Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/c1ca07-9658-4446-8cb5-60cf9ab1b13e/1/5IU-IdJp7BNEBmXVrHSUAtT9EjY.roa
File: 5IU-IdJp7BNEBmXVrHSUAtT9EjY.roa (raw, json)
Hash identifier: n9FCNFXzdeuzboE6XIMuhDJHkCcSyreCHkNyrNjPw4A=
Subject key identifier: E4:85:3E:21:D2:69:EC:13:44:06:65:D5:AC:74:94:02:D4:FD:12:36
Certificate issuer: /CN=5cf4501b755002d9143e8fa6736815e9f0f93695
Certificate serial: 018EBEA4C20882F0D7ABED73E2CF2D75DF5D
Authority key identifier: 5C:F4:50:1B:75:50:02:D9:14:3E:8F:A6:73:68:15:E9:F0:F9:36:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XPRQG3VQAtkUPo-mc2gV6fD5NpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/c1ca07-9658-4446-8cb5-60cf9ab1b13e/1/5IU-IdJp7BNEBmXVrHSUAtT9EjY.roa
Signing time: Mon 08 Apr 2024 16:57:32 +0000
ROA not before: Mon 08 Apr 2024 16:57:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 13037
IP address blocks: 51.148.0.0/16 maxlen: 16
51.155.0.0/16 maxlen: 16
51.170.0.0/16 maxlen: 18
62.3.64.0/18 maxlen: 18
77.104.128.0/18 maxlen: 18
82.68.0.0/14 maxlen: 14
82.71.240.0/20 maxlen: 20
88.96.0.0/16 maxlen: 16
88.97.0.0/18 maxlen: 18
88.97.64.0/19 maxlen: 19
88.97.96.0/20 maxlen: 20
88.97.160.0/23 maxlen: 23
88.97.162.0/23 maxlen: 23
88.97.164.0/23 maxlen: 23
88.97.166.0/23 maxlen: 23
88.97.168.0/24 maxlen: 24
88.97.169.0/24 maxlen: 24
88.97.170.0/24 maxlen: 24
88.97.171.0/24 maxlen: 24
88.97.172.0/24 maxlen: 24
88.97.173.0/24 maxlen: 24
88.97.174.0/24 maxlen: 24
88.97.175.0/24 maxlen: 24
88.97.176.0/20 maxlen: 20
88.98.0.0/20 maxlen: 20
88.98.16.0/23 maxlen: 23
88.98.18.0/24 maxlen: 24
88.98.21.0/24 maxlen: 24
88.98.22.0/23 maxlen: 23
88.98.24.0/21 maxlen: 21
88.98.32.0/19 maxlen: 19
88.98.64.0/19 maxlen: 19
88.98.128.0/19 maxlen: 19
88.98.160.0/21 maxlen: 21
88.98.170.0/23 maxlen: 23
88.98.172.0/22 maxlen: 22
88.98.176.0/20 maxlen: 20
146.66.64.0/18 maxlen: 18
212.23.0.0/19 maxlen: 19
217.155.0.0/16 maxlen: 16
2a02:8010::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 30 May 2024 15:55:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:be:a4:c2:08:82:f0:d7:ab:ed:73:e2:cf:2d:75:df:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cf4501b755002d9143e8fa6736815e9f0f93695
Validity
Not Before: Apr 8 16:57:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e4853e21d269ec13440665d5ac749402d4fd1236
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:2f:c6:17:82:42:02:4c:47:28:69:46:1a:af:
cd:66:f2:fe:3b:b7:7f:f4:39:e8:5d:96:0e:d7:e7:
