Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/5Sv0pTywq3EPjNSVYSjKjCljrq8.roa
File: 5Sv0pTywq3EPjNSVYSjKjCljrq8.roa (raw, json)
Hash identifier: xrN0DVe7rTsz2p+V+oDqtfY/RjiPpkqyI63dOmOSPMg=
Subject key identifier: E5:2B:F4:A5:3C:B0:AB:71:0F:8C:D4:95:61:28:CA:8C:29:63:AE:AF
Certificate issuer: /CN=1e36de27974727aa0046b3e9c8d0624674541255
Certificate serial: 019081CEE6790501FA2C1F2FF839B9955ED9
Authority key identifier: 1E:36:DE:27:97:47:27:AA:00:46:B3:E9:C8:D0:62:46:74:54:12:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HjbeJ5dHJ6oARrPpyNBiRnRUElU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/5Sv0pTywq3EPjNSVYSjKjCljrq8.roa
Signing time: Fri 05 Jul 2024 07:32:18 +0000
ROA not before: Fri 05 Jul 2024 07:32:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51032
IP address blocks: 31.128.128.0/19 maxlen: 24
31.130.0.0/19 maxlen: 24
31.130.12.0/22 maxlen: 22
31.130.16.0/20 maxlen: 20
31.130.31.192/29 maxlen: 29
62.122.88.0/21 maxlen: 24
85.159.224.0/24 maxlen: 24
85.159.227.0/24 maxlen: 24
89.23.128.0/19 maxlen: 19
89.23.128.0/21 maxlen: 24
89.23.144.0/20 maxlen: 24
89.23.146.0/24 maxlen: 24
89.23.147.0/24 maxlen: 24
89.23.160.0/19 maxlen: 19
89.23.168.0/21 maxlen: 21
89.23.176.0/21 maxlen: 21
91.123.80.0/20 maxlen: 20
91.202.204.0/22 maxlen: 24
93.157.160.0/21 maxlen: 21
93.157.162.0/24 maxlen: 24
93.157.163.0/24 maxlen: 24
178.212.80.0/21 maxlen: 24
178.216.176.0/21 maxlen: 21
2a13:2c80::/29 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Jan 2025 03:48:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:81:ce:e6:79:05:01:fa:2c:1f:2f:f8:39:b9:95:5e:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e36de27974727aa0046b3e9c8d0624674541255
Validity
Not Before: Jul 5 07:32:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e52bf4a53cb0ab710f8cd4956128ca8c2963aeaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:3d:7b:d8:a3:b4:87:71:a0:71:71:4f:38:a6:
62:92:2d:fb:ba:6a:b7:85:60:ac:ba:c0:3e:3d:36:
aa:68:32:1c:df:ec:d7:5e:0d:47:9e:84:6f:b0:14:
9e:89:d1:8f:79:26:2d:11:ad:19:55:86:09:60:63:
6a:ca:7a:e4:5c:f8:58:91:e3:08:3f:8c:0d:bd:6e:
13:7c:57:5d:54:3f:fb:ee:eb:20:57:c5:67:3d:fd:
a0:58:67:2b:56:3d:e7:b6:56:44:c3:ca:1b:f2:2c:
f4:a7:09:63:f1:0d:13:88:85:6a:38:2d:f5:cd:47:
48:ce:62:bf:f7:2f:02:a4:f8:21:e9:59:18:90:a0:
58:b7:3c:89:05:55:41:0a:73:3d:3c:6e:a7:8a:74:
af:3f:3f:0b:22:f2:d5:ff:65:44:5b:f4:3b:f5:9e:
62:18:0d:76:95:96:09:d8:95:7c:a8:45:d1:98:b1:
77:43:81:1a:1c:30:b8:66:d6:98:80:9a:17:ca:16:
0e:c9:5a:b0:9e:a4:ff:db:9d:62:05:7c:64:12:40:
5b:0f:88:20:91:a2:92:90:e1:0a:dd:fd:d3:5f:12:
e5:0c:57:ab:ac:43:7c:ba:5a:04:54:6d:f5:ca:e4:
fb:d6:b9:70:4f:09:29:4b:68:65:91:93:76:22:74:
69:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:2B:F4:A5:3C:B0:AB:71:0F:8C:D4:95:61:28:CA:8C:29:63:AE:AF
X509v3 Authority Key Identifier:
keyid:1E:36:DE:27:97:47:27:AA:00:46:B3:E9:C8:D0:62:46:74:54:12:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HjbeJ5dHJ6oARrPpyNBiRnRUElU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/5Sv0pTywq3EPjNSVYSjKjCljrq8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/HjbeJ5dHJ6oARrPpyNBiRnRUElU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.128.128.0/19
31.130.0.0/19
62.122.88.0/21
85.159.224.0/24
85.159.227.0/24
89.23.128.0/18
91.123.80.0/20
91.202.204.0/22
93.157.160.0/21
178.212.80.0/21
178.216.176.0/21
IPv6:
2a13:2c80::/29
Signature Algorithm: sha256WithRSAEncryption
92:c8:70:04:79:0f:3f:0d:d7:ab:c8:21:ac:c7:9a:ec:2a:56:
e8:08:ad:50:8a:74:ce:b9:46:11:13:b6:84:03:43:fc:b9:b2:
63:91:25:4c:53:42:45:43:2b:26:ac:68:50:99:eb:af:df:ea:
95:03:5b:05:73:ff:85:b0:4f:4e:9c:bc:ea:b3:f1:e4:e2:93:
9a:1c:2b:60:89:87:ef:98:ae:f1:87:32:6c:96:a4:79:08:04:
ce:e7:aa:ca:ee:25:b3:30:20:6c:82:47:3f:28:51:0c:92:b6:
0e:d0:31:2e:bb:ba:e4:f8:61:b0:3a:5f:49:d7:e5:88:ed:76:
47:88:a0:d8:dd:5e:96:0a:92:93:7b:9f:f1:82:1f:e6:39:33:
9c:73:6d:6f:4f:12:24:34:0b:0d:6b:36:dd:16:cc:91:06:e5:
89:f7:ad:15:17:35:b9:08:72:a6:89:60:d0:24:cc:f5:f4:72:
85:c9:72:d1:f8:08:d0:29:06:a6:11:d0:3b:ca:00:f7:d4:b9:
70:7f:83:90:28:ac:3f:59:af:99:1b:b7:54:39:21:c5:85:52:
b0:f9:90:a3:90:2d:66:cc:92:ff:df:90:7f:92:27:49:2b:0c:
ef:77:69:78:8b:f3:0f:f9:bb:92:54:4d:06:8a:6c:3c:37:bd:
4b:47:c8:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:14:24 2025 by rpki-client