Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/7KOSMyYz9z7L4-7cbTPMnFHikKM.roa
File: 7KOSMyYz9z7L4-7cbTPMnFHikKM.roa (raw, json)
Hash identifier: jTWdLZPSmjC/NJpd+Ywo3xg9zHOGu8XyY2PzmjgmE5o=
Subject key identifier: EC:A3:92:33:26:33:F7:3E:CB:E3:EE:DC:6D:33:CC:9C:51:E2:90:A3
Certificate issuer: /CN=e9b1320fbc24d6f4366cb64fcf5ed2d7b1b6bdf7
Certificate serial: 0191B1EBE522ACB6036DCB9D4A29DAE9665F
Authority key identifier: E9:B1:32:0F:BC:24:D6:F4:36:6C:B6:4F:CF:5E:D2:D7:B1:B6:BD:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/7KOSMyYz9z7L4-7cbTPMnFHikKM.roa
Signing time: Mon 02 Sep 2024 08:48:32 +0000
ROA not before: Mon 02 Sep 2024 08:48:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41937
IP address blocks: 5.134.104.0/21 maxlen: 24
46.235.96.0/21 maxlen: 21
46.235.96.0/22 maxlen: 22
46.235.96.0/23 maxlen: 23
46.235.96.0/24 maxlen: 24
46.235.97.0/24 maxlen: 24
46.235.98.0/23 maxlen: 23
46.235.98.0/24 maxlen: 24
46.235.99.0/24 maxlen: 24
46.235.100.0/22 maxlen: 22
46.235.100.0/23 maxlen: 23
46.235.100.0/24 maxlen: 24
46.235.101.0/24 maxlen: 24
46.235.102.0/23 maxlen: 23
46.235.102.0/24 maxlen: 24
46.235.103.0/24 maxlen: 24
62.240.24.0/21 maxlen: 24
91.185.96.0/19 maxlen: 24
91.204.52.0/22 maxlen: 24
109.94.228.0/22 maxlen: 24
109.94.232.0/21 maxlen: 24
109.122.64.0/18 maxlen: 24
178.237.208.0/20 maxlen: 20
178.237.216.0/22 maxlen: 22
178.237.216.0/23 maxlen: 23
178.237.216.0/24 maxlen: 24
178.237.217.0/24 maxlen: 24
178.237.218.0/23 maxlen: 23
178.237.218.0/24 maxlen: 24
178.237.219.0/24 maxlen: 24
178.237.220.0/22 maxlen: 22
178.237.220.0/23 maxlen: 23
178.237.220.0/24 maxlen: 24
178.237.221.0/24 maxlen: 24
178.237.222.0/23 maxlen: 23
178.237.222.0/24 maxlen: 24
178.237.223.0/24 maxlen: 24
178.250.136.0/21 maxlen: 24
185.10.140.0/22 maxlen: 24
185.26.172.0/22 maxlen: 24
185.34.92.0/22 maxlen: 24
185.103.136.0/22 maxlen: 24
185.112.20.0/22 maxlen: 24
185.179.136.0/22 maxlen: 24
2a00:8720::/32 maxlen: 48
2a00:cf00::/32 maxlen: 48
2a01:b800::/32 maxlen: 48
2a02:61a0::/32 maxlen: 48
2a03:fc40::/32 maxlen: 48
2a04:1dc0::/29 maxlen: 48
2a06:5b00::/29 maxlen: 48
2a06:63c0::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 02 Sep 2024 09:23:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:b1:eb:e5:22:ac:b6:03:6d:cb:9d:4a:29:da:e9:66:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9b1320fbc24d6f4366cb64fcf5ed2d7b1b6bdf7
Validity
Not Before: Sep 2 08:48:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eca392332633f73ecbe3eedc6d33cc9c51e290a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:14:13:06:71:07:51:1c:2d:9a:ab:91:90:f8:
