Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/Dsc2VykAgyO9U-N2V5VlfNxkRj0.roa
File: Dsc2VykAgyO9U-N2V5VlfNxkRj0.roa (raw, json)
Hash identifier: lxlcraFdJq6kY9yJiEi//O1iW8yduZ925INpqZh1+2k=
Subject key identifier: 0E:C7:36:57:29:00:83:23:BD:53:E3:76:57:95:65:7C:DC:64:46:3D
Certificate issuer: /CN=e9b1320fbc24d6f4366cb64fcf5ed2d7b1b6bdf7
Certificate serial: 0191A235D4C720EFEE21708C69297D4F0AD3
Authority key identifier: E9:B1:32:0F:BC:24:D6:F4:36:6C:B6:4F:CF:5E:D2:D7:B1:B6:BD:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/Dsc2VykAgyO9U-N2V5VlfNxkRj0.roa
Signing time: Fri 30 Aug 2024 07:35:22 +0000
ROA not before: Fri 30 Aug 2024 07:35:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41937
IP address blocks: 5.134.104.0/21 maxlen: 24
46.235.96.0/21 maxlen: 21
46.235.96.0/22 maxlen: 22
46.235.96.0/23 maxlen: 23
46.235.96.0/24 maxlen: 24
46.235.97.0/24 maxlen: 24
46.235.98.0/23 maxlen: 23
46.235.98.0/24 maxlen: 24
46.235.99.0/24 maxlen: 24
46.235.100.0/22 maxlen: 22
46.235.100.0/23 maxlen: 23
46.235.100.0/24 maxlen: 24
46.235.101.0/24 maxlen: 24
46.235.102.0/23 maxlen: 23
46.235.102.0/24 maxlen: 24
46.235.103.0/24 maxlen: 24
62.240.24.0/21 maxlen: 24
87.250.32.0/19 maxlen: 24
91.185.96.0/19 maxlen: 24
91.204.52.0/22 maxlen: 24
109.94.228.0/22 maxlen: 24
109.94.232.0/21 maxlen: 24
109.122.64.0/18 maxlen: 24
109.198.0.0/19 maxlen: 24
178.237.208.0/20 maxlen: 20
178.237.216.0/22 maxlen: 22
178.237.216.0/23 maxlen: 23
178.237.216.0/24 maxlen: 24
178.237.217.0/24 maxlen: 24
178.237.218.0/23 maxlen: 23
178.237.218.0/24 maxlen: 24
178.237.219.0/24 maxlen: 24
178.237.220.0/22 maxlen: 22
178.237.220.0/23 maxlen: 23
178.237.220.0/24 maxlen: 24
178.237.221.0/24 maxlen: 24
178.237.222.0/23 maxlen: 23
178.237.222.0/24 maxlen: 24
178.237.223.0/24 maxlen: 24
178.250.136.0/21 maxlen: 24
185.10.140.0/22 maxlen: 24
185.26.172.0/22 maxlen: 24
185.34.92.0/22 maxlen: 24
185.103.136.0/22 maxlen: 24
185.112.20.0/22 maxlen: 24
185.179.136.0/22 maxlen: 24
2a00:8720::/32 maxlen: 48
2a00:cf00::/32 maxlen: 48
2a01:b800::/32 maxlen: 48
2a02:61a0::/32 maxlen: 48
2a03:fc40::/32 maxlen: 48
2a04:1dc0::/29 maxlen: 48
2a06:5b00::/29 maxlen: 48
2a06:63c0::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 02 Sep 2024 08:24:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:a2:35:d4:c7:20:ef:ee:21:70:8c:69:29:7d:4f:0a:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9b1320fbc24d6f4366cb64fcf5ed2d7b1b6bdf7
Validity
Not Before: Aug 30 07:35:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0ec7365729008323bd53e3765795657cdc64463d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c1:1a:1f:10:01:97:e3:76:49:61:9a:62:90:
