Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/fPfeTYa6M6CGVq19gaXxQCDkdvc.roa
File: fPfeTYa6M6CGVq19gaXxQCDkdvc.roa (raw, json)
Hash identifier: IKNoGA/QVd/P8yWoa02Pf5Wr20D2KK+YEf6HL6fQ590=
Subject key identifier: 7C:F7:DE:4D:86:BA:33:A0:86:56:AD:7D:81:A5:F1:40:20:E4:76:F7
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 01909D3240318D55C3BBF58C13E0648F6CC1
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/fPfeTYa6M6CGVq19gaXxQCDkdvc.roa
Signing time: Wed 10 Jul 2024 15:10:34 +0000
ROA not before: Wed 10 Jul 2024 15:10:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 5.180.104.0/24 maxlen: 24
5.180.105.0/24 maxlen: 24
5.180.107.0/24 maxlen: 24
45.131.0.0/24 maxlen: 24
45.131.1.0/24 maxlen: 24
45.131.3.0/24 maxlen: 24
45.141.148.0/24 maxlen: 24
45.141.150.0/24 maxlen: 24
45.147.44.0/24 maxlen: 24
77.83.200.0/24 maxlen: 24
77.83.201.0/24 maxlen: 24
77.83.202.0/24 maxlen: 24
194.116.228.0/24 maxlen: 24
194.116.236.0/24 maxlen: 24
194.116.237.0/24 maxlen: 24
194.146.26.0/24 maxlen: 24
194.146.36.0/24 maxlen: 24
194.146.47.0/24 maxlen: 24
2a0f:b700::/29 maxlen: 29
2a0f:e900::/29 maxlen: 29
2a0f:eb07::/32 maxlen: 32
2a0f:ed00::/29 maxlen: 29
2a0f:ed03::/32 maxlen: 32
2a0f:f900::/29 maxlen: 29
2a13:a440::/32 maxlen: 32
2a13:a441::/32 maxlen: 32
2a13:a447::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 13 Aug 2024 20:08:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:9d:32:40:31:8d:55:c3:bb:f5:8c:13:e0:64:8f:6c:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Jul 10 15:10:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7cf7de4d86ba33a08656ad7d81a5f14020e476f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:ad:e6:6e:fe:94:c8:e8:f3:68:d5:a9:e6:eb:
a7:42:ba:e9:f5:b0:55:75:c3:4a:fe:0c:7a:36:1a:
2a:e4:70:30:77:69:23:31:99:fe:29:19:1a:b1:ce:
a4:41:91:ae:06:fa:d8:54:29:27:87:c4:00:b7:db:
7d:29:60:2d:b2:4d:f3:5e:d1:8c:8c:1d:06:0f:3f:
5b:54:c8:6d:57:8d:7a:46:60:a4:08:8b:12:5e:c7:
80:3e:48:46:13:3a:cb:b4:d9:9a:ed:33:ab:38:62:
70:dd:e4:2d:e0:5c:5b:b1:d0:fc:15:75:e4:87:73:
5e:cc:81:a6:6f:27:5c:39:72:ac:0d:2b:49:dc:70:
17:24:11:50:6c:88:e9:d4:3f:c3:9e:da:05:d3:29:
fd:08:b6:07:11:8f:22:3d:de:01:e4:3a:3a:40:7e:
c1:0e:c9:28:e4:e4:94:62:1f:de:f8:25:83:99:92:
cd:c7:90:86:73:2f:53:70:2e:48:e3:7c:1d:e2:fa:
86:ce:1c:84:d3:3a:dc:19:76:ee:76:a1:c2:32:89:
1a:c4:fa:e9:f9:d0:7e:1f:d2:df:1e:56:f5:82:9c:
d4:16:f9:a7:19:88:cd:26:dc:b5:9e:f7:59:a6:f1:
ac:0e:73:59:a6:54:74:9b:69:9b:12:96:24:78:87:
1d:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:F7:DE:4D:86:BA:33:A0:86:56:AD:7D:81:A5:F1:40:20:E4:76:F7
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/fPfeTYa6M6CGVq19gaXxQCDkdvc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.104.0/23
5.180.107.0/24
45.131.0.0/23
45.131.3.0/24
45.141.148.0/24
45.141.150.0/24
45.147.44.0/24
77.83.200.0-77.83.202.255
194.116.228.0/24
194.116.236.0/23
194.146.26.0/24
194.146.36.0/24
194.146.47.0/24
IPv6:
2a0f:b700::/29
2a0f:e900::/29
2a0f:eb07::/32
2a0f:ed00::/29
2a0f:f900::/29
2a13:a440::/31
2a13:a447::/32
Signature Algorithm: sha256WithRSAEncryption
32:4e:37:05:e2:a8:7b:2e:f5:4a:4a:0f:cd:d2:c6:83:c6:11:
a9:11:75:39:81:f1:71:2f:b9:54:04:62:29:df:89:ca:c2:c4:
3c:5c:60:83:ba:5b:71:ff:18:a1:4a:1f:e7:c6:9c:69:c5:a9:
74:00:1a:bf:c1:82:c0:c7:f3:11:6e:0f:d5:08:09:1f:79:50:
a4:ca:13:15:3c:10:cb:86:ac:0f:fa:32:77:9c:2e:60:b1:92:
07:9b:4e:26:93:f2:e1:dd:18:22:82:15:42:dc:3f:8d:c1:72:
52:1e:1b:a6:a2:67:02:d0:58:6d:cb:e2:af:23:44:d3:bd:6c:
06:a0:e6:9f:63:77:f3:ed:a5:2b:3f:74:40:7e:61:c8:5f:c2:
81:17:bc:2b:bf:2e:49:5a:ea:3f:78:34:6b:9e:1a:6a:00:3b:
80:76:8b:d9:4f:52:db:d0:22:cc:26:ff:32:76:d0:00:f5:26:
70:35:64:59:d6:7c:32:77:5a:0b:4a:cf:ec:be:6e:80:ed:70:
a4:39:ce:d4:c9:6a:6d:d0:23:39:4e:87:f8:ee:cc:11:68:15:
71:be:31:95:67:1d:87:00:01:fe:eb:91:d1:30:0e:c8:89:ed:
82:cc:71:03:62:80:76:56:2a:2d:22:47:99:04:ac:78:5b:ec:
6d:4d:e5:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:29:54 2025 by rpki-client