:98:1a:77:68:51:96:1e:
76:3c:e5:25:7f:d5:cf:e0:a8:b9:d5:41:92:dc:17:22:a5:88:
93:a5:cf:65:2d:8d:75:ef:1b:86:a7:5a:6a:01:ae:3b:4e:ac:
1b:09:00:1a:b7:01:5b:e9:6b:9a:f4:fe:bb:c4:df:54:7c:4b:
d7:9e:c6:3e:18:33:e7:ba:07:8c:45:d4:56:56:13:5c:d6:15:
9a:a3:fe:55:33:7e:d8:82:24:11:a7:47:3d:04:15:2f:a8:fa:
e6:18:15:4f:75:1f:76:de:39:22:48:fe:b9:ea:24:36:4d:d7:
a8:e7:43:66:30:65:dc:eb:4b:27:e6:58:80:1d:96:2b:6a:07:
46:ec:4d:ef:3e:c7:91:96:9f:f2:0d:a2:78:4a:b5:9d:11:fb:
25:4d:82:c2:0e:65:17:49:e2:1e:a6:5e:81:bc:a2:c9:20:45:
fe:08:fd:11:5d:60:10:1a:04:fa:e4:23:ff:0a:32:0c:ff:1a:
3b:7b:5d:a2
-----BEGIN CERTIFICATE-----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Generated at Tue Jul 2 06:14:00 2024 by rpki-client on console-ams.rpki-client.org