Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/7jzodN_ZElOy5zfKTChxWXIWlN8.roa
File: 7jzodN_ZElOy5zfKTChxWXIWlN8.roa (raw, json)
Hash identifier: Hw2OQnudALVdzj52dzkuKMuEFFEPy35wlZmdroIoAvE=
Subject key identifier: EE:3C:E8:74:DF:D9:12:53:B2:E7:37:CA:4C:28:71:59:72:16:94:DF
Certificate issuer: /CN=e9b1320fbc24d6f4366cb64fcf5ed2d7b1b6bdf7
Certificate serial: 01924C6DAC6CF137DAE0897A9DE8114CEB77
Authority key identifier: E9:B1:32:0F:BC:24:D6:F4:36:6C:B6:4F:CF:5E:D2:D7:B1:B6:BD:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/7jzodN_ZElOy5zfKTChxWXIWlN8.roa
Signing time: Wed 02 Oct 2024 08:51:48 +0000
ROA not before: Wed 02 Oct 2024 08:51:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41937
IP address blocks: 5.134.104.0/21 maxlen: 24
46.235.96.0/21 maxlen: 21
46.235.96.0/22 maxlen: 22
46.235.96.0/23 maxlen: 23
46.235.96.0/24 maxlen: 24
46.235.97.0/24 maxlen: 24
46.235.98.0/23 maxlen: 23
46.235.98.0/24 maxlen: 24
46.235.99.0/24 maxlen: 24
46.235.100.0/22 maxlen: 22
46.235.100.0/23 maxlen: 23
46.235.100.0/24 maxlen: 24
46.235.101.0/24 maxlen: 24
46.235.102.0/23 maxlen: 23
46.235.102.0/24 maxlen: 24
46.235.103.0/24 maxlen: 24
62.240.24.0/21 maxlen: 24
91.185.96.0/19 maxlen: 24
91.204.52.0/22 maxlen: 24
109.94.228.0/22 maxlen: 24
109.94.232.0/21 maxlen: 24
178.237.208.0/20 maxlen: 20
178.237.216.0/22 maxlen: 22
178.237.216.0/23 maxlen: 23
178.237.216.0/24 maxlen: 24
178.237.217.0/24 maxlen: 24
178.237.218.0/23 maxlen: 23
178.237.218.0/24 maxlen: 24
178.237.219.0/24 maxlen: 24
178.237.220.0/22 maxlen: 22
178.237.220.0/23 maxlen: 23
178.237.220.0/24 maxlen: 24
178.237.221.0/24 maxlen: 24
178.237.222.0/23 maxlen: 23
178.237.222.0/24 maxlen: 24
178.237.223.0/24 maxlen: 24
178.250.136.0/21 maxlen: 24
185.10.140.0/22 maxlen: 24
185.34.92.0/22 maxlen: 24
185.103.136.0/22 maxlen: 24
185.112.20.0/22 maxlen: 24
185.179.136.0/22 maxlen: 24
2a00:8720::/32 maxlen: 48
2a00:cf00::/32 maxlen: 48
2a01:b800::/32 maxlen: 48
2a02:61a0::/32 maxlen: 48
2a03:fc40::/32 maxlen: 48
2a04:1dc0::/29 maxlen: 48
2a06:63c0::/29 maxlen: 48
Validation: Failed, certificate revoked on Tue 12 Nov 2024 14:27:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:4c:6d:ac:6c:f1:37:da:e0:89:7a:9d:e8:11:4c:eb:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9b1320fbc24d6f4366cb64fcf5ed2d7b1b6bdf7
Validity
Not Before: Oct 2 08:51:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ee3ce874dfd91253b2e737ca4c287159721694df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:86:7c:cd:c2:d0:a1:21:75:17:09:1e:85:51:
