Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/nA6vb5z6ov4erlqwYCKbMokl7fw.roa
File: nA6vb5z6ov4erlqwYCKbMokl7fw.roa (raw, json)
Hash identifier: VgLs3qnsDdC0KFZrFrByDi4K6fS/lfQPtWpJE0Syh3Y=
Subject key identifier: 9C:0E:AF:6F:9C:FA:A2:FE:1E:AE:5A:B0:60:22:9B:32:89:25:ED:FC
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 018FABE7BE77651025F801CA93505D2C0E9D
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/nA6vb5z6ov4erlqwYCKbMokl7fw.roa
Signing time: Fri 24 May 2024 18:40:42 +0000
ROA not before: Fri 24 May 2024 18:40:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 5.180.32.0/22 maxlen: 24
5.180.50.0/24 maxlen: 24
5.180.51.0/24 maxlen: 24
5.180.80.0/24 maxlen: 24
5.253.39.0/24 maxlen: 24
5.253.44.0/24 maxlen: 24
5.253.47.0/24 maxlen: 24
45.8.188.0/22 maxlen: 24
45.8.192.0/22 maxlen: 24
45.8.199.0/24 maxlen: 24
45.8.203.0/24 maxlen: 24
45.8.252.0/24 maxlen: 24
45.8.255.0/24 maxlen: 24
45.9.0.0/24 maxlen: 24
45.9.1.0/24 maxlen: 24
45.9.4.0/24 maxlen: 24
45.9.7.0/24 maxlen: 24
45.66.155.0/24 maxlen: 24
85.208.105.0/24 maxlen: 24
85.208.107.0/24 maxlen: 24
85.208.113.0/24 maxlen: 24
85.208.115.0/24 maxlen: 24
85.209.160.0/24 maxlen: 24
193.168.208.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Jun 2024 16:44:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ab:e7:be:77:65:10:25:f8:01:ca:93:50:5d:2c:0e:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: May 24 18:40:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9c0eaf6f9cfaa2fe1eae5ab060229b328925edfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:df:62:5a:64:71:86:43:0b:a4:3a:e7:42:67:
3a:cc:ad:9a:f5:1f:b8:28:45:40:ba:b4:06:ff:6d:
c0:e7:be:c4:0e:96:6f:26:1e:3d:69:38:0d:73:60:
07:45:ba:4a:4e:3a:e3:9d:22:e9:12:bd:33:ed:71:
cb:e5:53:27:f3:8c:7d:95:d3:cc:39:06:6d:4b:cd:
91:ad:55:b3:aa:2c:12:80:da:1e:35:11:65:3e:98:
e0:51:0d:96:42:38:0d:f0:34:73:57:79:49:a6:0d:
50:14:49:43:ab:a9:bb:4f:8d:a0:50:ac:b9:7b:76:
2e:aa:a5:d2:5d:e4:9b:20:cd:b7:ff:8c:3c:85:fe:
0d:0f:50:90:57:f3:4b:c2:d7:99:8e:7f:1d:6e:4a:
ce:b9:9f:57:8d:8e:e1:78:e2:0d:26:33:86:03:31:
fc:1d:81:e0:6a:eb:04:80:89:e0:e8:8b:d6:0c:8d:
5a:a8:a6:37:48:c8:12:19:14:88:2f:93:04:87:ab:
6b:f1:33:37:51:5d:1d:af:33:c9:12:10:fb:b6:db:
66:01:6f:98:ec:e7:52:de:8f:5d:ce:a7:34:b9:f1:
57:de:32:c4:24:bd:c5:e3:bc:11:63:93:a7:fd:8a:
39:4b:68:1e:9e:35:e3:1d:46:ea:95:b4:12:58:83:
00:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:0E:AF:6F:9C:FA:A2:FE:1E:AE:5A:B0:60:22:9B:32:89:25:ED:FC
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/nA6vb5z6ov4erlqwYCKbMokl7fw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.32.0/22
5.180.50.0/23
5.180.80.0/24
5.253.39.0/24
5.253.44.0/24
5.253.47.0/24
45.8.188.0-45.8.195.255
45.8.199.0/24
45.8.203.0/24
45.8.252.0/24
45.8.255.0-45.9.1.255
45.9.4.0/24
45.9.7.0/24
45.66.155.0/24
85.208.105.0/24
85.208.107.0/24
85.208.113.0/24
85.208.115.0/24
85.209.160.0/24
193.168.208.0/22
Signature Algorithm: sha256WithRSAEncryption
73:8b:29:fc:75:5e:d8:df:e5:3b:97:2b:74:84:a5:04:b0:07:
3d:0c:98:3c:16:58:9a:de:e4:ae:77:b0:ec:b3:e0:4e:45:28:
3f:cf:52:7f:ff:a6:84:8b:03:e3:73:1c:89:a4:49:ae:98:89:
db:be:90:52:c0:66:09:ca:92:54:7f:db:36:3c:1c:c6:06:d3:
cf:49:72:cc:7c:44:7f:db:b6:7d:c4:2e:6b:b5:a7:f8:77:87:
17:82:e1:24:84:c4:27:30:31:05:51:94:9c:f5:8c:36:1f:a9:
ae:7e:43:e0:d7:d9:9e:2d:be:97:36:c7:49:71:e9:c6:2d:c6:
51:87:5b:69:5a:de:8f:47:de:c7:b0:17:0d:e9:63:e3:b4:73:
31:3c:da:d3:e0:5b:20:93:fb:e8:a1:50:86:30:38:39:ef:70:
58:54:cb:e1:55:86:7b:02:44:82:c0:70:f2:66:40:a6:04:89:
8c:7d:59:e3:c2:84:94:33:cb:c0:48:bd:4e:5a:6d:1f:06:f9:
17:de:18:1a:fe:66:77:d3:ce:ac:03:a1:66:90:cc:be:77:7a:
b0:02:35:a4:fc:f5:e9:9c:1e:1c:e3:a1:af:f4:02:27:e6:a2:
36:66:9f:3d:39:9f:53:60:16:92:79:1a:94:be:cf:32:5b:d2:
fd:d1:98:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:18:15 2025 by rpki-client