9c:cc:f0:31:4e:85:6e:e2:9c:5b:ce:b2:f4:b4:44:
c2:b1:75:21:e4:14:e8:be:45:aa:78:d1:f1:39:f4:
10:85:d8:66:39:8a:b0:0c:c0:98:f6:76:3e:03:d4:
16:5e:81:ce:37:d2:e2:64:ab:93:89:7f:90:de:f0:
d5:f5:3f:90:0f:2d:6a:15:a9:47:39:d1:83:92:a0:
74:a9:2f:04:84:88:bc:bd:59:da:22:22:cd:b2:4c:
da:e7:94:b2:0e:a6:f0:eb:e6:34:b3:57:cc:43:c8:
6f:04:f9:25:db:4c:29:33:67:2d:28:ed:c0:0f:bd:
c0:71:9a:bc:8f:a5:56:a6:f3:d2:04:cc:32:2c:53:
b2:85:3c:52:bf:25:38:0d:42:11:a5:d5:95:be:29:
ef:35:68:2d:07:69:a5:47:03:af:0f:42:21:93:21:
a2:5f:fc:93:25:d6:38:67:a4:bd:92:c7:45:99:ed:
5e:55:c5:17:db:21:19:c3:7e:2b:81:d7:3f:ee:4c:
cf:cb:9f:91:f6:4a:29:4f:b5:b7:9d:9f:c1:e2:2d:
08:ec:d0:f0:18:db:77:99:b2:c6:45:40:92:6f:3a:
22:bd:5c:23:10:c4:89:dc:f0:6b:9e:99:16:8c:88:
94:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:A3:92:33:26:33:F7:3E:CB:E3:EE:DC:6D:33:CC:9C:51:E2:90:A3
X509v3 Authority Key Identifier:
keyid:E9:B1:32:0F:BC:24:D6:F4:36:6C:B6:4F:CF:5E:D2:D7:B1:B6:BD:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/7KOSMyYz9z7L4-7cbTPMnFHikKM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/6bEyD7wk1vQ2bLZPz17S17G2vfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.134.104.0/21
46.235.96.0/21
62.240.24.0/21
91.185.96.0/19
91.204.52.0/22
109.94.228.0-109.94.239.255
109.122.64.0/18
178.237.208.0/20
178.250.136.0/21
185.10.140.0/22
185.26.172.0/22
185.34.92.0/22
185.103.136.0/22
185.112.20.0/22
185.179.136.0/22
IPv6:
2a00:8720::/32
2a00:cf00::/32
2a01:b800::/32
2a02:61a0::/32
2a03:fc40::/32
2a04:1dc0::/29
2a06:5b00::/29
2a06:63c0::/29
Signature Algorithm: sha256WithRSAEncryption
7f:69:fa:1f:4a:2f:c7:12:2c:73:f1:06:e9:21:b1:17:12:00:
99:32:e3:cd:b3:27:64:88:e2:3b:6a:80:f2:e9:85:1e:30:68:
4c:a0:5c:37:e6:2b:02:14:fe:d8:f4:7a:45:24:9e:cc:bb:0f:
53:99:0a:40:f7:57:a2:b8:e2:76:ff:08:bf:2e:72:ff:cc:82:
63:1d:80:de:02:b9:5d:1b:19:c8:bc:c2:85:81:e8:eb:96:85:
18:74:9c:3a:fd:47:e3:b6:03:66:04:44:e8:14:92:dc:dd:a4:
06:1d:d6:f6:81:22:3e:ed:c0:75:7f:f8:c4:73:64:14:71:2f:
65:12:c0:1f:3a:e8:6c:c2:57:9c:29:81:74:61:aa:55:c4:c3:
b1:48:b2:3d:e7:d7:f3:93:91:72:f2:50:31:8a:bc:b6:f9:a0:
87:a1:ab:78:a1:1e:85:3b:37:dd:e7:1f:70:e5:be:c5:6d:ab:
5e:9b:ce:e9:a8:5c:d4:e8:f2:05:27:d3:94:99:48:50:b2:c8:
1b:b8:f5:89:0a:08:d9:a6:85:6f:28:1f:d8:76:05:2d:ea:6b:
3b:40:d5:e5:a1:07:f0:4a:48:b9:51:5a:66:25:7f:b8:46:4e:
a3:f1:29:e5:1c:ed:94:39:fa:23:1a:c0:f2:7c:3a:e3:7e:f2:
70:50:f9:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 2 12:49:59 2024 by rpki-client on console-ams.rpki-client.org