Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/hM48VT_83xHKws87x9vA3mO99As.roa
File: hM48VT_83xHKws87x9vA3mO99As.roa (raw, json)
Hash identifier: 2K6s9YMXSdsNZWdz71IhbOO2BYMdE2h4DnjG5S7I8ZQ=
Subject key identifier: 84:CE:3C:55:3F:FC:DF:11:CA:C2:CF:3B:C7:DB:C0:DE:63:BD:F4:0B
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 018FE8C221F65C752B19CB1F2B3934B0726B
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/hM48VT_83xHKws87x9vA3mO99As.roa
Signing time: Wed 05 Jun 2024 14:16:27 +0000
ROA not before: Wed 05 Jun 2024 14:16:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 5.180.104.0/24 maxlen: 24
5.180.107.0/24 maxlen: 24
45.131.0.0/24 maxlen: 24
45.131.1.0/24 maxlen: 24
45.131.3.0/24 maxlen: 24
45.141.148.0/24 maxlen: 24
45.141.150.0/24 maxlen: 24
45.147.44.0/24 maxlen: 24
77.83.200.0/24 maxlen: 24
77.83.201.0/24 maxlen: 24
77.83.202.0/24 maxlen: 24
194.116.228.0/24 maxlen: 24
194.116.236.0/24 maxlen: 24
194.116.237.0/24 maxlen: 24
194.146.26.0/24 maxlen: 24
194.146.36.0/24 maxlen: 24
194.146.47.0/24 maxlen: 24
2a0f:b700::/29 maxlen: 29
2a0f:e900::/29 maxlen: 29
2a0f:eb07::/32 maxlen: 32
2a0f:ed00::/29 maxlen: 29
2a0f:f900::/29 maxlen: 29
2a13:a440::/32 maxlen: 32
2a13:a441::/32 maxlen: 32
2a13:a445::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 05 Jun 2024 17:55:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e8:c2:21:f6:5c:75:2b:19:cb:1f:2b:39:34:b0:72:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Jun 5 14:16:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=84ce3c553ffcdf11cac2cf3bc7dbc0de63bdf40b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e5:53:d3:93:5b:9f:db:6a:83:92:de:76:76:
2e:10:11:9f:98:23:5b:72:59:d1:97:17:96:e1:f6:
51:ab:27:cb:16:55:01:ee:e1:1a:b5:bd:c1:f3:ea:
c6:5d:be:63:6e:87:40:c3:8a:5a:16:0c:79:0c:00:
cc:26:e5:cf:10:cc:96:ee:d9:aa:84:e5:18:a7:b6:
58:82:23:a0:f7:65:23:e0:94:73:94:ba:a0:14:7c:
f7:a1:c7:ed:41:8e:9b:01:dd:3e:2d:14:d5:81:f5:
38:1d:b2:28:e3:3d:38:bb:fb:dd:40:be:d6:8f:bd:
9a:e4:8b:39:8c:eb:02:d1:75:e0:51:24:7b:43:1a:
e8:68:11:d6:37:1c:e7:bb:a3:7b:cd:c2:ba:23:c6:
bd:62:f4:cd:e8:16:43:7c:07:38:0a:9f:fd:5c:51:
a2:f4:e7:f3:1f:90:a9:b0:00:eb:ea:04:9f:81:44:
5e:9b:21:a9:da:bc:e0:ea:c5:88:f3:40:50:7a:1b:
29:35:b1:e6:5c:25:2b:9b:20:37:9c:a8:bf:8b:12:
78:d3:6f:1e:5a:ff:9b:44:3f:1c:a2:79:93:46:b3:
3d:48:30:3f:b3:bc:7b:38:cc:48:75:d5:5c:46:c8:
e4:be:67:6b:09:f5:a6:38:b9:ea:10:7d:a4:37:58:
e2:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:CE:3C:55:3F:FC:DF:11:CA:C2:CF:3B:C7:DB:C0:DE:63:BD:F4:0B
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/hM48VT_83xHKws87x9vA3mO99As.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.104.0/24
5.180.107.0/24
45.131.0.0/23
45.131.3.0/24
45.141.148.0/24
45.141.150.0/24
45.147.44.0/24
77.83.200.0-77.83.202.255
194.116.228.0/24
194.116.236.0/23
194.146.26.0/24
194.146.36.0/24
194.146.47.0/24
IPv6:
2a0f:b700::/29
2a0f:e900::/29
2a0f:eb07::/32
2a0f:ed00::/29
2a0f:f900::/29
2a13:a440::/31
2a13:a445::/32
Signature Algorithm: sha256WithRSAEncryption
20:9a:d7:b7:05:aa:68:7b:6d:41:da:8b:ee:f4:aa:d5:9e:fc:
2b:ee:d8:24:b7:df:79:a7:19:f9:51:4a:c8:b0:e7:15:ce:c4:
43:1e:58:c5:18:14:03:b5:29:33:7c:7a:9a:27:6f:53:f3:33:
86:39:ac:a3:91:e1:14:19:43:26:b7:b9:96:d4:c0:62:9c:f4:
00:d1:58:14:85:a9:c0:c4:28:33:42:91:dd:14:5c:b6:f6:8d:
5b:c1:c0:72:ff:bf:30:1b:11:a2:84:be:3f:57:05:80:68:3c:
0f:3b:4f:9a:a1:fc:53:8c:54:9a:9b:4a:46:67:e9:09:2e:45:
0d:b6:69:5b:c7:3f:6c:6e:33:8b:9b:cd:05:7d:0a:11:5f:2a:
35:72:e8:9b:f7:b7:47:22:6e:e5:cd:18:73:24:b9:e4:58:48:
15:06:86:bf:9d:2f:71:63:a1:45:fe:b9:71:f5:bc:9c:2d:d7:
3c:8f:a2:a1:40:ca:57:85:79:9a:d4:9c:ec:05:f9:37:92:95:
ee:cc:db:70:57:44:00:18:9e:de:c6:fd:1a:db:81:83:29:e3:
a6:b6:e5:6d:81:73:6c:9d:c1:9f:23:31:5c:2c:fe:66:22:20:
e9:ce:02:e3:32:0f:0a:f8:df:50:33:83:39:ce:2c:29:1e:ce:
b1:84:f5:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:39:52 2025 by rpki-client