Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/v-vU671DSKQiEyLcTaguO9Gg7f4.roa
File: v-vU671DSKQiEyLcTaguO9Gg7f4.roa (raw, json)
Hash identifier: 0AkJUGyeBC02y1j8R5Ta9IcfiC8H52oLz+agj/U3Jo4=
Subject key identifier: BF:EB:D4:EB:BD:43:48:A4:22:13:22:DC:4D:A8:2E:3B:D1:A0:ED:FE
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 019007FC9E28209ADFEFF9FB51CEB7FD3AE5
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/v-vU671DSKQiEyLcTaguO9Gg7f4.roa
Signing time: Tue 11 Jun 2024 15:48:34 +0000
ROA not before: Tue 11 Jun 2024 15:48:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29119
IP address blocks: 5.182.72.0/22 maxlen: 24
45.136.32.0/22 maxlen: 24
45.146.224.0/22 maxlen: 24
77.81.167.0/24 maxlen: 24
92.114.36.0/24 maxlen: 24
92.114.53.0/24 maxlen: 24
92.114.83.0/24 maxlen: 24
141.98.36.0/22 maxlen: 24
141.98.52.0/22 maxlen: 24
185.44.28.0/22 maxlen: 24
185.114.64.0/22 maxlen: 24
185.123.136.0/22 maxlen: 24
185.126.232.0/22 maxlen: 24
185.128.192.0/22 maxlen: 24
185.150.80.0/22 maxlen: 24
185.151.176.0/22 maxlen: 24
185.198.108.0/22 maxlen: 24
185.230.0.0/22 maxlen: 24
185.248.208.0/22 maxlen: 24
193.39.216.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 24 Jun 2024 10:17:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:07:fc:9e:28:20:9a:df:ef:f9:fb:51:ce:b7:fd:3a:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Jun 11 15:48:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bfebd4ebbd4348a4221322dc4da82e3bd1a0edfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e5:8e:7e:0b:69:99:3d:5e:e9:ae:a4:ec:a5:
17:18:a6:7f:dd:e7:8d:e2:aa:c3:8c:ff:22:74:8d:
4c:00:72:f7:4e:b1:d4:74:c9:10:de:14:82:be:13:
6e:05:37:cf:fe:a3:98:fd:5b:4d:bc:56:3c:7c:21:
17:04:56:27:86:cc:12:cc:f6:4e:40:c9:0d:1f:11:
80:fd:3b:9c:c2:db:8d:20:64:7a:28:a3:b9:95:e9:
2c:e0:e0:a8:4c:6a:9b:71:5f:1e:56:7c:ea:03:b8:
f0:99:f8:d4:75:48:c3:84:d1:71:c9:ca:32:34:c8:
29:a1:ef:21:18:c3:fa:45:df:1b:64:99:24:66:e9:
50:6f:aa:93:44:4e:77:ca:e9:6a:3b:ad:d1:a7:d1:
04:83:8d:db:81:48:e4:bc:f1:51:35:15:f4:6b:5d:
8b:98:39:6a:50:47:ce:b0:c1:bd:bd:02:b6:ea:4b:
28:5a:1a:15:7f:80:68:18:f9:69:3b:97:f1:a5:f2:
ea:12:9c:a0:e6:83:90:97:6d:74:dc:79:55:72:2b:
20:9a:58:7c:a9:19:c3:29:7d:2a:ab:0b:72:87:e1:
29:49:7f:da:8d:de:dc:36:3f:01:ef:07:f6:fd:bb:
9c:2a:f5:23:54:60:0c:7d:97:05:e7:1a:9b:4a:5d:
d4:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:EB:D4:EB:BD:43:48:A4:22:13:22:DC:4D:A8:2E:3B:D1:A0:ED:FE
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/v-vU671DSKQiEyLcTaguO9Gg7f4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.72.0/22
45.136.32.0/22
45.146.224.0/22
77.81.167.0/24
92.114.36.0/24
92.114.53.0/24
92.114.83.0/24
141.98.36.0/22
141.98.52.0/22
185.44.28.0/22
185.114.64.0/22
185.123.136.0/22
185.126.232.0/22
185.128.192.0/22
185.150.80.0/22
185.151.176.0/22
185.198.108.0/22
185.230.0.0/22
185.248.208.0/22
193.39.216.0/22
Signature Algorithm: sha256WithRSAEncryption
ae:6d:fc:6b:ff:cf:73:98:4d:56:a4:b6:38:d9:45:1f:6f:46:
dd:31:ae:1d:82:3e:9a:cf:52:55:8c:56:ee:7d:ae:8e:d5:78:
d1:50:37:3d:3d:28:2b:81:96:65:cb:08:47:3a:d8:77:8a:df:
a0:e6:aa:84:5b:33:3e:48:a6:9a:e3:85:cd:e3:21:e2:c8:99:
e8:b8:13:89:27:51:60:b1:94:a8:fc:7d:12:51:7a:96:09:8e:
2f:00:bf:a1:b4:12:24:8c:8d:27:4b:99:aa:3f:16:1f:ce:63:
b4:a7:b1:90:3a:c9:1b:cf:2f:15:d5:b4:19:56:05:c9:ba:04:
9e:f9:fe:b6:22:ec:45:e4:5a:df:07:b1:0c:ae:81:5d:dd:38:
71:fc:30:57:3f:27:5a:f6:99:41:7f:01:c1:73:4e:11:1c:f5:
3b:03:f8:15:9e:ff:9b:84:d7:de:2b:5f:0d:ed:76:ae:86:e0:
94:b1:8b:1e:6a:1c:5e:67:aa:70:d4:e1:ab:f9:83:1c:3e:c7:
67:5b:75:2e:b8:b7:68:6d:f2:83:34:1c:33:6d:a1:49:7c:d6:
a1:6c:b5:ed:3c:42:cc:52:75:6a:9a:dc:f9:d7:1b:2f:f7:fd:
aa:cf:83:71:11:ae:55:01:1b:bc:7f:5d:a0:1d:4d:0d:f5:c2:
6a:a4:04:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 24 16:22:20 2024 by rpki-client on console-ams.rpki-client.org