Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/XwMQPLH5n_eAIn8qx_p_M8Sh8ik.roa
File: XwMQPLH5n_eAIn8qx_p_M8Sh8ik.roa (raw, json)
Hash identifier: oLbuQ2YyLdEBWvyTGX2T38usGtmN2JTB83NovPGoGUM=
Subject key identifier: 5F:03:10:3C:B1:F9:9F:F7:80:22:7F:2A:C7:FA:7F:33:C4:A1:F2:29
Certificate issuer: /CN=5b2dd9fe628b6bc10141de0241766a1b7a63193f
Certificate serial: 018BE6F4BFD6F6DD9C88BB261DA415A1CADF
Authority key identifier: 5B:2D:D9:FE:62:8B:6B:C1:01:41:DE:02:41:76:6A:1B:7A:63:19:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/XwMQPLH5n_eAIn8qx_p_M8Sh8ik.roa
Signing time: Sun 19 Nov 2023 09:41:21 +0000
ROA not before: Sun 19 Nov 2023 09:41:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6134
IP address blocks: 45.133.238.0/24 maxlen: 24
45.133.239.0/24 maxlen: 24
45.135.118.0/24 maxlen: 24
45.135.119.0/24 maxlen: 24
45.140.90.0/24 maxlen: 24
45.140.91.0/24 maxlen: 24
185.106.178.0/24 maxlen: 24
185.106.177.0/24 maxlen: 24
185.106.179.0/24 maxlen: 24
2a06:5040:3::/48 maxlen: 48
2a06:5040:20::/45 maxlen: 45
2a06:5040:30::/45 maxlen: 48
2a06:5040::/29 maxlen: 48
2a06:5040:5040::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:e6:f4:bf:d6:f6:dd:9c:88:bb:26:1d:a4:15:a1:ca:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b2dd9fe628b6bc10141de0241766a1b7a63193f
Validity
Not Before: Nov 19 09:41:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5f03103cb1f99ff780227f2ac7fa7f33c4a1f229
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:7e:3d:ce:40:b1:f9:29:fa:0d:d1:c0:5a:b8:
8e:a9:b2:f3:9d:fc:ab:3f:97:ca:55:c0:0b:ab:9f:
e9:c4:55:1d:90:73:a9:40:e0:b6:a0:41:cb:58:17:
20:6d:2a:1a:df:e9:1b:fe:39:2a:04:fd:db:50:6d:
97:76:2a:01:d2:c0:f8:93:35:ea:45:06:30:59:43:
0d:4f:41:7d:00:a8:ef:e5:db:eb:dc:f8:27:be:c7:
22:bb:13:5f:53:c8:2b:50:ea:c9:69:e3:d5:63:bf:
7f:32:9a:e9:71:3b:f3:b3:a5:74:94:1c:83:ef:1b:
5b:d2:f2:49:50:eb:37:64:89:81:40:72:59:bf:fb:
06:15:bc:19:ff:45:a7:c6:f6:a5:11:70:84:00:f4:
3e:35:63:ec:a7:02:0b:38:df:4e:47:a8:14:f3:75:
27:c0:a4:98:7f:63:44:0e:68:e2:3f:a6:b9:a6:0d:
7e:90:ca:69:a2:e9:51:2b:ee:a0:0a:55:39:6d:e6:
53:5b:37:a0:90:75:11:7e:8e:37:69:70:a9:6d:a2:
bd:b4:c0:77:cd:c6:1c:26:d5:46:89:fc:5f:2e:43:
6f:a6:68:fa:74:c3:8a:00:17:22:e4:9a:6b:a1:11:
41:aa:44:25:6f:46:80:ce:73:a6:f0:d0:3f:ed:35:
a5:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:03:10:3C:B1:F9:9F:F7:80:22:7F:2A:C7:FA:7F:33:C4:A1:F2:29
X509v3 Authority Key Identifier:
keyid:5B:2D:D9:FE:62:8B:6B:C1:01:41:DE:02:41:76:6A:1B:7A:63:19:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/XwMQPLH5n_eAIn8qx_p_M8Sh8ik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.238.0/23
45.135.118.0/23
45.140.90.0/23
185.106.177.0-185.106.179.255
IPv6:
2a06:5040::/29
Signature Algorithm: sha256WithRSAEncryption
ad:8f:73:52:86:c5:e2:5f:3f:11:8f:fd:0c:80:4e:be:c4:07:
e3:18:ee:f6:a2:87:a8:18:da:02:75:48:f2:dd:f5:e9:f1:df:
a7:8c:e0:bf:91:0c:63:e7:3a:ba:61:c0:4a:26:77:84:b9:4b:
17:f8:3d:2f:7c:95:a2:59:7c:34:48:81:1d:e3:cc:21:02:4a:
00:49:7b:ce:52:ce:17:8b:be:a4:9d:07:c2:0e:3e:ce:f2:ae:
0b:07:07:1d:76:21:13:a5:61:68:9a:e1:22:32:9d:de:14:d7:
af:e0:41:b5:c8:3f:cb:14:33:e0:25:5d:2c:9b:85:21:3f:fe:
8c:ae:23:b2:b2:c2:72:86:95:84:24:18:2f:43:9c:3a:13:d8:
1f:1e:52:5a:b0:6a:b5:ba:11:d0:65:1a:b3:34:39:ca:cd:5c:
da:24:e4:94:ca:1c:1e:d3:d8:3d:84:ae:c5:a7:ae:1c:f7:45:
09:26:86:a0:cc:eb:c8:2f:e6:28:15:f8:28:e5:0c:00:1b:a3:
5c:db:aa:90:06:e2:25:a0:16:fc:4a:08:a0:8d:24:16:b2:40:
52:b4:e2:cb:9e:e3:47:95:3a:0b:40:96:f8:8c:15:65:5d:53:
c8:76:88:f0:c5:18:95:68:15:9c:eb:d4:2b:7b:9d:b4:cf:d0:
11:a7:60:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:14 2024 by rpki-client on console-ams.rpki-client.org