Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/742370-e10f-4541-aa6c-61afb66d1e8c/1/4dT0PQ741Zfh4mYyMAxdWfgHr5E.roa
File: 4dT0PQ741Zfh4mYyMAxdWfgHr5E.roa (raw, json)
Hash identifier: siV6CuoPT6xUkpeqSJdSXNjtlCjKdqzbIxJbZ92G7mU=
Subject key identifier: E1:D4:F4:3D:0E:F8:D5:97:E1:E2:66:32:30:0C:5D:59:F8:07:AF:91
Certificate issuer: /CN=19ee5f16fc144acb98977449faa0ab77de1bdcc9
Certificate serial: 0186C03678A2DE135E01AE3FF73BAA6F571F
Authority key identifier: 19:EE:5F:16:FC:14:4A:CB:98:97:74:49:FA:A0:AB:77:DE:1B:DC:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ge5fFvwUSsuYl3RJ-qCrd94b3Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/742370-e10f-4541-aa6c-61afb66d1e8c/1/4dT0PQ741Zfh4mYyMAxdWfgHr5E.roa
Signing time: Wed 08 Mar 2023 07:54:00 +0000
ROA not before: Wed 08 Mar 2023 07:54:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5384
IP address blocks: 109.177.240.0/21 maxlen: 21
109.177.248.0/21 maxlen: 21
109.177.176.0/20 maxlen: 20
109.177.192.0/20 maxlen: 20
109.177.192.0/18 maxlen: 18
109.177.208.0/20 maxlen: 20
109.177.224.0/20 maxlen: 20
109.177.16.0/20 maxlen: 20
109.177.32.0/20 maxlen: 20
109.177.48.0/20 maxlen: 20
109.177.64.0/20 maxlen: 20
109.177.0.0/20 maxlen: 20
109.177.0.0/18 maxlen: 18
109.177.0.0/17 maxlen: 17
109.177.0.0/16 maxlen: 16
109.177.128.0/17 maxlen: 17
109.177.128.0/20 maxlen: 20
109.177.128.0/18 maxlen: 18
109.177.144.0/20 maxlen: 20
109.177.160.0/20 maxlen: 20
109.177.64.0/18 maxlen: 18
109.177.80.0/20 maxlen: 20
109.177.96.0/20 maxlen: 20
109.177.112.0/20 maxlen: 20
5.192.0.0/20 maxlen: 20
5.192.0.0/18 maxlen: 18
5.192.0.0/17 maxlen: 17
5.192.0.0/16 maxlen: 16
5.192.16.0/22 maxlen: 22
5.192.20.0/22 maxlen: 22
5.192.32.0/20 maxlen: 20
5.192.160.0/23 maxlen: 23
5.192.166.0/24 maxlen: 24
5.192.162.0/24 maxlen: 24
5.192.164.0/23 maxlen: 23
5.192.168.0/23 maxlen: 23
5.192.172.0/23 maxlen: 23
5.192.170.0/24 maxlen: 24
5.192.176.0/23 maxlen: 23
5.192.178.0/24 maxlen: 24
5.192.174.0/24 maxlen: 24
5.192.180.0/23 maxlen: 23
5.192.186.0/24 maxlen: 24
5.192.182.0/24 maxlen: 24
5.192.184.0/23 maxlen: 23
5.192.188.0/23 maxlen: 23
5.192.190.0/24 maxlen: 24
5.192.192.0/23 maxlen: 23
5.192.194.0/24 maxlen: 24
5.192.192.0/18 maxlen: 18
5.192.128.0/17 maxlen: 17
5.192.130.0/24 maxlen: 24
5.192.132.0/23 maxlen: 23
5.192.128.0/23 maxlen: 23
5.192.128.0/18 maxlen: 18
5.192.138.0/24 maxlen: 24
5.192.134.0/24 maxlen: 24
5.192.136.0/23 maxlen: 23
5.192.140.0/23 maxlen: 23
5.192.144.0/23 maxlen: 23
5.192.142.0/24 maxlen: 24
5.192.152.0/23 maxlen: 23
5.192.148.0/23 maxlen: 23
5.192.150.0/24 maxlen: 24
5.192.146.0/24 maxlen: 24
5.192.154.0/24 maxlen: 24
5.192.158.0/24 maxlen: 24
