Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/690357-dfbe-4d86-afd6-9164e352a83c/1/yW1O01wRk2uy5VkaWEe86Yj2dYo.roa
File: yW1O01wRk2uy5VkaWEe86Yj2dYo.roa (raw, json)
Hash identifier: oiPMUts5ceZ3gxuUuZyZth2FwteIjgHdwsET+5JklAc=
Subject key identifier: C9:6D:4E:D3:5C:11:93:6B:B2:E5:59:1A:58:47:BC:E9:88:F6:75:8A
Certificate issuer: /CN=e29b9ac2ef631b92e82f595d73e4792c816ec6e6
Certificate serial: 019092B484A07A192517728403D71D61F785
Authority key identifier: E2:9B:9A:C2:EF:63:1B:92:E8:2F:59:5D:73:E4:79:2C:81:6E:C6:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4puawu9jG5LoL1ldc-R5LIFuxuY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/690357-dfbe-4d86-afd6-9164e352a83c/1/yW1O01wRk2uy5VkaWEe86Yj2dYo.roa
Signing time: Mon 08 Jul 2024 14:17:02 +0000
ROA not before: Mon 08 Jul 2024 14:17:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8374
IP address blocks: 5.172.224.0/19 maxlen: 19
31.0.0.0/16 maxlen: 16
37.98.208.0/20 maxlen: 20
37.109.0.0/16 maxlen: 16
37.152.16.0/20 maxlen: 20
37.209.128.0/19 maxlen: 19
37.247.128.0/17 maxlen: 17
37.247.241.0/28 maxlen: 28
46.76.0.0/15 maxlen: 15
78.30.64.0/18 maxlen: 18
84.39.160.0/20 maxlen: 20
87.251.224.0/19 maxlen: 19
92.60.128.0/20 maxlen: 20
93.154.128.0/17 maxlen: 17
151.248.32.0/20 maxlen: 20
185.4.212.0/22 maxlen: 22
188.125.32.0/19 maxlen: 19
193.41.112.0/23 maxlen: 23
212.2.96.0/19 maxlen: 19
2a01:2e0::/28 maxlen: 28
2a01:bb80::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 10 Jul 2024 07:27:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:92:b4:84:a0:7a:19:25:17:72:84:03:d7:1d:61:f7:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e29b9ac2ef631b92e82f595d73e4792c816ec6e6
Validity
Not Before: Jul 8 14:17:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c96d4ed35c11936bb2e5591a5847bce988f6758a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:cf:d5:c2:56:5a:ed:b7:5e:ac:60:ed:11:77:
39:be:fd:72:a2:b2:dd:99:c0:1a:19:5c:8c:07:ad:
54:dc:c3:0a:65:8c:62:97:80:60:3d:b8:89:7f:b4:
8c:90:a1:58:4d:13:fb:26:f4:1e:5e:4d:1b:59:a0:
af:3f:89:25:2a:12:d6:2e:ea:42:74:f9:a9:8d:2c:
ad:b6:55:80:58:bf:9a:74:f9:57:cc:75:c3:37:d2:
b7:94:c4:4b:3f:f2:ed:2d:3b:7c:23:99:c6:1d:c3:
fc:ff:1c:71:76:43:7b:07:16:ba:b1:72:5d:be:21:
d5:a7:d4:6e:3f:f4:87:b4:54:8f:aa:9c:5a:fd:de:
74:c0:0a:04:c8:04:a5:3a:57:17:80:c9:d2:fd:45:
19:67:0c:e1:e1:4d:19:9a:f4:46:80:73:eb:59:d8:
49:31:88:3c:e2:f3:62:00:99:e6:52:ac:21:d7:08:
04:65:dc:c9:9d:3a:f7:da:c6:41:03:f1:1d:4a:a4:
22:7d:9c:28:6e:59:63:22:e2:e9:08:46:c4:75:15:
24:d0:16:34:c4:e1:2d:5a:2d:e0:a9:25:08:fd:40:
28:6b:a8:a0:de:e9:e2:2a:8f:e3:17:e2:c4:67:6f:
d8:a4:9f:76:85:c2:4f:0d:05:82:c0:2b:16:bc:f1:
cd:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:6D:4E:D3:5C:11:93:6B:B2:E5:59:1A:58:47:BC:E9:88:F6:75:8A
X509v3 Authority Key Identifier:
keyid:E2:9B:9A:C2:EF:63:1B:92:E8:2F:59:5D:73:E4:79:2C:81:6E:C6:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4puawu9jG5LoL1ldc-R5LIFuxuY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/690357-dfbe-4d86-afd6-9164e352a83c/1/yW1O01wRk2uy5VkaWEe86Yj2dYo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/690357-dfbe-4d86-afd6-9164e352a83c/1/4puawu9jG5LoL1ldc-R5LIFuxuY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.224.0/19
31.0.0.0/16
37.98.208.0/20
37.109.0.0/16
37.152.16.0/20
37.209.128.0/19
37.247.128.0/17
46.76.0.0/15
78.30.64.0/18
84.39.160.0/20
87.251.224.0/19
92.60.128.0/20
93.154.128.0/17
151.248.32.0/20
185.4.212.0/22
188.125.32.0/19
193.41.112.0/23
212.2.96.0/19
IPv6:
2a01:2e0::/28
2a01:bb80::/32
Signature Algorithm: sha256WithRSAEncryption
2b:66:02:a6:e4:dc:0b:28:64:38:84:42:1e:21:d5:d8:6a:85:
84:22:d5:94:0b:92:13:a5:22:f4:1d:f0:db:d2:96:36:cd:cc:
5d:f9:10:de:ed:f6:34:3d:2e:00:f6:a7:eb:b2:60:62:c6:dd:
a9:15:26:ea:f2:03:48:2f:9f:0d:72:ac:c1:e0:b1:d4:65:c6:
0d:0e:76:16:bd:5c:36:c6:47:2e:a1:02:c0:c0:b7:69:cf:66:
15:dd:e9:40:72:4f:6c:22:48:c9:89:d2:53:d6:94:16:1b:78:
95:b6:28:31:37:29:4e:c0:ef:f3:26:a5:a1:1b:3b:42:b6:6d:
8a:20:5c:ee:8b:fb:fa:4d:ff:f1:a9:01:88:4c:5a:22:e4:45:
99:10:15:ed:3c:ac:23:6d:e2:34:0e:de:9d:63:d3:21:44:bf:
24:f1:0d:a7:07:61:e6:85:8e:aa:16:70:c7:20:34:60:ba:43:
a6:c8:c2:e7:10:d3:60:0b:7e:d5:e7:69:64:02:01:be:00:ff:
a4:24:5c:36:42:21:03:b1:ea:f1:20:d2:4b:33:79:f1:2a:b4:
ac:ca:cd:b9:ad:75:1a:90:e3:43:86:b4:f8:5b:d8:1f:d4:aa:
f5:ab:f8:8d:7d:de:e2:f9:c9:c8:e3:44:d0:f0:31:8c:60:d8:
54:56:88:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:21:47 2025 by rpki-client