Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/5EbLYWo2x_eeAVJ_tBIgvxHrvYE.roa
File: 5EbLYWo2x_eeAVJ_tBIgvxHrvYE.roa (raw, json)
Hash identifier: zYu4PefC4BdorDievmpOXnfKnjwaRdtUHLOdy9r8uBE=
Subject key identifier: E4:46:CB:61:6A:36:C7:F7:9E:01:52:7F:B4:12:20:BF:11:EB:BD:81
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019359850684771C49BA7EA8DCD158BCA73D
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/5EbLYWo2x_eeAVJ_tBIgvxHrvYE.roa
Signing time: Sat 23 Nov 2024 14:55:10 +0000
ROA not before: Sat 23 Nov 2024 14:55:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 45.152.198.0/24 maxlen: 24
103.114.40.0/24 maxlen: 24
2a0e:1a84::/32 maxlen: 32
2a0e:c781::/32 maxlen: 32
2a0e:f600:5f::/48 maxlen: 48
2a0f:14c0::/29 maxlen: 29
2a0f:1e80:100::/48 maxlen: 48
2a0f:1e80:1986::/48 maxlen: 48
2a0f:3d80:bac::/48 maxlen: 48
2a0f:7d00:1::/48 maxlen: 48
2a0f:bc00:a1c4::/48 maxlen: 48
2a0f:e6c6:5532::/48 maxlen: 48
2a13:2b40::/29 maxlen: 32
Validation: Failed, certificate revoked on Thu 28 Nov 2024 15:35:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:59:85:06:84:77:1c:49:ba:7e:a8:dc:d1:58:bc:a7:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Nov 23 14:55:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e446cb616a36c7f79e01527fb41220bf11ebbd81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:6b:43:bc:be:93:b3:85:d8:bc:bb:14:23:03:
a9:60:b7:e4:e1:3c:e7:0e:88:c9:2b:32:e7:36:27:
76:ec:9b:80:02:c8:b7:e5:96:09:53:07:af:66:bd:
9d:56:2b:d0:4c:57:4c:5e:f8:cd:02:a4:bc:46:5a:
9e:7a:05:0e:45:be:b4:10:8e:19:af:28:02:f7:6f:
4e:4a:a8:2e:fa:0b:24:1b:da:bd:e2:f3:30:d4:7a:
3c:06:02:5d:42:8d:a3:c2:fb:df:e6:8b:79:3b:91:
fd:90:63:de:f8:46:a7:a7:63:24:cf:38:b4:7f:21:
74:d7:37:19:e5:af:f7:b7:e1:dd:e0:e2:48:33:ff:
cb:60:a6:87:8b:5e:2f:5b:50:17:bb:bf:dc:ad:7e:
3a:14:e8:ca:d2:07:b3:4b:ae:f1:ad:9f:54:2a:45:
f1:3b:fa:39:19:41:75:eb:16:b5:65:af:cb:2b:7d:
e5:3e:f9:f0:7b:8a:c3:a0:c4:d1:c8:75:62:82:be:
e0:e3:bc:00:95:5a:43:98:b6:da:6d:7a:54:1e:ea:
7b:80:05:cd:9d:b2:56:c2:76:53:b1:8b:5c:9e:57:
a3:03:6b:4b:ac:e6:c7:0c:a2:40:dc:7b:cc:cb:1b:
62:93:50:4b:f8:d7:58:65:c7:9f:68:3e:5f:c7:52:
ae:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:46:CB:61:6A:36:C7:F7:9E:01:52:7F:B4:12:20:BF:11:EB:BD:81
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/5EbLYWo2x_eeAVJ_tBIgvxHrvYE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.198.0/24
103.114.40.0/24
IPv6:
2a0e:1a84::/32
2a0e:c781::/32
2a0e:f600:5f::/48
2a0f:14c0::/29
2a0f:1e80:100::/48
2a0f:1e80:1986::/48
2a0f:3d80:bac::/48
2a0f:7d00:1::/48
2a0f:bc00:a1c4::/48
2a0f:e6c6:5532::/48
2a13:2b40::/29
Signature Algorithm: sha256WithRSAEncryption
ca:94:15:90:87:70:8e:cb:f1:0a:03:0b:ae:fa:cf:65:41:bf:
f0:44:28:1e:cf:5d:8a:64:bf:4f:cf:5c:a3:3c:07:e3:ee:87:
cd:3a:46:bd:c5:9d:92:e6:6e:0b:b2:82:26:eb:eb:61:58:44:
eb:1b:fc:5f:36:00:e3:ed:25:00:df:6f:e7:70:70:81:75:9e:
c9:ae:9f:be:d7:99:31:b3:12:4d:b6:74:d8:ae:4e:af:94:c2:
f5:6d:71:aa:88:0c:f5:a6:6c:b6:74:99:5d:7e:b0:53:5f:95:
b0:05:c8:7d:2d:e8:b4:23:13:4f:62:5d:e6:8c:5d:03:de:64:
95:f0:29:1b:d6:7b:70:60:c3:80:aa:40:23:d0:fc:f5:6d:30:
9e:17:2a:fc:7e:75:3d:2a:82:53:bb:ed:9b:45:2d:63:07:89:
b8:a1:76:24:a2:38:24:28:bf:3b:85:ee:e5:d1:96:b9:f9:3d:
f9:4a:0e:3c:b1:20:a5:b4:6d:e8:b9:09:ca:95:29:b7:0b:7e:
71:2a:40:df:fb:d2:ab:78:0e:da:4f:37:b7:a2:c4:71:23:06:
1e:e7:e1:80:4d:83:7e:37:2b:98:7c:6f:4c:29:79:c0:4f:7b:
84:ce:13:b1:4f:97:88:b4:dc:c0:ba:73:b2:ed:4d:ac:48:35:
1f:5a:8b:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:01:28 2025 by rpki-client