Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/8cc506-7e71-4705-a289-b42364895083/1/Xepd1ibUE_QYtaZ-kRCKY_hYop0.roa
File: Xepd1ibUE_QYtaZ-kRCKY_hYop0.roa (raw, json)
Hash identifier: d5tZhLriMg6hEDvfGa1fd6e1y1pMeWx9zpgjbNaPFIA=
Subject key identifier: 5D:EA:5D:D6:26:D4:13:F4:18:B5:A6:7E:91:10:8A:63:F8:58:A2:9D
Certificate issuer: /CN=d6e2694652aa298511edafbe18d2b1cdbc792638
Certificate serial: 01916E43CD06133941CC34DC9C322F181CD1
Authority key identifier: D6:E2:69:46:52:AA:29:85:11:ED:AF:BE:18:D2:B1:CD:BC:79:26:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1uJpRlKqKYUR7a--GNKxzbx5Jjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/8cc506-7e71-4705-a289-b42364895083/1/Xepd1ibUE_QYtaZ-kRCKY_hYop0.roa
Signing time: Tue 20 Aug 2024 05:30:22 +0000
ROA not before: Tue 20 Aug 2024 05:30:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60423
IP address blocks: 5.145.113.0/24 maxlen: 24
5.145.114.0/24 maxlen: 24
5.145.117.0/24 maxlen: 24
5.145.118.0/24 maxlen: 24
5.145.119.0/24 maxlen: 24
185.24.252.0/24 maxlen: 24
185.24.253.0/24 maxlen: 24
185.24.255.0/24 maxlen: 24
2a04:2f00::/48 maxlen: 48
2a04:2f00:3::/48 maxlen: 48
2a04:2f00:d::/48 maxlen: 48
2a04:2f00:e::/48 maxlen: 48
2a04:2f00:ff01::/48 maxlen: 48
2a04:2f00:ff02::/48 maxlen: 48
2a04:2f00:ff03::/48 maxlen: 48
2a04:2f00:ff06::/48 maxlen: 48
2a04:2f00:ff08::/48 maxlen: 48
2a04:2f00:ff09::/48 maxlen: 48
2a04:2f01:3::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 06 Oct 2024 10:57:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:6e:43:cd:06:13:39:41:cc:34:dc:9c:32:2f:18:1c:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6e2694652aa298511edafbe18d2b1cdbc792638
Validity
Not Before: Aug 20 05:30:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5dea5dd626d413f418b5a67e91108a63f858a29d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:de:84:cf:d6:6e:8c:20:48:e6:77:a9:c6:65:
d8:1c:45:4e:33:45:59:b1:f3:7f:a4:a0:68:c5:c3:
ce:f1:61:c9:8f:e8:8b:9d:b6:f3:2f:97:09:80:40:
f8:f6:b6:46:75:f6:43:65:40:0d:a7:21:43:23:de:
15:a5:2b:da:49:60:ed:be:98:63:4d:55:46:6f:73:
09:c9:09:e3:fd:15:52:b1:c3:3a:4f:38:d7:be:cc:
f3:96:e7:6d:3d:d8:ff:6b:27:90:cd:67:0f:fb:81:
d8:3c:fe:9d:1e:16:17:34:ae:29:7d:04:c2:f9:49:
99:e8:8d:59:46:f1:df:4b:21:35:a8:9f:90:79:59:
5e:57:24:72:50:bf:ea:b1:bd:71:f8:86:b6:83:f2:
c5:6c:7f:52:18:2b:bd:64:14:92:39:af:2f:70:a2:
71:93:ae:c6:d2:b2:e0:7f:c8:25:29:40:d2:1d:af:
e8:3f:fa:9a:a0:bf:d6:27:71:a5:48:37:1f:b0:c3:
a6:74:10:56:28:5b:d1:47:ec:f2:b0:e9:25:1c:9c:
b9:ca:e2:e8:88:6c:2e:07:93:10:07:88:9e:83:1a:
6a:e7:7f:d9:4b:bb:85:cc:96:64:21:0d:e4:5e:68:
a6:dd:10:d1:59:e4:b6:4b:89:b6:5d:90:c4:7e:e3:
2f:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:EA:5D:D6:26:D4:13:F4:18:B5:A6:7E:91:10:8A:63:F8:58:A2:9D
X509v3 Authority Key Identifier:
keyid:D6:E2:69:46:52:AA:29:85:11:ED:AF:BE:18:D2:B1:CD:BC:79:26:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1uJpRlKqKYUR7a--GNKxzbx5Jjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/8cc506-7e71-4705-a289-b42364895083/1/Xepd1ibUE_QYtaZ-kRCKY_hYop0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/8cc506-7e71-4705-a289-b42364895083/1/1uJpRlKqKYUR7a--GNKxzbx5Jjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.145.113.0-5.145.114.255
5.145.117.0-5.145.119.255
185.24.252.0/23
185.24.255.0/24
IPv6:
2a04:2f00::/48
2a04:2f00:3::/48
2a04:2f00:d::-2a04:2f00:e:ffff:ffff:ffff:ffff:ffff
2a04:2f00:ff01::-2a04:2f00:ff03:ffff:ffff:ffff:ffff:ffff
2a04:2f00:ff06::/48
2a04:2f00:ff08::/47
2a04:2f01:3::/48
Signature Algorithm: sha256WithRSAEncryption
86:d1:c3:ce:e0:83:31:93:02:1a:94:1c:c8:a3:86:1b:64:41:
c7:3a:54:59:8c:d7:98:71:d7:af:76:ee:20:82:b7:89:78:fe:
7d:79:43:55:78:ad:76:3d:b0:19:2f:06:2f:00:03:20:d0:44:
b6:52:18:98:69:e5:81:22:2e:f1:72:41:9d:37:a2:02:25:b7:
1c:b7:45:47:a4:da:8a:34:84:cb:f1:0c:64:fc:c7:e1:94:76:
36:2a:52:49:2a:ce:b8:55:bf:cd:1c:91:98:a4:60:01:a1:82:
f9:3d:1a:86:11:52:b2:c5:86:bc:5a:db:93:e3:d5:38:10:d9:
39:25:0f:75:82:b6:61:9f:65:e2:13:62:c1:8c:44:51:c1:1c:
88:75:5b:19:e9:ae:03:ab:01:03:98:77:2e:bb:42:62:35:88:
8e:74:38:4b:af:c3:3e:9e:82:51:e1:f6:5e:b6:f7:38:ff:3b:
c2:37:a2:ca:9a:4e:96:b3:9f:80:ee:1e:2e:25:85:5c:98:b6:
89:4e:73:5b:9a:eb:fa:dd:6b:9f:00:2b:41:ef:5d:dc:ef:b4:
cf:6d:3b:16:35:72:7a:ab:cc:7b:cf:d0:44:16:bf:36:e8:67:
ef:84:3b:3f:e0:3b:98:cb:ca:7a:b5:66:02:ae:7b:10:3d:0f:
b2:ae:48:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:45:06 2025 by rpki-client