Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/9z66MnYNcR9w0sLwV9tLVeknep4.roa
File: 9z66MnYNcR9w0sLwV9tLVeknep4.roa (raw, json)
Hash identifier: uvg5DhgPNN9PuzMKvu2KByQdD73+ioEI/t3oViJUyvU=
Subject key identifier: F7:3E:BA:32:76:0D:71:1F:70:D2:C2:F0:57:DB:4B:55:E9:27:7A:9E
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 018DEB34472608811FEBA942BE15CE90AD72
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/9z66MnYNcR9w0sLwV9tLVeknep4.roa
Signing time: Tue 27 Feb 2024 15:34:48 +0000
ROA not before: Tue 27 Feb 2024 15:34:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211619
IP address blocks: 5.182.112.0/24 maxlen: 24
45.9.168.0/24 maxlen: 24
83.137.153.0/24 maxlen: 24
83.137.156.0/24 maxlen: 24
83.137.157.0/24 maxlen: 24
88.209.206.0/24 maxlen: 24
88.209.228.0/24 maxlen: 24
88.209.236.0/22 maxlen: 22
88.209.236.0/24 maxlen: 24
88.209.237.0/24 maxlen: 24
88.209.238.0/24 maxlen: 24
88.209.239.0/24 maxlen: 24
88.209.246.0/24 maxlen: 24
88.209.247.0/24 maxlen: 24
88.209.254.0/24 maxlen: 24
92.52.217.0/24 maxlen: 24
194.41.47.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 28 Feb 2024 13:11:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:eb:34:47:26:08:81:1f:eb:a9:42:be:15:ce:90:ad:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Feb 27 15:34:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f73eba32760d711f70d2c2f057db4b55e9277a9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ca:ec:5e:9f:02:90:93:32:bf:c2:28:ea:f4:
ec:26:b3:a4:1f:2d:66:be:72:d1:d8:9e:ac:49:8b:
f6:fe:15:76:90:1f:82:38:6a:70:c6:d7:7d:07:3f:
83:21:fe:9f:03:2c:8a:0b:57:1c:ac:59:fd:55:7c:
de:a6:9a:7e:04:b2:4d:92:39:8a:7a:34:e2:bb:25:
f1:d8:43:2b:10:8c:9d:ac:b0:5c:15:de:71:a1:c6:
2a:77:c3:ba:36:5e:2d:28:8b:03:58:ff:bd:4a:ff:
33:d8:88:0f:b1:f4:71:cc:67:5d:94:02:ce:4f:5d:
b2:fd:f1:1d:34:56:01:6b:4b:f7:db:46:6a:ca:78:
ab:90:a0:5c:02:ae:d9:3e:bb:13:8b:dc:19:f3:30:
61:2f:99:97:e8:ba:bd:01:93:60:8e:09:23:bb:05:
24:47:54:b4:1b:e0:be:8f:1b:e3:e4:f9:bd:f8:2c:
8a:b7:d5:07:0c:6b:1d:83:5b:0f:f8:1a:a8:3f:d6:
4e:33:36:20:a3:78:6e:25:93:05:0f:fc:ac:5e:e6:
35:fa:4f:14:a1:60:30:dc:1f:46:4f:22:52:6e:84:
17:d8:d3:cb:31:65:ab:bc:8f:07:6d:40:62:fa:e4:
c2:45:0b:a3:5f:da:90:80:5a:20:80:81:d8:6a:65:
b2:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:3E:BA:32:76:0D:71:1F:70:D2:C2:F0:57:DB:4B:55:E9:27:7A:9E
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/9z66MnYNcR9w0sLwV9tLVeknep4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.112.0/24
45.9.168.0/24
83.137.153.0/24
83.137.156.0/23
88.209.206.0/24
88.209.228.0/24
88.209.236.0/22
88.209.246.0/23
88.209.254.0/24
92.52.217.0/24
194.41.47.0/24
Signature Algorithm: sha256WithRSAEncryption
19:1e:98:c3:a7:2f:ee:73:0d:6c:0e:2e:62:6e:a1:91:50:2b:
05:32:a9:4a:22:9a:15:24:94:18:45:7a:96:4a:b1:88:0a:40:
12:22:2c:ac:02:fa:72:28:73:15:8c:fd:48:be:24:41:04:fa:
2e:2c:cb:3d:0a:96:d5:a7:24:00:52:e0:1b:c9:38:78:a3:e4:
3a:f7:65:de:33:e7:10:bc:93:9e:fb:d7:98:59:bb:e1:a6:7d:
a1:94:de:4f:6b:17:6e:ab:48:f1:41:e2:ce:7c:dd:f6:9e:16:
2c:3f:c4:ef:77:1a:9f:2c:fa:5f:5e:c7:df:df:24:d0:c1:dd:
9e:58:3c:01:85:8b:7e:83:ba:56:d3:69:c3:85:ba:81:4f:81:
3b:7f:d3:67:2b:f8:9d:88:63:6a:4d:37:9b:67:2b:66:f8:e4:
a9:0e:08:84:4e:e3:0f:6c:a4:ee:ba:f7:3c:b7:86:9d:c1:06:
ae:2f:9f:77:35:e5:c2:5b:23:7c:48:ad:db:f8:9c:54:bd:f6:
90:a1:27:c8:ee:1b:5d:2a:42:f8:21:dc:c9:73:59:0b:7c:a0:
d6:b3:eb:d5:a7:45:68:b4:97:0f:6c:f2:3a:89:c9:0a:0b:a5:
71:26:d2:dc:a6:0c:16:e6:52:c0:3a:a5:0c:3a:21:12:3c:4f:
87:ab:49:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:55 2024 by rpki-client on console-ams.rpki-client.org