Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/2fea18-fb62-4b95-9feb-9cf811e9fa7a/1/dFwXxaWdsTr1OQe9R7zubJeAYtc.roa
File: dFwXxaWdsTr1OQe9R7zubJeAYtc.roa (raw, json)
Hash identifier: dcjfIMqotrl+0kb/LD+YJK+lfOZnf57udEq+IDIe02I=
Subject key identifier: 74:5C:17:C5:A5:9D:B1:3A:F5:39:07:BD:47:BC:EE:6C:97:80:62:D7
Certificate issuer: /CN=59919584033c3911a009bdde3183f6c60b2afcca
Certificate serial: 01857139A831F90EE6B927DB4E8E73C0DF2C
Authority key identifier: 59:91:95:84:03:3C:39:11:A0:09:BD:DE:31:83:F6:C6:0B:2A:FC:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WZGVhAM8ORGgCb3eMYP2xgsq_Mo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/2fea18-fb62-4b95-9feb-9cf811e9fa7a/1/dFwXxaWdsTr1OQe9R7zubJeAYtc.roa
Signing time: Mon 02 Jan 2023 06:44:41 +0000
ROA not before: Mon 02 Jan 2023 06:44:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41497
IP address blocks: 5.252.240.0/22 maxlen: 22
5.252.240.0/23 maxlen: 23
5.252.242.0/23 maxlen: 23
212.183.160.0/20 maxlen: 20
212.183.162.0/24 maxlen: 24
212.183.160.0/19 maxlen: 19
212.165.32.0/19 maxlen: 19
212.165.32.0/20 maxlen: 20
212.165.32.0/21 maxlen: 21
212.165.40.0/21 maxlen: 21
212.183.176.0/20 maxlen: 20
212.183.176.0/21 maxlen: 21
193.43.24.0/24 maxlen: 24
212.165.48.0/20 maxlen: 20
212.165.48.0/21 maxlen: 21
212.183.191.0/24 maxlen: 24
212.165.56.0/21 maxlen: 21
83.137.232.0/22 maxlen: 22
83.137.232.0/21 maxlen: 21
83.137.236.0/22 maxlen: 22
80.76.80.0/21 maxlen: 21
80.76.80.0/20 maxlen: 20
80.76.88.0/21 maxlen: 21
2001:4bb0::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 26 Apr 2023 08:27:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:a8:31:f9:0e:e6:b9:27:db:4e:8e:73:c0:df:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59919584033c3911a009bdde3183f6c60b2afcca
Validity
Not Before: Jan 2 06:44:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=745c17c5a59db13af53907bd47bcee6c978062d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:8a:9c:5d:87:0c:a7:46:87:70:84:c8:17:f0:
90:73:43:7e:49:e8:c4:eb:51:fa:84:2b:25:96:76:
db:01:83:27:9f:c9:61:37:90:a9:62:25:54:d4:d4:
b7:8f:5b:e9:be:33:bf:70:5b:80:c1:55:ba:dd:7f:
c7:52:ee:0c:0a:98:c8:23:7a:a1:ee:a9:48:80:7d:
6d:c1:c6:e4:3c:ef:11:1e:cd:a5:fd:aa:da:78:53:
c7:cf:3f:b4:19:1f:71:ec:5c:bc:0a:59:6a:59:be:
91:56:ad:70:83:a0:2e:d0:a7:f9:6e:32:87:44:72:
56:4a:08:c5:2f:f1:80:ec:6b:06:d0:76:2d:16:37:
05:e5:a6:2d:3d:5f:75:31:50:d4:91:3a:c6:6f:e6:
96:d2:ce:1e:a1:dd:82:73:74:c1:85:ff:6e:14:2f:
ef:b8:59:36:b7:71:75:d5:0c:39:f2:78:55:4a:1e:
02:6d:34:53:76:a6:3c:f4:8a:31:7c:25:b9:29:74:
b7:36:2f:b2:01:c9:38:69:8c:5a:97:4e:c8:58:2e:
7f:01:e2:2d:c5:df:0e:c2:1d:50:0a:a7:93:f1:1e:
19:43:a1:08:01:f7:2e:e5:8d:a6:de:ac:dd:7f:78:
c3:48:88:88:ea:be:e6:1a:37:bc:ff:69:e2:e3:d5:
02:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:5C:17:C5:A5:9D:B1:3A:F5:39:07:BD:47:BC:EE:6C:97:80:62:D7
X509v3 Authority Key Identifier:
keyid:59:91:95:84:03:3C:39:11:A0:09:BD:DE:31:83:F6:C6:0B:2A:FC:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WZGVhAM8ORGgCb3eMYP2xgsq_Mo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/2fea18-fb62-4b95-9feb-9cf811e9fa7a/1/dFwXxaWdsTr1OQe9R7zubJeAYtc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/2fea18-fb62-4b95-9feb-9cf811e9fa7a/1/WZGVhAM8ORGgCb3eMYP2xgsq_Mo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.240.0/22
80.76.80.0/20
83.137.232.0/21
193.43.24.0/24
212.165.32.0/19
212.183.160.0/19
IPv6:
2001:4bb0::/32
Signature Algorithm: sha256WithRSAEncryption
6d:de:d2:15:ba:cd:37:19:96:26:63:6b:e1:82:a2:66:36:e9:
10:9b:c1:55:78:bf:19:b3:ec:95:e9:27:44:d2:26:19:36:f2:
b2:e4:1d:11:31:6a:37:4d:c5:25:20:e7:40:b3:6b:e2:e8:bf:
fd:82:87:ec:9b:04:96:63:5f:e4:39:c8:b6:fb:e5:6b:15:9d:
5e:71:26:53:7f:09:90:4f:5c:45:31:3f:27:70:9c:79:55:9a:
01:b7:ec:20:25:9f:ab:a6:a5:05:e9:d9:c9:ab:2e:b0:cb:42:
1c:c1:4d:81:8f:33:ad:17:23:4d:19:0c:d1:39:19:2a:2c:ef:
21:6a:5c:31:7a:fa:83:e7:77:2d:2f:9f:e9:46:e2:2f:ca:1a:
e6:28:1a:e9:e2:1c:fe:6f:25:aa:c4:38:ff:a1:a1:17:da:64:
8e:ba:2e:7f:e8:cd:c3:04:55:9c:4e:ea:47:af:4b:be:d2:c3:
6a:16:76:7b:0e:55:93:e7:6a:98:cc:fc:9a:fe:87:c3:02:09:
4a:57:9e:13:a9:47:b5:b2:14:d2:0f:89:f4:7e:4b:a4:8a:52:
ee:04:0e:cf:ba:a0:88:0f:ab:31:a2:fa:0d:8b:33:46:ed:49:
4f:12:48:58:58:69:67:69:88:5a:83:db:c3:7e:30:68:92:39:
ff:98:90:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:40 2024 by rpki-client on console-fra.rpki-client.org