Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/eae333-30c4-43ff-b23d-5ae5bca6f48c/1/5OBQDEVREO51fxtqt4HFe3Ab_jU.roa
File: 5OBQDEVREO51fxtqt4HFe3Ab_jU.roa (raw, json)
Hash identifier: 2pLWcNpSLVb2U5TV40DrsU4FCycV3+A2kQmuli1PlII=
Subject key identifier: E4:E0:50:0C:45:51:10:EE:75:7F:1B:6A:B7:81:C5:7B:70:1B:FE:35
Certificate issuer: /CN=055618a6195f1ecacb085ced3b0a1a17c62a2cfa
Certificate serial: 01856FF94DD849A6F2385DEC9A423C5B9E19
Authority key identifier: 05:56:18:A6:19:5F:1E:CA:CB:08:5C:ED:3B:0A:1A:17:C6:2A:2C:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BVYYphlfHsrLCFztOwoaF8YqLPo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/eae333-30c4-43ff-b23d-5ae5bca6f48c/1/5OBQDEVREO51fxtqt4HFe3Ab_jU.roa
Signing time: Mon 02 Jan 2023 00:54:47 +0000
ROA not before: Mon 02 Jan 2023 00:54:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201602
IP address blocks: 134.19.170.0/24 maxlen: 24
134.19.171.0/24 maxlen: 24
134.19.172.0/24 maxlen: 24
134.19.168.0/24 maxlen: 24
134.19.169.0/24 maxlen: 24
134.19.173.0/24 maxlen: 24
134.19.174.0/24 maxlen: 24
134.19.175.0/24 maxlen: 24
185.203.104.0/24 maxlen: 24
185.203.105.0/24 maxlen: 24
185.203.106.0/24 maxlen: 24
185.203.107.0/24 maxlen: 24
185.66.24.0/24 maxlen: 24
188.241.140.0/24 maxlen: 24
188.241.141.0/24 maxlen: 24
185.66.26.0/24 maxlen: 24
185.66.27.0/24 maxlen: 24
185.66.25.0/24 maxlen: 24
31.187.104.0/24 maxlen: 24
31.187.105.0/24 maxlen: 24
31.187.111.0/24 maxlen: 24
31.187.107.0/24 maxlen: 24
31.187.108.0/24 maxlen: 24
31.187.109.0/24 maxlen: 24
31.187.110.0/24 maxlen: 24
31.187.106.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:4d:d8:49:a6:f2:38:5d:ec:9a:42:3c:5b:9e:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=055618a6195f1ecacb085ced3b0a1a17c62a2cfa
Validity
Not Before: Jan 2 00:54:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e4e0500c455110ee757f1b6ab781c57b701bfe35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:04:d0:a3:87:1d:cc:a8:d3:a4:7d:51:ce:0f:
ea:1d:77:51:8d:d0:06:6b:e1:ab:1e:a4:83:7d:e9:
e4:8f:fe:71:16:ed:3a:1d:c1:4a:58:8c:ba:b4:1b:
e6:1a:ba:9f:d4:f7:a0:ac:b2:3a:18:60:78:e2:1b:
f3:df:27:7f:3d:a6:8d:78:a2:9d:09:ca:5b:63:bf:
8a:87:fa:cf:ca:bf:ef:1f:bd:66:16:d6:ae:10:9f:
ae:fb:d7:c0:da:72:6b:af:08:c0:21:62:88:d1:a6:
10:14:82:45:6d:41:97:ab:32:33:bf:3c:51:53:3e:
aa:c6:e3:7f:1a:92:87:f9:59:69:6d:fa:ec:5b:26:
6e:ba:33:e5:3b:4e:12:15:c9:83:0b:93:29:a9:18:
71:6d:3d:12:27:a1:fb:cf:33:75:15:69:1e:2d:34:
55:a7:df:75:d7:42:1e:5c:54:12:fe:a2:39:ad:fd:
9a:85:e5:12:94:96:e1:1d:2c:0e:93:e7:57:8a:2c:
1c:7a:c4:fb:88:47:d8:6b:0f:4c:d0:34:09:c7:dd:
fb:df:d3:6b:8e:9a:4b:0c:2a:45:0f:da:8c:33:78:
3e:6b:ef:d4:aa:b1:31:fb:94:f8:66:f1:14:56:f9:
2c:21:b3:14:bb:5f:c0:e8:eb:f3:81:58:69:b7:91:
dc:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:E0:50:0C:45:51:10:EE:75:7F:1B:6A:B7:81:C5:7B:70:1B:FE:35
X509v3 Authority Key Identifier:
keyid:05:56:18:A6:19:5F:1E:CA:CB:08:5C:ED:3B:0A:1A:17:C6:2A:2C:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BVYYphlfHsrLCFztOwoaF8YqLPo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/eae333-30c4-43ff-b23d-5ae5bca6f48c/1/5OBQDEVREO51fxtqt4HFe3Ab_jU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/eae333-30c4-43ff-b23d-5ae5bca6f48c/1/BVYYphlfHsrLCFztOwoaF8YqLPo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.187.104.0/21
134.19.168.0/21
185.66.24.0/22
185.203.104.0/22
188.241.140.0/23
Signature Algorithm: sha256WithRSAEncryption
2e:ea:bd:52:35:11:aa:81:dc:06:81:34:10:fc:7f:c5:46:49:
e6:1e:ac:2c:02:3f:5c:5a:95:c4:fd:2b:8f:11:94:1a:74:b4:
02:b3:c5:da:37:e4:18:03:74:db:5d:d4:21:14:c3:f7:83:f2:
05:e6:f3:89:b0:06:d6:f8:7c:22:d4:39:94:c0:db:66:b4:64:
a1:c2:c8:fc:80:3d:dd:e8:a5:1c:fb:93:31:8b:b5:18:7d:88:
1e:a9:99:51:bb:29:9d:2e:4a:f4:e2:f6:8e:f8:38:23:2c:d9:
c9:4c:22:a5:8b:e0:46:ed:a4:3e:69:d4:5d:13:f6:3d:bb:17:
e8:68:4d:78:d1:9a:cf:fd:23:4b:d4:a9:cd:b6:3f:81:e5:c1:
aa:d3:13:b3:41:d7:1f:56:23:af:77:3f:cc:08:9f:9c:fd:65:
e8:b5:09:19:70:59:56:77:dd:03:aa:90:aa:17:1e:5c:a4:37:
1f:76:d7:63:ee:09:e5:c0:ac:75:1a:f6:39:16:47:11:d5:ef:
52:cc:63:e3:f1:d3:d1:36:7a:b9:20:fe:12:5e:2e:b7:cf:7f:
24:b8:bb:ee:b2:fc:de:64:16:16:70:36:5a:51:c7:9a:51:9a:
5b:ae:a4:91:dd:a2:a2:87:a2:f4:e9:05:3a:4b:c8:64:3c:f1:
f0:d3:03:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 18:21:59 2024 by rpki-client on console-ams.rpki-client.org