Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/1-Bj4mNYhpewZt-uJ5db134A9CTA.roa
File: 1-Bj4mNYhpewZt-uJ5db134A9CTA.roa (raw, json)
Hash identifier: beD4mNA0x09W7+GPxUFUJEz12NH5h4lZxdwjehG11eA=
Subject key identifier: F8:18:F8:98:D6:21:A5:EC:19:B7:EB:89:E5:D6:F5:DF:80:3D:09:30
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 0190CF4673DA063DEB3F6FCD8D87450AD083
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/1-Bj4mNYhpewZt-uJ5db134A9CTA.roa
Signing time: Sat 20 Jul 2024 08:33:39 +0000
ROA not before: Sat 20 Jul 2024 08:33:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209737
IP address blocks: 5.180.105.0/24 maxlen: 24
5.180.107.0/24 maxlen: 24
45.131.0.0/24 maxlen: 24
45.131.1.0/24 maxlen: 24
45.141.148.0/24 maxlen: 24
45.147.44.0/24 maxlen: 24
77.83.200.0/24 maxlen: 24
77.83.201.0/24 maxlen: 24
77.83.202.0/24 maxlen: 24
77.83.203.0/24 maxlen: 24
194.116.228.0/24 maxlen: 24
194.116.236.0/24 maxlen: 24
194.116.237.0/24 maxlen: 24
194.146.26.0/24 maxlen: 24
194.146.36.0/24 maxlen: 24
194.146.47.0/24 maxlen: 24
2a09:8780::/29 maxlen: 29
2a0f:b700::/29 maxlen: 29
2a0f:e900::/29 maxlen: 29
2a0f:eb00::/29 maxlen: 29
2a0f:eb00::/32 maxlen: 32
2a0f:eb07::/32 maxlen: 32
2a0f:ed00::/29 maxlen: 29
2a0f:ed03::/32 maxlen: 32
2a0f:f900::/29 maxlen: 29
2a13:a440::/32 maxlen: 32
2a13:a441::/32 maxlen: 32
2a13:a445::/32 maxlen: 32
2a13:a447::/32 maxlen: 32
Validation: Failed, certificate revoked on Sun 01 Sep 2024 19:43:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:cf:46:73:da:06:3d:eb:3f:6f:cd:8d:87:45:0a:d0:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Jul 20 08:33:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f818f898d621a5ec19b7eb89e5d6f5df803d0930
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:33:13:3c:bd:ee:a9:d7:21:03:9a:6b:5c:d8:
a3:41:19:1d:75:53:58:a6:a8:41:66:b3:28:02:64:
e4:3d:82:bb:4b:8c:91:84:9e:a1:49:3c:e7:57:11:
9a:44:80:2e:56:1e:97:02:77:fa:d7:d6:f5:cc:54:
fe:84:d4:ec:c8:9f:ed:ac:7b:c8:ff:1d:c9:0c:16:
cd:2b:65:1b:01:70:40:0e:66:a0:46:68:f2:43:80:
3e:c0:f7:fa:fb:1b:fd:b7:01:8c:0e:fd:b0:2f:5c:
3f:75:b5:79:af:91:f9:df:cb:4c:48:a3:84:5a:38:
a0:b7:2c:07:8b:9d:eb:30:b6:7f:de:ac:04:43:cc:
f8:46:26:03:30:8d:d4:42:d2:85:c3:e6:5f:8e:6b:
da:81:52:b1:61:13:35:8c:b6:ea:c8:5a:4a:7c:92:
1a:b0:43:f9:6a:c3:19:b1:14:be:21:e7:4e:36:71:
4a:c5:da:1f:cc:53:ab:b8:04:b3:3f:f0:22:02:f7:
ac:a3:fe:f2:b7:de:2b:78:c7:0b:66:a3:25:9e:85:
4b:8e:5e:02:74:94:ac:ce:23:35:fc:22:09:d6:e0:
86:7f:76:38:b1:26:df:40:2e:86:18:9d:2a:41:79:
e6:a9:02:d0:45:81:47:dd:8a:1e:7b:0a:32:87:e4:
98:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:18:F8:98:D6:21:A5:EC:19:B7:EB:89:E5:D6:F5:DF:80:3D:09:30
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/1-Bj4mNYhpewZt-uJ5db134A9CTA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.105.0/24
5.180.107.0/24
45.131.0.0/23
45.141.148.0/24
45.147.44.0/24
77.83.200.0/22
194.116.228.0/24
194.116.236.0/23
194.146.26.0/24
194.146.36.0/24
194.146.47.0/24
IPv6:
2a09:8780::/29
2a0f:b700::/29
2a0f:e900::/29
2a0f:eb00::/29
2a0f:ed00::/29
2a0f:f900::/29
2a13:a440::/31
2a13:a445::/32
2a13:a447::/32
Signature Algorithm: sha256WithRSAEncryption
4b:0b:5a:f1:f5:3d:ac:f2:98:d3:36:ff:b3:f6:57:c8:68:6f:
cb:7c:8b:97:6c:15:e7:7f:05:3d:e4:d9:54:3a:02:8e:3f:18:
21:2f:b8:b5:ff:53:f5:86:63:8f:ec:d3:57:56:d8:0e:71:e5:
6f:b0:8d:68:85:a9:89:1f:1e:42:5c:1a:dd:a7:ec:4b:bf:ed:
a8:73:e0:73:e1:92:31:c9:52:71:47:2e:b8:2f:41:20:14:bb:
61:6f:7e:54:4a:c5:5e:3f:33:4a:6e:b2:7d:b9:f8:20:ac:32:
b6:d0:e2:d2:d3:7e:4e:5f:6f:6b:49:53:07:8a:54:a3:53:03:
66:31:16:7f:be:84:38:c0:86:f4:5a:bf:07:84:2e:c6:f3:80:
f7:cc:ab:93:f7:99:e4:c7:40:d4:43:9a:f3:8b:9e:49:7c:ca:
9b:dc:c4:71:5b:b4:fa:24:07:b7:18:d7:a1:9c:16:02:e6:b9:
58:e9:c0:72:ed:96:04:f2:ff:d9:ab:57:22:be:23:0b:90:ef:
e5:21:d5:80:a4:ca:7a:f9:ae:d9:fb:9d:b8:61:f6:55:58:c5:
a5:6a:f3:84:de:2d:fe:e2:be:ed:d0:20:f1:2a:56:8c:17:6c:
4b:fb:9b:2b:84:28:85:52:02:ca:1e:56:97:65:5b:af:80:36:
19:33:dc:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:33:58 2025 by rpki-client