6a:9d:8f:bb:44:36:34:91:4f:a0:a5:c6:fb:63:83:
5b:5a:2b:19:1c:c4:43:4c:a1:f9:ae:59:35:a1:bc:
17:93:76:87:ed:1e:03:1c:de:33:ab:cc:83:4d:01:
4a:89:ea:ec:ea:e0:5f:73:94:f8:2d:d1:f7:8f:20:
c6:f1:ed:d4:76:6a:e2:e9:d1:bf:83:51:38:78:7e:
a2:3e:65:35:d1:dd:b8:5a:d5:1f:59:df:6d:a3:97:
f9:c1:88:85:01:14:6b:9a:a3:3d:1e:12:cb:98:b3:
a7:4b:b2:27:76:fe:70:f3:c5:20:8d:fd:bc:4c:c1:
63:6b:c0:75:a4:4d:0d:ca:62:61:55:c6:eb:bd:c3:
21:a3:21:44:7d:93:83:51:80:6e:87:72:9d:78:f5:
a2:0f:2c:39:19:fd:55:59:f1:1f:8f:81:9d:7d:46:
70:b5:a8:4a:61:17:46:3e:80:32:dc:23:51:de:ad:
53:00:20:b9:9d:c8:f3:99:db:d8:3b:9c:dd:f8:a7:
78:97:57:34:42:b8:21:d7:f3:8a:ba:96:51:8f:d4:
ee:0e:b1:2b:11:d9:d4:83:b1:0a:f7:b2:af:ac:93:
52:f9:e0:32:f4:d4:f5:08:f5:b5:93:eb:24:2c:c5:
ba:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:C7:36:57:29:00:83:23:BD:53:E3:76:57:95:65:7C:DC:64:46:3D
X509v3 Authority Key Identifier:
keyid:E9:B1:32:0F:BC:24:D6:F4:36:6C:B6:4F:CF:5E:D2:D7:B1:B6:BD:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/Dsc2VykAgyO9U-N2V5VlfNxkRj0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/6bEyD7wk1vQ2bLZPz17S17G2vfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.134.104.0/21
46.235.96.0/21
62.240.24.0/21
87.250.32.0/19
91.185.96.0/19
91.204.52.0/22
109.94.228.0-109.94.239.255
109.122.64.0/18
109.198.0.0/19
178.237.208.0/20
178.250.136.0/21
185.10.140.0/22
185.26.172.0/22
185.34.92.0/22
185.103.136.0/22
185.112.20.0/22
185.179.136.0/22
IPv6:
2a00:8720::/32
2a00:cf00::/32
2a01:b800::/32
2a02:61a0::/32
2a03:fc40::/32
2a04:1dc0::/29
2a06:5b00::/29
2a06:63c0::/29
Signature Algorithm: sha256WithRSAEncryption
b3:fe:3f:dc:5f:38:85:cf:e9:54:05:91:ff:8a:56:67:a1:27:
72:92:8d:22:8e:93:3e:b6:b9:55:8a:1f:07:01:01:c3:2a:3c:
d9:7b:18:16:21:98:46:3b:f4:0b:54:81:c5:30:bf:e0:e0:82:
f3:b1:fe:6d:f1:2a:f2:55:1e:99:0c:f8:e5:89:e6:91:4e:f8:
68:db:5d:43:42:8c:f2:2b:dc:50:40:17:50:a2:c7:d5:29:0a:
6c:25:32:e9:fe:50:af:54:c1:13:15:81:bc:21:7c:40:22:c7:
9f:6f:03:eb:85:b6:d9:6a:d0:50:d2:4a:52:9c:91:bb:c6:7a:
49:a0:18:34:6b:4f:29:db:75:cb:2e:d0:c8:e8:fb:89:cc:0a:
ba:99:ba:75:e2:aa:52:21:f7:06:78:84:9d:a4:e1:fc:fb:40:
3c:27:6f:01:22:37:3a:ea:b1:81:5c:0b:26:8f:e1:99:19:3b:
dd:42:ce:87:1b:2b:1d:59:77:51:2c:a7:e7:0e:17:96:7e:95:
e9:e1:3b:d9:64:53:cb:06:fb:b4:9a:cf:c2:38:93:92:00:d3:
7c:95:40:e6:52:7b:a8:f0:4a:6b:b9:05:60:46:3a:eb:af:d0:
a8:5f:00:e0:81:66:f4:80:ac:a6:28:9e:e1:7f:5c:13:de:2d:
c9:3a:5d:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 2 10:21:49 2024 by rpki-client on console-ams.rpki-client.org