Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/30282c-3c82-4730-b95e-e745948983ed/1/W4hVtZdvTyx9aYtBy6MxvQK9tyg.roa
File: W4hVtZdvTyx9aYtBy6MxvQK9tyg.roa (raw, json)
Hash identifier: 3pZZ9ruqWkcpZsgZ+gvt19ODhHfGdQlCCf2gSjYHATU=
Subject key identifier: 5B:88:55:B5:97:6F:4F:2C:7D:69:8B:41:CB:A3:31:BD:02:BD:B7:28
Certificate issuer: /CN=09e5518e68467b4290c3509268b6d6d664962c86
Certificate serial: 018F867DD49B9083B6869EB9B2B76E81AA0C
Authority key identifier: 09:E5:51:8E:68:46:7B:42:90:C3:50:92:68:B6:D6:D6:64:96:2C:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CeVRjmhGe0KQw1CSaLbW1mSWLIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/30282c-3c82-4730-b95e-e745948983ed/1/W4hVtZdvTyx9aYtBy6MxvQK9tyg.roa
Signing time: Fri 17 May 2024 12:19:04 +0000
ROA not before: Fri 17 May 2024 12:19:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31515
IP address blocks: 161.30.5.0/24 maxlen: 24
161.30.7.0/24 maxlen: 24
161.30.8.0/24 maxlen: 24
161.30.9.0/24 maxlen: 24
161.30.10.0/24 maxlen: 24
161.30.12.0/22 maxlen: 22
161.30.16.0/22 maxlen: 22
161.30.20.0/24 maxlen: 24
161.30.22.0/23 maxlen: 23
161.30.28.0/24 maxlen: 24
161.30.33.0/24 maxlen: 24
161.30.40.0/23 maxlen: 23
161.30.42.0/23 maxlen: 24
161.30.44.0/23 maxlen: 24
161.30.129.0/24 maxlen: 24
161.30.130.0/24 maxlen: 24
161.30.165.0/24 maxlen: 24
161.30.169.0/24 maxlen: 24
161.30.203.0/24 maxlen: 24
161.30.236.0/22 maxlen: 24
161.30.237.0/24 maxlen: 24
161.30.238.0/24 maxlen: 24
161.30.240.0/24 maxlen: 24
2a11:ae00::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 30 May 2024 09:51:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:86:7d:d4:9b:90:83:b6:86:9e:b9:b2:b7:6e:81:aa:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09e5518e68467b4290c3509268b6d6d664962c86
Validity
Not Before: May 17 12:19:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5b8855b5976f4f2c7d698b41cba331bd02bdb728
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:9f:cb:c5:74:10:c5:5b:82:53:f2:35:c3:9a:
20:0e:01:b1:4c:9d:ed:0b:bb:19:2d:70:f0:b4:41:
54:3e:4d:c5:07:93:bd:2c:27:86:50:56:d7:85:a8:
ff:f0:be:e6:ee:c1:c1:d9:ee:60:6d:e6:5f:dd:20:
5a:93:de:19:2c:c9:4e:85:1c:aa:ed:0f:8e:2e:29:
96:41:31:4c:3d:b1:b5:88:42:8b:05:45:9f:2c:1e:
14:34:43:ec:04:81:f9:0b:f6:f5:8a:3c:34:27:74:
91:96:64:92:ca:18:0c:3d:39:a4:58:e1:e2:e8:92:
2e:76:7c:9e:22:5b:0e:b9:b5:f8:fa:b7:1f:8e:6d:
cc:b2:4c:0d:30:c2:7f:51:4d:8c:e1:0f:9a:e2:58:
42:74:3c:17:70:60:34:be:bd:ce:f5:13:fe:78:08:
63:de:4a:29:9d:b1:a8:fd:97:63:f5:a2:60:8e:1d:
e1:49:75:f9:3b:4d:31:36:a0:43:2c:ef:14:26:54:
7b:15:ec:56:fa:82:f4:f1:12:c8:18:61:2d:d9:70:
c6:16:b7:5a:1c:6c:4a:c5:15:1b:4c:38:55:72:a5:
1f:b3:eb:ca:0f:cf:0b:c1:19:9a:14:1f:26:2f:f4:
54:2d:93:0f:41:fd:ee:4d:ff:59:d5:8d:3d:ef:fd:
f1:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:88:55:B5:97:6F:4F:2C:7D:69:8B:41:CB:A3:31:BD:02:BD:B7:28
X509v3 Authority Key Identifier:
keyid:09:E5:51:8E:68:46:7B:42:90:C3:50:92:68:B6:D6:D6:64:96:2C:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CeVRjmhGe0KQw1CSaLbW1mSWLIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/30282c-3c82-4730-b95e-e745948983ed/1/W4hVtZdvTyx9aYtBy6MxvQK9tyg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/30282c-3c82-4730-b95e-e745948983ed/1/CeVRjmhGe0KQw1CSaLbW1mSWLIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
161.30.5.0/24
161.30.7.0-161.30.10.255
161.30.12.0-161.30.20.255
161.30.22.0/23
161.30.28.0/24
161.30.33.0/24
161.30.40.0-161.30.45.255
161.30.129.0-161.30.130.255
161.30.165.0/24
161.30.169.0/24
161.30.203.0/24
161.30.236.0-161.30.240.255
IPv6:
2a11:ae00::/32
Signature Algorithm: sha256WithRSAEncryption
26:ef:e2:66:eb:6d:02:59:d7:7e:ac:d1:29:b6:7a:65:66:b4:
a0:79:1e:7b:6b:6f:2e:aa:14:be:c5:e1:50:45:7d:c9:42:60:
84:41:68:d1:42:30:64:ea:a2:36:ce:30:f1:d9:21:70:9d:a2:
24:20:04:23:7d:5a:4d:09:c1:83:fd:32:fd:8e:28:49:fc:df:
3b:61:79:c4:dd:31:bc:8b:27:a7:49:b4:41:2a:f8:ee:4a:d3:
4f:2b:e0:c3:d3:2c:6b:8c:89:cc:3d:8a:47:87:06:08:09:a8:
9b:ca:3d:4b:0f:eb:22:19:7c:54:7d:93:fe:81:40:a8:15:fb:
dc:3e:b7:21:52:53:5b:d6:48:a8:a0:eb:67:6e:94:bd:95:c4:
79:5c:a3:e2:b5:cd:8c:92:31:94:07:2d:50:55:87:aa:d7:f8:
ba:40:ca:9e:bd:1b:91:73:0b:1c:ca:6c:17:65:5b:0a:9d:be:
f7:ba:cc:7f:cc:3b:7a:39:c8:94:e8:df:d9:b1:0e:5d:64:f4:
df:50:0f:e7:12:64:27:c2:d3:5b:4a:0e:20:f0:ad:c7:4d:3b:
78:36:d1:55:ca:2d:a9:f9:26:4c:f6:3f:6b:82:2c:67:c5:55:
59:2e:2b:ba:7a:7f:30:1e:81:1e:75:ed:3a:49:37:6e:78:ca:
19:39:3d:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:25 2024 by rpki-client on console-fra.rpki-client.org