Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/c83sej60ZZae0UuraDBIEzUrNEg.roa
File: c83sej60ZZae0UuraDBIEzUrNEg.roa (raw, json)
Hash identifier: vkJn+ZIOMZAegp+dErwj39RE6xgjL+ALeFxjZDXtfoc=
Subject key identifier: 73:CD:EC:7A:3E:B4:65:96:9E:D1:4B:AB:68:30:48:13:35:2B:34:48
Certificate issuer: /CN=72b78f6682fc39c55b41d48f80b8838d5d2dbf07
Certificate serial: 018DAF57C8BA06B1B0C4E62C637F6C336325
Authority key identifier: 72:B7:8F:66:82:FC:39:C5:5B:41:D4:8F:80:B8:83:8D:5D:2D:BF:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/crePZoL8OcVbQdSPgLiDjV0tvwc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/c83sej60ZZae0UuraDBIEzUrNEg.roa
Signing time: Fri 16 Feb 2024 00:36:22 +0000
ROA not before: Fri 16 Feb 2024 00:36:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 64200
IP address blocks: 5.182.186.0/24 maxlen: 24
5.182.193.0/24 maxlen: 24
5.182.194.0/24 maxlen: 24
5.182.195.0/24 maxlen: 24
31.132.53.0/24 maxlen: 24
31.132.54.0/23 maxlen: 23
45.67.147.0/24 maxlen: 24
63.246.129.0/24 maxlen: 24
63.246.136.0/24 maxlen: 24
63.246.139.0/24 maxlen: 24
63.246.142.0/24 maxlen: 24
63.246.145.0/24 maxlen: 24
63.246.146.0/23 maxlen: 23
63.246.148.0/24 maxlen: 24
63.246.149.0/24 maxlen: 24
63.246.152.0/24 maxlen: 24
63.246.158.0/23 maxlen: 23
63.246.159.0/24 maxlen: 24
185.171.124.0/24 maxlen: 24
185.171.125.0/24 maxlen: 24
185.171.127.0/24 maxlen: 24
185.198.88.0/24 maxlen: 24
185.201.41.0/24 maxlen: 24
185.201.43.0/24 maxlen: 24
185.205.206.0/24 maxlen: 24
192.145.68.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 04 Apr 2024 04:49:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:af:57:c8:ba:06:b1:b0:c4:e6:2c:63:7f:6c:33:63:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72b78f6682fc39c55b41d48f80b8838d5d2dbf07
Validity
Not Before: Feb 16 00:36:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=73cdec7a3eb465969ed14bab68304813352b3448
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:43:dc:7c:1f:92:c2:41:1a:f5:c6:6c:a1:24:
5d:12:91:84:02:75:27:bc:c3:8b:4e:bc:d6:fd:78:
c2:fe:b4:70:b5:2f:5d:65:86:c8:bc:a2:87:99:3f:
7e:fa:2d:98:32:06:e5:70:d0:b1:ef:5e:1c:b8:f3:
ad:a9:c8:f6:dc:64:d2:f3:64:c9:e3:fd:ae:0e:6b:
ed:2b:ce:ed:5e:a7:35:54:38:8b:c5:cd:ea:7f:56:
bc:bb:ad:f8:2e:b0:28:17:5f:6a:ae:27:ee:10:ac:
15:a2:83:39:8e:e8:49:ed:d8:b7:31:c1:96:09:22:
f3:f8:66:2f:26:85:4c:05:d5:c8:a5:be:a6:f4:9a:
c7:5c:76:ca:a1:84:2b:50:d4:c4:1d:fb:47:d5:38:
15:84:ee:dc:04:a3:5f:d3:60:b0:6e:26:c4:85:f1:
1b:8e:fd:18:e9:ef:09:b5:50:29:1a:f4:70:a4:f1:
d0:10:77:af:9a:fd:a4:9b:40:e8:56:d6:31:f2:21:
6e:a4:e6:5a:da:0e:77:df:27:4a:f9:3c:26:df:08:
c1:8f:93:7c:46:0a:d7:41:f6:60:8f:83:d1:60:03:
e2:52:ee:4b:20:3c:00:1b:21:30:70:87:f1:a4:0e:
5a:75:54:23:5e:2a:63:57:6a:18:b1:36:95:8b:b9:
ee:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:CD:EC:7A:3E:B4:65:96:9E:D1:4B:AB:68:30:48:13:35:2B:34:48
X509v3 Authority Key Identifier:
keyid:72:B7:8F:66:82:FC:39:C5:5B:41:D4:8F:80:B8:83:8D:5D:2D:BF:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/crePZoL8OcVbQdSPgLiDjV0tvwc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/c83sej60ZZae0UuraDBIEzUrNEg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/crePZoL8OcVbQdSPgLiDjV0tvwc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.186.0/24
5.182.193.0-5.182.195.255
31.132.53.0-31.132.55.255
45.67.147.0/24
63.246.129.0/24
63.246.136.0/24
63.246.139.0/24
63.246.142.0/24
63.246.145.0-63.246.149.255
63.246.152.0/24
63.246.158.0/23
185.171.124.0/23
185.171.127.0/24
185.198.88.0/24
185.201.41.0/24
185.201.43.0/24
185.205.206.0/24
192.145.68.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:cc:99:d4:a3:52:91:37:25:6c:7c:21:69:b6:a6:09:58:b4:
f3:70:b6:7e:2e:da:5b:90:ee:30:4e:af:af:54:a7:39:c3:1f:
d6:31:00:be:f8:f8:3d:da:0f:e4:93:fd:24:c3:f9:00:2d:6f:
0e:8e:a2:7d:db:05:21:01:f3:98:10:b1:75:21:3f:ea:9d:55:
26:cd:4e:99:dd:0b:90:ba:77:e1:de:ff:9a:f6:06:5c:c2:d2:
5f:c6:9e:a5:a6:3d:0c:3e:1d:6a:9e:7d:8f:5b:42:52:16:25:
71:94:29:35:90:6d:26:5f:97:a3:ee:a3:a8:ed:9d:af:dd:de:
4a:6f:2a:5b:6f:98:f2:aa:46:69:7d:be:5c:df:28:f2:e5:e9:
c3:9f:81:82:de:d6:f4:7b:77:13:ed:84:c5:3b:26:23:65:cf:
94:c9:49:df:40:9a:bf:65:aa:6b:3a:ca:38:e0:24:b6:09:0c:
e6:fe:ff:f4:36:48:66:32:ba:59:4b:2b:6f:68:5f:32:32:bf:
ae:93:21:a4:42:e8:29:ba:f4:16:f2:9f:88:2f:52:4d:bd:79:
58:da:6e:a8:b2:97:fc:85:ab:8d:2d:ed:9f:23:23:20:48:93:
6b:35:dc:ce:0f:67:3a:2d:66:02:af:d9:9d:0c:25:be:63:f3:
0e:ed:48:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 4 09:29:00 2024 by rpki-client on console-fra.rpki-client.org