Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/2dba5c-9a90-4052-a1eb-6a8477cb6c2a/1/SrfG6sGxyphPubE2_RFvypuQJUI.roa
File: SrfG6sGxyphPubE2_RFvypuQJUI.roa (raw, json)
Hash identifier: epbS+jWfsxtb6GYkL/Lom0BQmytXtB4bBHHqEcYwDnU=
Subject key identifier: 4A:B7:C6:EA:C1:B1:CA:98:4F:B9:B1:36:FD:11:6F:CA:9B:90:25:42
Certificate issuer: /CN=e61c07c951488f04cb3b0fd338af84d77e46bf52
Certificate serial: 01916966AE2017F5172693A3B23F36C36C1B
Authority key identifier: E6:1C:07:C9:51:48:8F:04:CB:3B:0F:D3:38:AF:84:D7:7E:46:BF:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5hwHyVFIjwTLOw_TOK-E135Gv1I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/2dba5c-9a90-4052-a1eb-6a8477cb6c2a/1/SrfG6sGxyphPubE2_RFvypuQJUI.roa
Signing time: Mon 19 Aug 2024 06:50:22 +0000
ROA not before: Mon 19 Aug 2024 06:50:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39603
IP address blocks: 5.173.0.0/17 maxlen: 17
5.173.128.0/18 maxlen: 18
5.173.192.0/19 maxlen: 19
31.174.0.0/15 maxlen: 15
46.112.0.0/16 maxlen: 16
46.113.0.0/16 maxlen: 16
89.108.192.0/18 maxlen: 18
89.108.200.0/21 maxlen: 21
89.108.208.0/21 maxlen: 21
94.254.128.0/17 maxlen: 17
94.254.128.0/19 maxlen: 19
94.254.128.0/20 maxlen: 20
94.254.144.0/20 maxlen: 20
94.254.160.0/19 maxlen: 19
94.254.192.0/19 maxlen: 19
94.254.224.0/20 maxlen: 20
109.243.0.0/16 maxlen: 16
109.243.128.0/17 maxlen: 17
164.126.0.0/15 maxlen: 15
2a00:1981::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 19 Aug 2024 10:18:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:69:66:ae:20:17:f5:17:26:93:a3:b2:3f:36:c3:6c:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e61c07c951488f04cb3b0fd338af84d77e46bf52
Validity
Not Before: Aug 19 06:50:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4ab7c6eac1b1ca984fb9b136fd116fca9b902542
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:47:ae:f7:cb:07:5d:3e:25:62:9b:d6:7b:d1:
4e:fb:1b:a8:a7:90:8a:35:c2:a7:7c:b7:4b:c3:fd:
62:a0:72:e4:65:2f:0e:a2:20:4b:42:ae:3e:14:2f:
0e:b6:12:8a:94:7e:d1:e1:22:56:aa:d9:9a:f9:42:
ec:fb:31:3f:04:47:5d:38:08:cd:f8:a9:80:cc:90:
6a:cf:d3:8a:f6:89:20:60:ae:84:00:ae:18:b8:0a:
5e:42:2e:e3:fa:63:0d:52:76:f0:c2:27:b3:a1:73:
af:f6:f2:1d:c5:02:20:34:57:db:d3:64:c9:0d:f2:
eb:74:9e:fe:f8:4b:3d:00:a0:e5:fd:49:3b:02:b7:
bd:08:a4:20:f5:43:6d:4d:b7:e6:a0:95:b6:55:9e:
45:6f:8a:5e:18:b0:22:0a:72:36:3f:1b:06:ca:6b:
fe:2b:6d:64:b2:b9:50:d3:9a:90:f1:59:f2:3f:d6:
45:49:7b:38:48:8f:74:dc:b6:2b:c4:6e:62:b3:64:
a3:36:5a:14:ab:c0:78:be:5f:4d:e4:38:9e:40:81:
c9:87:f6:05:bd:0c:e4:39:6c:38:3a:4d:a2:4e:b0:
c5:7e:40:1b:b2:7e:79:3e:f7:b2:4b:ff:80:89:af:
4d:d1:8b:d1:a7:5a:49:9e:1c:08:c3:01:0e:26:93:
94:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:B7:C6:EA:C1:B1:CA:98:4F:B9:B1:36:FD:11:6F:CA:9B:90:25:42
X509v3 Authority Key Identifier:
keyid:E6:1C:07:C9:51:48:8F:04:CB:3B:0F:D3:38:AF:84:D7:7E:46:BF:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5hwHyVFIjwTLOw_TOK-E135Gv1I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/2dba5c-9a90-4052-a1eb-6a8477cb6c2a/1/SrfG6sGxyphPubE2_RFvypuQJUI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/2dba5c-9a90-4052-a1eb-6a8477cb6c2a/1/5hwHyVFIjwTLOw_TOK-E135Gv1I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.173.0.0-5.173.223.255
31.174.0.0/15
46.112.0.0/15
89.108.192.0/18
94.254.128.0/17
109.243.0.0/16
164.126.0.0/15
IPv6:
2a00:1981::/32
Signature Algorithm: sha256WithRSAEncryption
38:53:66:86:0c:42:20:59:b1:3b:e0:f4:e4:d8:a2:54:a6:c2:
cb:38:49:e8:e7:bc:54:f5:66:79:4c:51:e4:50:b0:2d:75:b0:
b4:98:73:f1:a5:6d:c9:b2:ed:d7:e0:ac:22:bb:a8:cb:e7:80:
08:e7:a4:d5:86:89:bb:02:aa:38:79:41:fd:ad:1a:c4:e8:79:
87:84:92:48:2f:17:f9:56:ab:45:fa:7a:89:fb:5f:3a:fe:fd:
e6:e7:dd:58:64:e6:84:36:85:25:15:67:ba:80:ca:f9:21:df:
8b:ce:5e:d5:ae:68:10:dc:50:8d:49:6a:17:4d:23:6c:53:c4:
ba:0f:a9:35:22:55:92:78:bf:cc:81:67:27:19:1b:a3:56:cc:
49:17:85:7e:40:90:ad:e3:10:df:e9:de:81:72:a2:74:91:90:
51:1d:c6:11:81:2a:ce:a6:9e:4f:88:52:79:90:68:0c:2e:82:
30:c0:7e:39:16:65:1d:19:1d:da:3e:ae:a4:b0:17:8a:c9:0e:
14:60:c2:ee:1c:46:43:46:a6:5a:8f:d8:18:df:31:db:fa:35:
0a:fb:d9:74:9d:bc:2d:dc:46:cc:5e:9d:45:ee:59:c7:26:21:
86:06:ee:96:67:38:db:71:05:bf:27:5b:db:92:32:0d:97:d7:
72:91:02:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 19 15:41:47 2024 by rpki-client on console-ams.rpki-client.org