5.192.156.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c0:36:78:a2:de:13:5e:01:ae:3f:f7:3b:aa:6f:57:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19ee5f16fc144acb98977449faa0ab77de1bdcc9
Validity
Not Before: Mar 8 07:54:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e1d4f43d0ef8d597e1e26632300c5d59f807af91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:29:02:53:da:f0:3e:50:d8:a0:94:a9:f7:78:
b6:67:bc:33:65:50:20:64:40:0d:03:d3:e2:8a:da:
cc:84:c2:83:47:cc:0f:7d:bf:95:6f:1c:c4:6f:09:
b2:10:c3:36:f2:61:27:d9:10:49:8a:6e:1b:9f:b3:
fd:4a:c1:21:0a:79:86:a3:e6:05:c5:1d:3d:f3:f8:
5d:3e:b1:69:56:9b:a3:bc:c1:52:f1:98:ae:b3:63:
09:60:fd:a5:3b:07:06:63:c9:3b:e4:bb:b1:66:46:
4d:32:11:b1:ce:94:95:8f:11:4c:ef:ea:c3:d6:19:
4d:93:ef:69:d8:97:c7:6c:04:54:c0:57:f4:9c:4b:
c1:37:25:6c:94:ce:8b:73:f1:28:4c:39:9d:12:63:
ef:08:7f:05:24:6c:7c:cc:51:ae:61:1d:0f:73:e2:
b4:15:0c:ed:06:be:1c:15:f3:52:b1:84:ae:40:c0:
3b:1b:e2:b0:65:b5:00:3d:33:e9:36:8f:ee:9c:88:
84:8d:82:24:a6:06:a7:26:f3:e9:c7:fb:90:fe:aa:
9d:79:6f:ab:00:1d:d5:b7:d2:87:49:f2:b7:a2:c3:
12:b4:f9:27:bf:f6:fe:8a:39:8d:ea:23:b8:83:7d:
6d:5c:a6:f0:67:78:43:b0:1c:36:7d:91:e1:39:a9:
5b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:D4:F4:3D:0E:F8:D5:97:E1:E2:66:32:30:0C:5D:59:F8:07:AF:91
X509v3 Authority Key Identifier:
keyid:19:EE:5F:16:FC:14:4A:CB:98:97:74:49:FA:A0:AB:77:DE:1B:DC:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ge5fFvwUSsuYl3RJ-qCrd94b3Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/742370-e10f-4541-aa6c-61afb66d1e8c/1/4dT0PQ741Zfh4mYyMAxdWfgHr5E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/742370-e10f-4541-aa6c-61afb66d1e8c/1/Ge5fFvwUSsuYl3RJ-qCrd94b3Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.192.0.0/16
109.177.0.0/16
Signature Algorithm: sha256WithRSAEncryption
88:d8:a6:45:10:49:51:d0:0a:26:11:c9:d4:bd:7d:48:72:8f:
e4:93:89:39:62:71:12:f9:67:5f:cd:8c:87:e0:7e:03:06:07:
50:d5:e5:43:f6:f4:c1:8b:bc:24:a6:9a:43:e8:79:09:f1:51:
89:f8:35:66:93:c3:50:19:9e:a0:aa:74:69:91:87:89:c1:fc:
b8:3f:cb:cf:f9:83:e6:79:1b:49:ba:27:67:dd:c6:3c:dc:01:
0b:6e:1b:51:c9:38:98:ce:53:57:f6:2a:ad:ea:c7:d7:3a:44:
72:d5:24:6c:bd:bb:f3:17:10:fe:7d:0b:48:58:b2:1c:6a:a2:
fb:58:31:9a:b6:2f:ee:4b:c2:1a:9c:0e:6a:bc:f8:70:e7:95:
68:90:15:de:e5:a6:b9:5e:b0:bb:a0:19:15:17:c1:0f:8e:f4:
8c:a7:1f:fa:55:6f:59:6f:f9:ed:ef:35:d1:88:7d:13:cc:66:
db:7e:91:5d:40:1c:8e:52:47:36:72:d1:97:9a:a8:f0:9c:7e:
76:5a:c9:ff:8e:a7:37:98:11:fb:8d:93:5b:34:75:ae:ef:c5:
f9:49:0a:46:26:8a:c1:be:79:b8:9a:0c:41:cf:05:ac:74:38:
90:a0:e1:93:4f:2b:93:f8:76:26:76:0c:91:36:b5:8a:e3:83:
a6:c3:32:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:21 2023 by rpki-client on console-fra.rpki-client.org