Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/Fk3u_xOsq7w4uhJrUjRpKE3iFFI.roa
File: Fk3u_xOsq7w4uhJrUjRpKE3iFFI.roa (raw, json)
Hash identifier: m6Oq1mENEVm7Wo9SMuTEO+Fz84MRD7tAgbaSvkCLAgQ=
Subject key identifier: 16:4D:EE:FF:13:AC:AB:BC:38:BA:12:6B:52:34:69:28:4D:E2:14:52
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 018D1766E0330EBCC003B847EB53AA93CC16
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/Fk3u_xOsq7w4uhJrUjRpKE3iFFI.roa
Signing time: Wed 17 Jan 2024 12:30:34 +0000
ROA not before: Wed 17 Jan 2024 12:30:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207569
IP address blocks: 5.180.136.0/24 maxlen: 24
5.180.137.0/24 maxlen: 24
5.252.116.0/24 maxlen: 24
45.89.64.0/24 maxlen: 24
45.133.245.0/24 maxlen: 24
46.17.106.0/24 maxlen: 24
85.209.0.0/24 maxlen: 24
95.214.8.0/24 maxlen: 24
139.28.220.0/24 maxlen: 24
139.28.221.0/24 maxlen: 24
185.17.2.0/24 maxlen: 24
185.58.207.0/24 maxlen: 24
185.94.167.0/24 maxlen: 24
185.104.250.0/24 maxlen: 24
185.105.118.0/24 maxlen: 24
185.188.181.0/24 maxlen: 24
193.109.84.0/24 maxlen: 24
194.53.54.0/24 maxlen: 24
194.67.200.0/24 maxlen: 24
195.66.87.0/24 maxlen: 24
2a0a:9300::/32 maxlen: 32
2a0a:9300:1::/48 maxlen: 48
2a0a:9300:aaaa::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 19 Jun 2024 18:49:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:17:66:e0:33:0e:bc:c0:03:b8:47:eb:53:aa:93:cc:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 17 12:30:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=164deeff13acabbc38ba126b523469284de21452
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:7a:4b:d3:90:a3:f2:a6:e7:95:cc:43:19:ba:
91:b5:fc:a5:11:2b:69:df:19:f8:b1:95:1d:cc:d5:
fd:7e:eb:4e:39:c8:ad:72:f8:31:7c:7d:d4:16:7b:
2f:3b:bd:43:e5:18:9c:61:c5:55:12:1c:7c:3c:20:
79:d8:56:3c:e6:fa:23:f0:d3:03:c8:ac:a3:d5:04:
2e:de:c2:e4:51:69:01:7b:00:d4:f5:8b:c5:85:bd:
03:4c:66:de:42:20:7b:08:08:a9:00:81:0e:53:56:
67:6c:4f:92:9f:62:ba:0f:d6:10:db:bc:8c:02:4e:
ca:05:51:74:d3:d4:51:1b:46:b4:ce:4d:42:82:6d:
7b:b1:55:30:ff:54:ca:bb:0f:95:e3:52:28:cb:0d:
32:e2:a7:0d:0e:52:ef:f3:8c:b8:58:62:33:2e:1c:
0f:b2:e7:50:0f:04:75:b7:7e:1d:de:7e:3e:7c:cd:
a7:82:24:11:84:a9:81:3f:bc:ec:ba:25:79:30:b4:
1d:d5:16:84:aa:8c:72:93:5b:61:f1:11:15:b5:91:
e5:d8:3b:2f:24:63:b9:29:f0:15:39:f0:20:18:c5:
8d:fe:f6:e8:6d:24:b7:dd:99:64:f9:83:24:88:a6:
c6:a5:ad:5f:83:3c:b0:1a:d3:a6:39:e2:7a:01:d1:
65:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:4D:EE:FF:13:AC:AB:BC:38:BA:12:6B:52:34:69:28:4D:E2:14:52
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/Fk3u_xOsq7w4uhJrUjRpKE3iFFI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.136.0/23
5.252.116.0/24
45.89.64.0/24
45.133.245.0/24
46.17.106.0/24
85.209.0.0/24
95.214.8.0/24
139.28.220.0/23
185.17.2.0/24
185.58.207.0/24
185.94.167.0/24
185.104.250.0/24
185.105.118.0/24
185.188.181.0/24
193.109.84.0/24
194.53.54.0/24
194.67.200.0/24
195.66.87.0/24
IPv6:
2a0a:9300::/32
Signature Algorithm: sha256WithRSAEncryption
19:e9:ec:2f:ab:6a:ce:a0:e3:5a:9b:a8:ff:aa:f5:d8:8a:a1:
85:1f:16:f7:07:c4:bf:58:c3:b5:28:65:10:38:92:33:d8:62:
33:4d:ae:33:54:fd:93:6d:f6:52:d8:53:1c:0e:d2:49:89:c6:
a1:98:de:79:7a:6c:e5:f4:58:6f:49:9a:b1:de:bd:7f:0d:9f:
0d:df:5f:7d:c5:16:df:a9:50:70:99:ef:c8:3c:43:bd:4f:7e:
83:ad:19:62:13:12:b5:41:e8:42:81:c3:81:76:14:74:d6:72:
b7:9a:5e:b0:49:2b:aa:4a:d3:e4:63:b7:d7:1f:f9:8c:ae:f2:
23:40:2f:6e:2d:6e:ab:f4:b0:6a:1b:2f:38:83:a2:5a:6f:bd:
65:ed:cf:c1:36:73:dc:41:f6:fe:25:c7:ad:6a:a5:92:91:e6:
35:4c:01:5a:0b:29:1a:bc:04:7b:2e:41:24:fa:71:90:f2:fa:
64:da:1b:7f:59:83:70:54:2f:51:5b:a1:d4:02:96:20:fd:04:
f0:dd:9b:4d:9c:54:9e:32:bb:92:59:67:33:a3:a4:a2:16:88:
47:26:12:f5:b2:d7:f4:c3:cf:f5:37:51:b9:87:a2:9d:4f:9c:
96:c6:83:e6:d0:6e:de:49:7d:11:45:82:d1:b0:51:c0:35:4f:
e1:d1:c6:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 19 22:23:58 2024 by rpki-client on console-fra.rpki-client.org