Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/_dEOE168g6uLzbr_629cBlXY4rI.roa
File: _dEOE168g6uLzbr_629cBlXY4rI.roa (raw, json)
Hash identifier: RGSaxvUd0PVEuGjwQYx1Oh97O5XcAR7cLD9iJgtShuA=
Subject key identifier: FD:D1:0E:13:5E:BC:83:AB:8B:CD:BA:FF:EB:6F:5C:06:55:D8:E2:B2
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0188B69478E17D6B473183B3E76723944558
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/_dEOE168g6uLzbr_629cBlXY4rI.roa
Signing time: Tue 13 Jun 2023 21:06:03 +0000
ROA not before: Tue 13 Jun 2023 21:06:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207569
IP address blocks: 139.28.221.0/24 maxlen: 24
139.28.220.0/24 maxlen: 24
5.180.136.0/24 maxlen: 24
5.180.137.0/24 maxlen: 24
185.94.167.0/24 maxlen: 24
45.133.245.0/24 maxlen: 24
185.188.181.0/24 maxlen: 24
95.214.8.0/24 maxlen: 24
185.17.2.0/24 maxlen: 24
194.53.54.0/24 maxlen: 24
85.209.0.0/24 maxlen: 24
185.105.118.0/24 maxlen: 24
195.66.87.0/24 maxlen: 24
5.252.116.0/24 maxlen: 24
193.109.84.0/24 maxlen: 24
45.89.64.0/24 maxlen: 24
185.104.250.0/24 maxlen: 24
46.17.106.0/24 maxlen: 24
2a0a:9300:1::/48 maxlen: 48
2a0a:9300:aaaa::/48 maxlen: 48
2a0a:9300::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 21 Jul 2023 13:08:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b6:94:78:e1:7d:6b:47:31:83:b3:e7:67:23:94:45:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jun 13 21:06:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fdd10e135ebc83ab8bcdbaffeb6f5c0655d8e2b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:51:98:05:27:c9:27:0f:c6:dc:d7:49:d5:d2:
58:06:41:3b:e1:1b:fb:cc:2b:4d:9f:f9:4d:18:26:
ee:97:f1:ab:d9:3f:64:98:67:72:55:44:f0:07:12:
38:3b:22:72:5d:2f:d7:e4:50:42:7a:37:f1:32:b7:
2b:c1:27:53:5a:d4:99:98:94:80:4a:c0:8f:a4:b3:
e1:36:65:2b:84:ff:49:50:dd:04:a4:6b:12:94:e8:
33:34:72:a1:ff:73:b7:5c:31:d4:87:66:68:1e:88:
ad:d3:23:e6:29:73:bf:a6:9d:1c:61:3a:4e:52:91:
ee:7e:9b:27:28:09:5a:4e:ae:02:62:67:73:55:4e:
f2:2c:f0:99:a5:65:6e:d3:80:d0:85:b5:ba:38:14:
8f:1f:aa:4e:2d:fb:bd:4b:7e:d5:22:2f:10:af:d0:
90:b3:9c:8f:0a:a6:40:9f:10:e2:2b:65:62:38:bd:
7a:0e:38:81:37:c8:00:dc:2d:8e:42:5e:84:fd:b8:
a7:91:cd:fc:aa:0f:ac:b1:87:c1:83:fc:e5:ce:6c:
00:05:37:0d:65:63:32:5a:ea:00:e2:6b:61:f9:a8:
12:27:76:2c:92:28:77:fe:14:b9:49:47:63:25:3f:
d3:55:ce:7c:a9:22:d9:c6:a1:07:b1:38:f7:71:ed:
09:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:D1:0E:13:5E:BC:83:AB:8B:CD:BA:FF:EB:6F:5C:06:55:D8:E2:B2
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/_dEOE168g6uLzbr_629cBlXY4rI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.136.0/23
5.252.116.0/24
45.89.64.0/24
45.133.245.0/24
46.17.106.0/24
85.209.0.0/24
95.214.8.0/24
139.28.220.0/23
185.17.2.0/24
185.94.167.0/24
185.104.250.0/24
185.105.118.0/24
185.188.181.0/24
193.109.84.0/24
194.53.54.0/24
195.66.87.0/24
IPv6:
2a0a:9300::/32
Signature Algorithm: sha256WithRSAEncryption
4d:93:e0:53:55:43:47:37:62:4c:3b:ad:29:62:58:55:d5:a2:
93:d9:f9:64:69:5f:a0:36:5d:2a:85:63:5e:be:e5:76:3f:ab:
29:a4:dc:4a:40:74:b2:d5:81:42:20:e6:7e:db:5c:1c:ee:ae:
fc:cc:28:f8:6f:b2:87:0f:34:1a:36:bf:e1:7a:38:bb:69:8c:
ad:3f:5b:62:ec:80:b0:37:7f:ef:4f:e5:fc:d7:27:68:de:82:
a0:60:a3:a4:ea:c8:68:44:72:e2:72:06:a4:38:0f:52:4f:e5:
f7:c2:d0:be:c5:88:5f:c6:6b:4c:2c:8b:b1:fc:4c:3b:ac:54:
b2:aa:e4:92:a7:ca:90:38:22:4f:a9:a6:42:58:d1:c4:fd:f0:
45:1a:ef:95:46:28:1d:c0:49:e1:67:a6:82:ed:50:e7:34:fa:
1b:aa:d4:44:d8:cf:35:52:05:e9:9d:62:30:c3:87:91:a2:a8:
71:27:42:b8:16:d4:b6:12:bf:69:dc:c7:f6:14:0a:c3:a6:f9:
53:a9:31:38:7b:b8:4c:1a:a4:72:0a:c7:38:6c:6f:0d:97:b7:
3d:18:23:29:b8:39:41:f9:50:de:7a:64:60:47:95:54:72:b4:
b1:aa:df:9f:aa:9a:9a:e6:78:10:6c:f2:0c:d1:3c:c9:67:45:
69:0f:9a:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:10 2024 by rpki-client on console-ams.rpki-client.org