Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/27lxERulezb8h16qwNEnAuDs8J0.roa
File: 27lxERulezb8h16qwNEnAuDs8J0.roa (raw, json)
Hash identifier: el3ToiWAGss6uWxr5sVfTzIamP0bwMehKKEkbPKzWpE=
Subject key identifier: DB:B9:71:11:1B:A5:7B:36:FC:87:5E:AA:C0:D1:27:02:E0:EC:F0:9D
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 0186C48FF2F5E5081BB7AAD6E3466D2BF977
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/27lxERulezb8h16qwNEnAuDs8J0.roa
Signing time: Thu 09 Mar 2023 04:10:13 +0000
ROA not before: Thu 09 Mar 2023 04:10:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204548
IP address blocks: 81.28.6.0/24 maxlen: 24
83.229.84.0/24 maxlen: 24
83.229.85.0/24 maxlen: 24
83.229.86.0/24 maxlen: 24
83.229.87.0/24 maxlen: 24
194.36.88.0/24 maxlen: 24
63.250.59.0/24 maxlen: 24
63.250.60.0/24 maxlen: 24
195.238.122.0/24 maxlen: 24
45.83.41.0/24 maxlen: 24
185.237.97.0/24 maxlen: 24
185.237.96.0/24 maxlen: 24
185.53.210.0/24 maxlen: 24
185.237.14.0/24 maxlen: 24
185.237.15.0/24 maxlen: 24
91.202.170.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 14 Jun 2023 07:07:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c4:8f:f2:f5:e5:08:1b:b7:aa:d6:e3:46:6d:2b:f9:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Mar 9 04:10:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dbb971111ba57b36fc875eaac0d12702e0ecf09d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:3b:a8:78:b5:92:47:4f:ae:53:f2:42:a4:61:
a4:62:2c:0c:c7:ee:95:a5:f9:77:0f:cf:1b:6d:4d:
05:0f:bf:40:9f:4e:61:ab:7f:56:da:5c:4a:97:51:
7f:44:69:6a:6d:ee:b7:52:f5:3a:df:a4:29:d6:aa:
f5:9e:d9:38:0b:52:8e:f6:c2:b4:66:ab:6b:24:c5:
c5:1e:2b:90:13:51:bb:d2:53:bb:f0:7c:d0:0a:16:
fc:88:5f:67:38:86:89:93:3d:19:d7:3c:c7:b5:89:
93:bd:3e:72:b9:81:bd:02:49:1b:72:6d:75:be:35:
de:70:7c:69:f9:1c:04:18:ee:6b:b9:5e:b4:96:a8:
88:7b:14:ae:e0:fd:62:f0:8a:41:e4:26:69:f8:42:
f9:89:17:6c:a4:d2:9a:79:78:87:cb:df:8a:8e:fa:
12:75:49:e1:72:8e:00:dd:65:86:2e:54:0c:79:f3:
e6:16:e3:b4:b7:fb:33:53:ba:f5:4d:80:7c:cf:2f:
38:89:58:59:76:57:90:ec:0e:ce:01:ef:21:00:0e:
75:18:e3:34:e7:f6:b3:79:85:b3:db:4a:3a:de:b9:
35:ab:7d:5b:b7:c3:f7:56:37:0f:e5:04:a9:d0:65:
1b:11:88:0e:78:94:3a:63:b2:a0:48:d3:34:8a:cb:
95:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:B9:71:11:1B:A5:7B:36:FC:87:5E:AA:C0:D1:27:02:E0:EC:F0:9D
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/27lxERulezb8h16qwNEnAuDs8J0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.41.0/24
63.250.59.0-63.250.60.255
81.28.6.0/24
83.229.84.0/22
91.202.170.0/24
185.53.210.0/24
185.237.14.0/23
185.237.96.0/23
194.36.88.0/24
195.238.122.0/24
Signature Algorithm: sha256WithRSAEncryption
36:b6:e7:c4:f9:06:38:f1:ff:4b:c9:7a:5a:11:d9:d1:db:bf:
9b:c9:e1:d1:36:99:b0:c4:38:68:01:28:ae:e6:34:0e:d9:d7:
a7:10:1d:9d:d8:0a:a6:f4:ea:ba:3e:d5:20:49:4b:7c:f2:9e:
de:6c:07:cd:9f:3d:f4:a2:a1:ee:65:18:16:0f:4f:f3:ce:f6:
1d:73:26:52:a0:06:51:a9:31:01:4b:87:e0:1d:99:23:93:95:
25:56:01:11:4a:91:2e:64:43:e7:35:36:b0:2d:1d:bf:e2:b3:
13:2b:69:fc:9c:10:59:0b:ed:ba:4a:55:61:db:32:3c:69:09:
60:3b:c1:e9:c2:b4:3f:4e:19:e6:31:6a:2d:cc:53:5f:dd:5f:
78:d5:5c:27:c1:e1:8d:5f:3b:ca:89:ab:39:c2:be:fb:a7:da:
0c:47:b0:a6:a8:e2:76:4b:ff:60:aa:1d:38:3b:2a:ae:cc:50:
ca:79:89:b0:c1:39:5a:7e:4a:c5:c4:b1:15:ef:08:11:1e:e7:
f8:50:a5:14:49:28:71:e2:51:cd:d0:5f:41:6d:55:8d:fd:46:
cc:e0:ea:56:08:cf:dd:b1:30:3f:b6:4b:c9:79:0a:74:fd:d3:
d0:d1:c9:1d:99:2b:c5:5b:98:cb:1e:fb:f2:b3:91:9b:d3:3f:
36:ff:91:79
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:35 2024 by rpki-client on console-ams.rpki-client.org