Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/rcfoTxyQcMxzdvH8juTRkY8UUT4.roa
File: rcfoTxyQcMxzdvH8juTRkY8UUT4.roa (raw, json)
Hash identifier: oWqd9ITSXOgc/b3AlcWS/hKzoSyC5ukiu3bBdfUcwUc=
Subject key identifier: AD:C7:E8:4F:1C:90:70:CC:73:76:F1:FC:8E:E4:D1:91:8F:14:51:3E
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 0191AF1D0F6B5A2136DF2F5B8A23460E7D25
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/rcfoTxyQcMxzdvH8juTRkY8UUT4.roa
Signing time: Sun 01 Sep 2024 19:43:22 +0000
ROA not before: Sun 01 Sep 2024 19:43:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209737
IP address blocks: 5.180.105.0/24 maxlen: 24
5.180.107.0/24 maxlen: 24
45.131.0.0/24 maxlen: 24
45.131.1.0/24 maxlen: 24
45.141.148.0/24 maxlen: 24
45.147.44.0/24 maxlen: 24
77.83.200.0/24 maxlen: 24
77.83.201.0/24 maxlen: 24
77.83.202.0/24 maxlen: 24
77.83.203.0/24 maxlen: 24
194.116.228.0/24 maxlen: 24
194.116.236.0/24 maxlen: 24
194.116.237.0/24 maxlen: 24
194.146.26.0/24 maxlen: 24
194.146.36.0/24 maxlen: 24
194.146.47.0/24 maxlen: 24
2a09:8780::/29 maxlen: 29
2a0f:b700::/29 maxlen: 29
2a0f:e900::/29 maxlen: 29
2a0f:eb00::/29 maxlen: 29
2a0f:eb00::/32 maxlen: 32
2a0f:eb07::/32 maxlen: 32
2a0f:ed00::/29 maxlen: 29
2a0f:ed03::/32 maxlen: 32
2a0f:f900::/29 maxlen: 29
2a13:a441::/32 maxlen: 32
2a13:a445::/32 maxlen: 32
2a13:a447::/32 maxlen: 32
Validation: Failed, certificate revoked on Sat 14 Sep 2024 07:32:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:af:1d:0f:6b:5a:21:36:df:2f:5b:8a:23:46:0e:7d:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Sep 1 19:43:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=adc7e84f1c9070cc7376f1fc8ee4d1918f14513e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:ba:8c:db:9f:f3:ad:3e:c4:31:55:39:c0:00:
25:6f:69:9d:c1:98:fb:0b:82:ad:bc:cd:6a:89:93:
44:2a:d0:fd:b9:e4:01:b4:c2:e5:cd:ab:a4:48:b1:
ad:10:a9:3e:37:66:93:ee:0d:e0:13:65:6a:5f:9b:
0a:e1:af:66:e4:24:2d:b6:51:28:7b:cb:8a:47:fa:
c4:28:c7:01:3c:41:d5:e6:4d:1e:b6:b0:92:91:04:
a7:73:b8:d7:1b:f7:97:ae:cc:a1:d4:70:87:22:b2:
82:34:45:ea:41:15:90:cd:8a:ad:2b:70:5c:83:e6:
d1:bf:11:95:8b:d8:74:01:c5:b6:e4:a2:e0:e2:96:
a3:32:63:42:af:dc:e4:6b:18:fe:18:e4:e0:aa:e1:
aa:19:06:15:34:7a:0f:8a:24:36:3e:fa:80:ef:b2:
e7:bf:90:89:7e:15:00:8b:85:57:40:10:be:a0:5e:
aa:0f:4a:95:6c:fc:1b:c4:4f:0d:8b:d6:53:4d:fb:
a0:44:ee:5d:37:10:f9:ea:bd:54:86:8e:d1:18:4f:
ae:9a:0b:01:11:3b:da:a2:ba:0c:6b:69:6a:cf:18:
90:ce:0d:3e:40:24:4c:5e:2e:24:5e:7c:ba:40:f2:
2a:ae:be:a1:7c:81:c8:d3:34:5a:40:03:b8:0c:a6:
a4:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:C7:E8:4F:1C:90:70:CC:73:76:F1:FC:8E:E4:D1:91:8F:14:51:3E
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/rcfoTxyQcMxzdvH8juTRkY8UUT4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.105.0/24
5.180.107.0/24
45.131.0.0/23
45.141.148.0/24
45.147.44.0/24
77.83.200.0/22
194.116.228.0/24
194.116.236.0/23
194.146.26.0/24
194.146.36.0/24
194.146.47.0/24
IPv6:
2a09:8780::/29
2a0f:b700::/29
2a0f:e900::/29
2a0f:eb00::/29
2a0f:ed00::/29
2a0f:f900::/29
2a13:a441::/32
2a13:a445::/32
2a13:a447::/32
Signature Algorithm: sha256WithRSAEncryption
0d:51:a0:4c:1c:60:8e:cd:07:0d:de:d9:ad:87:b0:67:5f:8f:
4c:2b:ed:ce:ce:46:14:48:1c:09:9f:40:23:8d:fe:30:4e:3e:
f2:31:4d:cb:0e:3a:7f:89:53:f5:8c:09:ce:b8:57:ec:0b:e2:
b3:de:5c:71:08:66:52:65:64:c8:3d:10:47:94:2c:18:89:89:
5d:b5:b7:10:cb:75:be:f6:60:47:f6:fe:24:98:1b:fe:fc:2f:
9b:3b:89:41:34:98:d0:ed:2f:98:5f:38:d5:47:87:ed:c7:2b:
fb:a2:54:49:70:39:a3:f0:ea:73:06:4a:5b:2d:10:94:a7:46:
10:78:82:b0:8c:52:52:17:3b:a8:30:cc:e4:ed:d5:3b:4a:63:
45:a5:ae:22:f7:df:a7:8e:f0:66:fd:5f:d7:04:38:b8:dc:2b:
b5:96:29:4a:c9:f8:f7:59:d8:c5:e5:74:2a:34:03:cb:02:14:
06:41:ca:c4:db:40:4e:20:6d:8c:7d:0d:0d:7b:3a:98:cd:1b:
28:5b:f0:c8:79:8b:5e:08:b3:97:e5:90:5c:0a:58:1d:5b:dd:
58:b0:1d:a0:57:65:8b:b4:05:f2:c6:dc:fe:22:22:2a:80:49:
39:8d:51:e4:49:e8:a1:7c:e5:94:c9:66:11:50:30:69:f7:c7:
d5:88:75:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:31:52 2025 by rpki-client