43:a0:53:07:93:a7:3d:48:17:9e:9b:84:19:90:cd:
e1:ee:13:96:f9:98:4f:22:f4:75:cb:11:91:24:ad:
53:3c:00:3a:90:8f:b3:2f:d4:78:1a:3e:c6:6b:7b:
3a:bd:83:82:bf:6d:07:20:2e:a4:5e:f6:ce:09:59:
6b:52:f2:b5:59:3f:7a:73:db:fd:4b:0a:1f:df:2e:
f3:ac:55:62:cd:e0:76:00:ef:d5:32:23:69:b0:f2:
20:f0:09:cd:4f:2e:10:49:69:b3:84:27:12:4c:a6:
15:0b:b9:d9:ac:9c:cd:79:9d:74:f1:dd:29:c1:d7:
fd:43:a1:f7:4c:01:8b:52:f8:33:37:13:e3:c0:1e:
53:86:c6:43:f2:5e:cd:68:2e:28:43:2a:5c:10:e0:
bf:d9:9f:f0:6a:65:48:59:c7:a0:81:e8:db:1b:dc:
c5:da:64:bf:94:c1:35:47:7e:5a:26:9e:21:ef:ae:
3e:06:7c:c3:83:ba:7c:16:0b:03:5a:de:20:53:6f:
b8:72:2c:0d:0d:93:85:d6:71:a8:2b:bd:1e:4f:7a:
7e:d5:fd:2f:f7:02:7d:10:5a:35:61:15:21:a1:fa:
58:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:85:3E:21:D2:69:EC:13:44:06:65:D5:AC:74:94:02:D4:FD:12:36
X509v3 Authority Key Identifier:
keyid:5C:F4:50:1B:75:50:02:D9:14:3E:8F:A6:73:68:15:E9:F0:F9:36:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XPRQG3VQAtkUPo-mc2gV6fD5NpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/c1ca07-9658-4446-8cb5-60cf9ab1b13e/1/5IU-IdJp7BNEBmXVrHSUAtT9EjY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/c1ca07-9658-4446-8cb5-60cf9ab1b13e/1/XPRQG3VQAtkUPo-mc2gV6fD5NpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.148.0.0/16
51.155.0.0/16
51.170.0.0/16
62.3.64.0/18
77.104.128.0/18
82.68.0.0/14
88.96.0.0-88.97.111.255
88.97.160.0/19
88.98.0.0-88.98.18.255
88.98.21.0-88.98.95.255
88.98.128.0-88.98.167.255
88.98.170.0-88.98.191.255
146.66.64.0/18
212.23.0.0/19
217.155.0.0/16
IPv6:
2a02:8010::/29
Signature Algorithm: sha256WithRSAEncryption
94:a5:c0:98:dd:14:a3:5f:82:35:e3:30:8c:9f:f1:55:8e:d7:
10:63:ff:44:59:df:00:0b:dc:47:92:06:5b:b4:15:f9:e8:b1:
8d:5e:df:4b:7e:77:ab:b0:d6:26:63:c3:aa:08:8e:4a:a9:e2:
c9:57:ff:c0:57:92:cc:25:16:95:27:21:8c:33:35:88:bb:90:
28:15:ec:9f:f9:b5:0a:a1:1d:b6:b1:cb:37:f3:cb:53:3f:0b:
5e:15:32:77:b0:fc:6f:49:00:b1:e8:64:87:0a:6b:dd:fd:4d:
47:ba:f0:3b:32:1d:bf:b0:dd:86:54:12:74:81:01:b0:cf:bb:
00:97:be:c7:e3:6a:71:cd:a1:b5:d8:8d:9b:a8:3e:49:8c:79:
f1:f1:7d:13:a5:f2:13:a0:54:dc:3d:1a:8c:1d:e6:ab:54:78:
1a:53:51:aa:dc:90:83:41:0c:49:eb:ea:e6:b1:e9:66:ca:9c:
02:43:56:54:63:5a:58:ec:d8:cf:19:47:61:89:c4:f7:26:97:
76:dc:71:45:52:88:22:e6:05:b5:ae:a1:fc:f8:a9:a5:f5:1a:
ad:35:0f:68:c6:17:2a:94:69:1c:a1:b6:b9:90:74:1a:39:e9:
7c:e6:5a:1d:72:7d:b0:20:5e:cb:5b:2c:58:31:01:03:d8:61:
0e:e6:67:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:15 2024 by rpki-client on console-fra.rpki-client.org