Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/CJejNBm2YTd8JKsPbgqe_lXVhEs.roa
File: CJejNBm2YTd8JKsPbgqe_lXVhEs.roa (raw, json)
Hash identifier: hq73+XrYvGMjb1avPK0Yo54ZuPxP2pfk91QCDPvPZkg=
Subject key identifier: 08:97:A3:34:19:B6:61:37:7C:24:AB:0F:6E:0A:9E:FE:55:D5:84:4B
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 018CC9BB08D066B24948EA7E5AC33C2B0834
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/CJejNBm2YTd8JKsPbgqe_lXVhEs.roa
Signing time: Tue 02 Jan 2024 10:32:06 +0000
ROA not before: Tue 02 Jan 2024 10:32:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204548
IP address blocks: 81.28.6.0/24 maxlen: 24
83.229.84.0/24 maxlen: 24
83.229.85.0/24 maxlen: 24
83.229.86.0/24 maxlen: 24
83.229.87.0/24 maxlen: 24
103.13.211.0/24 maxlen: 24
185.139.230.0/24 maxlen: 24
194.36.88.0/24 maxlen: 24
63.250.59.0/24 maxlen: 24
63.250.60.0/24 maxlen: 24
195.238.122.0/24 maxlen: 24
45.83.41.0/24 maxlen: 24
185.237.97.0/24 maxlen: 24
185.237.96.0/24 maxlen: 24
185.53.210.0/24 maxlen: 24
185.237.14.0/24 maxlen: 24
185.237.15.0/24 maxlen: 24
185.47.174.0/24 maxlen: 24
91.202.170.0/24 maxlen: 24
2a06:c5c0:1100::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 10 Apr 2024 08:36:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bb:08:d0:66:b2:49:48:ea:7e:5a:c3:3c:2b:08:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Jan 2 10:32:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0897a33419b661377c24ab0f6e0a9efe55d5844b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:a9:ed:d2:36:d9:c0:9f:60:ce:40:d7:f6:e6:
46:bb:6b:d0:a5:5f:e1:67:6f:e3:a3:3a:a2:68:af:
0a:5d:3d:5b:56:9e:fc:a7:0f:84:ae:ce:a2:a3:bd:
4c:c5:e6:df:2a:77:d8:f8:da:12:01:1a:5b:e7:5a:
3e:2d:3d:da:ab:69:a5:07:e9:e2:ab:ae:0e:27:24:
60:df:e1:9b:11:9b:ab:dc:81:3b:1d:52:7d:1c:ba:
86:97:19:8f:9f:81:0b:9e:cd:be:7b:70:b5:65:b0:
07:1f:f5:b9:87:fd:a5:66:44:27:db:6f:f6:cd:61:
bd:06:43:17:93:53:99:c6:91:7a:3e:24:4a:97:2d:
fc:b9:9d:71:04:fa:a5:d1:72:49:52:e4:7c:ec:83:
1d:fa:b6:9f:f0:11:02:a9:6f:c4:1b:86:e4:36:26:
c3:7b:ee:62:93:c5:73:3e:c7:33:8f:35:3e:9a:d3:
f1:09:1e:d4:f2:b0:37:cc:8e:78:b7:fe:cb:8b:3f:
fe:52:9b:4e:a1:8c:ac:80:e9:a4:de:41:31:b9:80:
a5:f6:a2:e6:a2:d3:4a:b1:ec:77:5c:2b:c8:7a:5f:
5c:b4:f0:ff:46:bd:6e:be:23:55:7c:20:af:92:8b:
66:ef:89:a2:b7:de:c5:24:30:23:a3:51:4a:a2:9b:
38:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:97:A3:34:19:B6:61:37:7C:24:AB:0F:6E:0A:9E:FE:55:D5:84:4B
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/CJejNBm2YTd8JKsPbgqe_lXVhEs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.41.0/24
63.250.59.0-63.250.60.255
81.28.6.0/24
83.229.84.0/22
91.202.170.0/24
103.13.211.0/24
185.47.174.0/24
185.53.210.0/24
185.139.230.0/24
185.237.14.0/23
185.237.96.0/23
194.36.88.0/24
195.238.122.0/24
IPv6:
2a06:c5c0:1100::/48
Signature Algorithm: sha256WithRSAEncryption
a9:f1:4f:66:b9:39:3c:4d:d4:b3:1c:26:07:7e:0b:22:e1:63:
ea:aa:d9:cc:49:dd:51:2c:2c:0d:71:74:47:18:32:b5:1d:6e:
8f:5d:73:92:ca:e1:40:8f:90:56:67:75:eb:d9:f7:c8:dd:e7:
73:7a:cb:28:28:d6:2a:3e:9b:a4:43:50:b4:eb:51:55:f2:c7:
7f:5a:88:da:f8:ce:98:f8:02:32:9c:91:17:11:8d:97:b2:20:
49:6f:9b:1f:06:18:92:40:e6:a7:6a:76:13:22:23:58:05:50:
a6:aa:52:38:a7:cb:48:ac:49:bb:eb:28:94:0e:b7:59:e6:fc:
48:1d:90:27:b7:ca:92:f3:01:a9:0d:c5:02:3d:60:1c:12:ad:
9c:2d:88:a4:95:a9:8e:e0:6a:10:6e:69:79:c8:77:fa:d2:33:
51:12:c5:a2:a1:cb:41:04:58:65:1b:1d:06:79:16:6d:7d:f8:
e0:a3:8a:49:61:e5:90:05:f1:61:05:49:0f:5c:d5:e6:0a:97:
8a:60:53:82:e0:9c:34:f0:9f:a6:b8:a8:e4:68:42:ea:0e:8f:
2b:22:1c:e9:b8:00:37:56:46:08:96:b6:75:39:d5:fb:3d:ca:
7a:10:4e:67:dd:49:c3:02:c2:4e:d5:9e:35:2c:0f:ab:ec:dd:
4e:7c:2a:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 10 11:16:11 2024 by rpki-client on console-fra.rpki-client.org