06:5d:62:a2:22:86:68:b0:db:40:cb:3c:c4:d1:a6:
72:c0:88:ce:33:84:e9:e5:95:fb:47:13:98:22:35:
b1:b2:a2:89:6f:50:05:c3:68:e2:ed:4a:0f:50:f0:
a5:8e:41:f6:4f:d8:97:66:7d:05:65:6a:ec:3b:ca:
c3:db:da:64:8d:49:d2:b3:a2:d4:01:63:38:08:fe:
cb:77:bf:72:97:db:bf:68:81:86:5a:66:16:8f:dc:
93:9f:ee:3e:1b:9c:9c:28:77:26:bb:2b:a2:b7:8a:
dd:17:a7:17:cd:24:e2:ce:dc:dc:0a:d8:30:ad:26:
2a:57:dc:ed:04:cc:5e:53:33:2a:66:7e:8d:93:88:
fc:9b:17:82:1d:09:f7:38:f4:69:c4:f6:6e:3e:d1:
f0:ba:2f:12:a7:ae:02:af:8a:8d:d6:6a:a7:64:b3:
1e:d8:65:2b:83:ce:d4:22:08:a5:28:c8:b2:51:fa:
3a:d5:9c:71:29:59:6d:9c:bb:0a:ca:0e:39:58:18:
4f:22:15:84:66:69:3b:00:12:ec:5d:af:01:7e:f2:
79:08:74:f2:19:38:16:cb:45:9a:49:bc:b7:2d:01:
77:a5:06:03:52:45:02:ae:d5:09:a8:3e:d8:64:f8:
b4:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:3C:E8:74:DF:D9:12:53:B2:E7:37:CA:4C:28:71:59:72:16:94:DF
X509v3 Authority Key Identifier:
keyid:E9:B1:32:0F:BC:24:D6:F4:36:6C:B6:4F:CF:5E:D2:D7:B1:B6:BD:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/7jzodN_ZElOy5zfKTChxWXIWlN8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/6bEyD7wk1vQ2bLZPz17S17G2vfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.134.104.0/21
46.235.96.0/21
62.240.24.0/21
91.185.96.0/19
91.204.52.0/22
109.94.228.0-109.94.239.255
178.237.208.0/20
178.250.136.0/21
185.10.140.0/22
185.34.92.0/22
185.103.136.0/22
185.112.20.0/22
185.179.136.0/22
IPv6:
2a00:8720::/32
2a00:cf00::/32
2a01:b800::/32
2a02:61a0::/32
2a03:fc40::/32
2a04:1dc0::/29
2a06:63c0::/29
Signature Algorithm: sha256WithRSAEncryption
a2:60:44:46:83:95:f5:73:05:0d:b8:3e:c9:05:d6:1b:68:47:
3d:85:1d:c6:2d:72:e3:05:d8:38:11:d6:0b:a9:75:f2:44:3a:
51:cd:d7:20:05:ad:03:c8:8a:f2:d1:3b:e8:b3:5d:97:32:d3:
1d:21:40:05:db:79:c9:2a:04:68:51:d2:94:8c:30:0e:51:85:
a1:cb:72:d0:74:8b:00:ec:b3:63:34:ed:d3:e7:9b:9d:5a:d4:
13:44:5d:04:c9:b7:ac:8f:3b:d4:6e:bd:f4:52:6c:82:69:50:
28:84:37:8b:33:f7:ed:01:99:15:41:78:10:70:36:7e:96:e4:
d4:fb:1b:17:86:91:8d:a3:36:7c:dd:36:08:d0:7c:d8:98:20:
ac:2b:8c:27:34:a3:0e:46:b9:00:8c:de:bc:4f:c0:d6:77:f5:
d3:09:52:19:35:6a:4f:7f:8e:db:3e:9a:92:82:de:b1:f1:82:
0b:1e:9e:76:49:33:05:5d:7d:a2:2e:ec:a5:9f:1b:e7:9d:9d:
95:0f:92:4d:18:bd:3b:0d:81:1d:78:2c:16:e4:03:5d:46:47:
7e:e0:95:d1:ba:f0:bb:7f:70:59:a0:d3:6b:cf:87:3a:98:70:
20:ef:e5:d5:5c:9c:3a:39:0d:b9:f4:42:8d:c5:b9:a1:77:c6:
2c:bf:3f:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 12 18:29:14 2024 by rpki-client on console-fra.rpki-client.org