Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/2mP8O_4nSVNYTNcYQPeWp2H5lug.roa
File: 2mP8O_4nSVNYTNcYQPeWp2H5lug.roa (raw, json)
Hash identifier: zLiE6Yk5YriGtPt5B/Ch3XXv0i4qui+vUgSv2D9jWhE=
Subject key identifier: DA:63:FC:3B:FE:27:49:53:58:4C:D7:18:40:F7:96:A7:61:F9:96:E8
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 0192166A76F9167E55713BBA1F0985CCB762
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/2mP8O_4nSVNYTNcYQPeWp2H5lug.roa
Signing time: Sat 21 Sep 2024 21:08:48 +0000
ROA not before: Sat 21 Sep 2024 21:08:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 5.180.104.0/24 maxlen: 24
5.180.105.0/24 maxlen: 24
5.180.106.0/24 maxlen: 24
5.180.107.0/24 maxlen: 24
45.131.0.0/24 maxlen: 24
45.131.1.0/24 maxlen: 24
45.131.3.0/24 maxlen: 24
45.136.4.0/24 maxlen: 24
45.141.148.0/24 maxlen: 24
45.141.150.0/24 maxlen: 24
45.147.44.0/24 maxlen: 24
77.83.200.0/24 maxlen: 24
77.83.201.0/24 maxlen: 24
77.83.202.0/24 maxlen: 24
194.116.228.0/24 maxlen: 24
194.116.236.0/24 maxlen: 24
194.116.237.0/24 maxlen: 24
194.146.26.0/24 maxlen: 24
194.146.36.0/24 maxlen: 24
194.146.47.0/24 maxlen: 24
2a09:8780::/29 maxlen: 29
2a0f:b700::/29 maxlen: 29
2a0f:e900::/29 maxlen: 29
2a0f:eb07::/32 maxlen: 32
2a0f:ed00::/29 maxlen: 29
2a0f:ed03::/32 maxlen: 32
2a0f:f900::/29 maxlen: 29
2a13:a440:8::/48 maxlen: 48
2a13:a441::/32 maxlen: 32
2a13:a447::/32 maxlen: 32
Validation: Failed, certificate revoked on Sun 06 Oct 2024 20:11:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:16:6a:76:f9:16:7e:55:71:3b:ba:1f:09:85:cc:b7:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Sep 21 21:08:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=da63fc3bfe274953584cd71840f796a761f996e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ff:95:5f:84:b6:f7:c6:d9:12:50:4f:3f:5b:
62:dd:a5:83:ae:d0:59:ae:c9:25:94:2f:9d:6f:bc:
1e:a6:0c:39:d6:9b:3c:6f:a3:22:44:68:04:19:23:
36:f2:2b:07:3b:ba:6c:67:bb:28:79:d9:05:cd:27:
e7:3b:82:b2:c0:2d:74:44:fd:f1:11:e9:5c:c2:6b:
c4:2c:b1:52:76:8e:1f:d8:f2:02:f0:0a:01:55:8a:
a3:80:43:c9:b8:f1:47:dc:8f:29:19:b2:43:ce:8c:
80:29:1a:65:39:74:f2:d8:d1:0f:73:e1:b6:0e:04:
fd:4a:f2:11:6f:6c:17:ec:f4:2a:82:d3:d5:97:76:
34:15:f9:fc:ed:ee:d2:89:ca:f7:0c:e4:d1:2c:2c:
b1:34:2c:c4:c4:fc:03:c9:95:ff:6d:ba:65:8f:0a:
5a:6b:92:cb:f9:fd:74:d2:0e:f2:2f:c3:30:93:ff:
e5:8a:04:62:91:f4:0f:05:22:75:17:f7:a9:cb:f9:
06:88:cd:5a:0b:e9:50:44:2a:b1:24:fe:49:ae:0d:
ee:c9:70:75:4f:d2:3a:5d:5a:78:3c:f2:0b:6e:9b:
20:f8:07:b2:c8:77:0d:af:e9:ea:8e:86:05:b5:16:
51:b0:d0:50:b4:b3:b2:23:ab:46:cd:c4:ca:b0:5a:
5a:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:63:FC:3B:FE:27:49:53:58:4C:D7:18:40:F7:96:A7:61:F9:96:E8
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/2mP8O_4nSVNYTNcYQPeWp2H5lug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.104.0/22
45.131.0.0/23
45.131.3.0/24
45.136.4.0/24
45.141.148.0/24
45.141.150.0/24
45.147.44.0/24
77.83.200.0-77.83.202.255
194.116.228.0/24
194.116.236.0/23
194.146.26.0/24
194.146.36.0/24
194.146.47.0/24
IPv6:
2a09:8780::/29
2a0f:b700::/29
2a0f:e900::/29
2a0f:eb07::/32
2a0f:ed00::/29
2a0f:f900::/29
2a13:a440:8::/48
2a13:a441::/32
2a13:a447::/32
Signature Algorithm: sha256WithRSAEncryption
98:1f:87:96:b1:86:03:94:c5:26:25:84:f6:32:7b:48:3e:a0:
dd:08:a1:03:1d:1a:57:db:f6:8c:92:85:2e:e9:d4:4d:ff:e9:
cc:42:e0:2e:89:99:04:5f:ba:e3:25:ac:81:30:89:e4:ef:28:
0e:65:04:ca:c9:c9:b3:7d:7f:48:f7:31:d2:3a:ef:89:93:02:
99:52:81:5a:96:24:2d:b6:7b:60:cf:ee:59:f8:5b:15:55:28:
2e:be:f8:ab:54:14:5f:5c:b0:a1:6c:d0:cc:e8:92:95:6b:32:
50:89:c2:34:0b:2c:e2:bc:f2:7e:11:ba:98:d0:3c:af:d0:55:
0a:e7:c3:fb:31:a2:db:67:e7:b5:8a:da:34:b2:4b:40:b2:fc:
f5:fc:8d:fe:33:00:41:5c:8a:54:db:d7:2c:3c:2e:ca:86:62:
e9:3f:2d:f0:7d:14:e0:24:0f:2c:a6:db:7a:fd:d8:4a:be:7c:
7b:ef:53:94:22:3d:03:8d:3a:9d:ff:33:02:e8:43:ad:6d:da:
84:97:0f:4e:4d:0b:ca:37:c6:8a:f0:4f:ba:f4:76:f9:e2:1e:
77:f2:d2:8d:87:09:12:fe:68:cb:3f:ed:f9:eb:61:11:09:66:
93:34:59:8f:86:c6:cd:95:0f:1a:61:b7:46:78:a9:65:26:ef:
23:8b:35:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:32:45 2025 by rpki-client