Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/742370-e10f-4541-aa6c-61afb66d1e8c/1/R64S5hqSDAn5vvLiorAhZvWCJZk.roa
File: R64S5hqSDAn5vvLiorAhZvWCJZk.roa (raw, json)
Hash identifier: eaOZ/WsXJa2OEzebbd5Yy0I4shcuuX+/NfM2+FJFrAE=
Subject key identifier: 47:AE:12:E6:1A:92:0C:09:F9:BE:F2:E2:A2:B0:21:66:F5:82:25:99
Certificate issuer: /CN=19ee5f16fc144acb98977449faa0ab77de1bdcc9
Certificate serial: 018D87DB57EB73F59DBE52B4CAFAFFEE91CD
Authority key identifier: 19:EE:5F:16:FC:14:4A:CB:98:97:74:49:FA:A0:AB:77:DE:1B:DC:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ge5fFvwUSsuYl3RJ-qCrd94b3Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/742370-e10f-4541-aa6c-61afb66d1e8c/1/R64S5hqSDAn5vvLiorAhZvWCJZk.roa
Signing time: Thu 08 Feb 2024 08:35:15 +0000
ROA not before: Thu 08 Feb 2024 08:35:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8966
IP address blocks: 5.195.166.0/23 maxlen: 24
5.195.166.0/24 maxlen: 24
5.195.167.0/24 maxlen: 24
5.195.172.0/24 maxlen: 24
5.195.173.0/24 maxlen: 24
5.195.174.0/24 maxlen: 24
5.195.175.0/24 maxlen: 24
5.195.208.0/24 maxlen: 24
5.195.223.0/24 maxlen: 24
31.219.177.0/24 maxlen: 24
31.219.177.0/25 maxlen: 25
31.219.177.128/25 maxlen: 25
31.219.179.0/24 maxlen: 24
31.219.180.0/24 maxlen: 24
194.170.165.0/24 maxlen: 24
194.170.186.0/24 maxlen: 24
195.229.0.0/19 maxlen: 19
195.229.0.0/24 maxlen: 24
195.229.1.0/24 maxlen: 24
195.229.2.0/24 maxlen: 24
195.229.3.0/24 maxlen: 24
195.229.4.0/24 maxlen: 24
195.229.5.0/24 maxlen: 24
195.229.6.0/24 maxlen: 24
195.229.12.0/24 maxlen: 24
195.229.27.0/24 maxlen: 24
195.229.31.0/24 maxlen: 24
195.229.34.0/24 maxlen: 24
2001:8f8::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 22 May 2024 10:15:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:87:db:57:eb:73:f5:9d:be:52:b4:ca:fa:ff:ee:91:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19ee5f16fc144acb98977449faa0ab77de1bdcc9
Validity
Not Before: Feb 8 08:35:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=47ae12e61a920c09f9bef2e2a2b02166f5822599
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e1:0e:0e:53:d7:bf:dc:16:8e:39:6b:75:09:
74:23:7a:be:58:77:48:6f:e3:db:4a:e4:66:47:9a:
b6:6d:27:61:63:8d:7f:38:57:86:aa:31:26:fd:bb:
d8:f0:eb:05:41:f2:90:3c:5e:59:cb:c5:84:51:8a:
40:83:4a:6c:01:a5:5e:5f:a3:87:e6:da:11:f4:34:
23:0d:25:d8:6a:08:4a:fe:78:57:ce:04:4e:7c:55:
cb:b4:fb:1b:b8:50:17:0f:ad:74:5d:b8:5b:f6:c9:
61:b1:42:57:76:85:36:c1:54:63:e5:b8:88:ae:84:
e8:5b:80:67:cc:6a:1f:e5:34:70:c5:5f:32:ee:58:
b8:ae:52:71:aa:a6:02:3b:eb:1f:c0:5b:4d:c3:49:
21:ab:04:ea:ea:9f:0b:18:4e:ca:18:8d:0a:bb:20:
52:9f:5f:a4:51:c0:5f:1e:51:f5:ca:ad:0e:a4:92:
d5:36:26:92:cb:72:63:67:2e:6a:12:3a:34:06:b0:
e2:10:58:8b:16:e7:4e:a8:77:14:af:38:6e:3b:7c:
3f:b5:f8:32:49:a4:fa:c1:8d:01:f4:ba:2e:63:fa:
66:cf:16:d8:96:54:a8:d9:35:46:e7:3c:46:3a:cb:
d6:f0:e5:fa:55:c4:6b:e3:78:54:57:53:26:f8:ee:
8a:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:AE:12:E6:1A:92:0C:09:F9:BE:F2:E2:A2:B0:21:66:F5:82:25:99
X509v3 Authority Key Identifier:
keyid:19:EE:5F:16:FC:14:4A:CB:98:97:74:49:FA:A0:AB:77:DE:1B:DC:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ge5fFvwUSsuYl3RJ-qCrd94b3Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/742370-e10f-4541-aa6c-61afb66d1e8c/1/R64S5hqSDAn5vvLiorAhZvWCJZk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/742370-e10f-4541-aa6c-61afb66d1e8c/1/Ge5fFvwUSsuYl3RJ-qCrd94b3Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.195.166.0/23
5.195.172.0/22
5.195.208.0/24
5.195.223.0/24
31.219.177.0/24
31.219.179.0-31.219.180.255
194.170.165.0/24
194.170.186.0/24
195.229.0.0/19
195.229.34.0/24
IPv6:
2001:8f8::/32
Signature Algorithm: sha256WithRSAEncryption
9d:7a:e9:21:09:18:ff:fe:be:46:22:00:c9:72:34:9b:3d:99:
12:2e:7c:44:5e:b8:b0:09:ec:bb:bc:76:cc:7e:38:cd:63:b9:
64:99:fe:2e:6c:7c:15:66:5f:fe:2c:4a:21:14:8a:5b:03:11:
1f:14:4c:d4:02:4d:54:5d:26:6f:a2:ed:75:e3:a1:b2:ce:e9:
a3:2a:3f:35:d2:dc:3b:11:ca:b2:a4:ce:d4:10:03:48:bf:a2:
0f:17:1d:2f:c3:0c:a7:3a:62:28:b4:b0:a9:e9:b5:95:d5:bd:
cc:3b:f6:a2:cc:69:77:a5:2f:9f:62:60:f3:e1:ca:12:a8:d3:
32:a6:43:10:c7:27:77:8f:26:5b:1f:e7:86:4e:4b:b2:7c:b4:
82:b7:a1:21:e1:af:fe:85:3d:2c:c3:4e:fa:3b:4f:93:91:8e:
8a:ec:1a:b4:91:e1:22:d8:60:b9:71:b8:32:42:07:eb:6d:4d:
4a:fb:63:c8:f9:1a:f7:e0:4b:75:c8:82:1b:c3:7e:37:6b:99:
0b:92:d3:47:10:e6:8a:f3:4b:d1:43:34:09:03:d5:90:d7:8a:
ae:35:60:4f:70:51:8c:3b:05:5a:5e:0c:ce:a4:61:2d:c3:22:
36:4b:64:b5:36:3c:21:ec:fc:70:dc:e1:d2:1c:a6:e0:fe:3d:
cb:11:03:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 22 14:01:10 2024 by rpki-client on console-fra.rpki-client.org