Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/SXVzjM2XOXGQyeewQrBkmmEskyI.roa
File: SXVzjM2XOXGQyeewQrBkmmEskyI.roa (raw, json)
Hash identifier: jMZc7S8pLFR2f6Kz4QPztx8HTeGSIVawXblaN8IvUZo=
Subject key identifier: 49:75:73:8C:CD:97:39:71:90:C9:E7:B0:42:B0:64:9A:61:2C:93:22
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 018EC7EC8D74A8FB6A594216395787B83A61
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/SXVzjM2XOXGQyeewQrBkmmEskyI.roa
Signing time: Wed 10 Apr 2024 12:12:32 +0000
ROA not before: Wed 10 Apr 2024 12:12:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210329
IP address blocks: 45.91.170.0/24 maxlen: 24
63.250.58.0/24 maxlen: 24
81.28.4.0/24 maxlen: 24
81.28.5.0/24 maxlen: 24
83.229.68.0/24 maxlen: 24
83.229.69.0/24 maxlen: 24
83.229.75.0/24 maxlen: 24
91.202.170.0/24 maxlen: 24
91.223.236.0/24 maxlen: 24
103.13.208.0/24 maxlen: 24
103.13.209.0/24 maxlen: 24
103.241.64.0/24 maxlen: 24
103.241.65.0/24 maxlen: 24
185.53.211.0/24 maxlen: 24
185.127.16.0/24 maxlen: 24
185.127.17.0/24 maxlen: 24
185.127.18.0/24 maxlen: 24
185.127.19.0/24 maxlen: 24
185.181.9.0/24 maxlen: 24
185.181.11.0/24 maxlen: 24
185.227.109.0/24 maxlen: 24
185.237.12.0/24 maxlen: 24
185.237.13.0/24 maxlen: 24
185.237.98.0/24 maxlen: 24
185.237.99.0/24 maxlen: 24
185.247.116.0/24 maxlen: 24
185.247.119.0/24 maxlen: 24
194.37.82.0/24 maxlen: 24
194.146.24.0/24 maxlen: 24
194.146.25.0/24 maxlen: 24
195.238.123.0/24 maxlen: 24
212.86.104.0/24 maxlen: 24
212.86.105.0/24 maxlen: 24
2a06:c5c0:600::/48 maxlen: 48
2a07:3b80:1::/48 maxlen: 48
2a07:3b80:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 14 Apr 2024 06:54:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:c7:ec:8d:74:a8:fb:6a:59:42:16:39:57:87:b8:3a:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Apr 10 12:12:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4975738ccd97397190c9e7b042b0649a612c9322
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:5a:46:99:ea:42:18:61:97:50:5c:c9:f2:8e:
c1:89:a2:3c:83:46:38:46:a1:58:d7:e7:71:2a:5a:
cc:03:04:15:84:25:93:69:06:ca:ba:c4:f9:93:82:
44:9b:8a:96:54:f2:17:d6:b5:60:eb:5b:f7:c5:71:
4e:f7:6b:27:93:9b:49:c3:40:04:52:74:99:db:33:
8f:01:ac:87:ab:56:70:9b:d4:f7:ab:ac:88:02:dc:
33:35:11:89:d9:2b:fa:64:e5:bf:ec:7b:0c:26:0e:
10:1b:7e:76:2a:55:e4:a6:88:2f:bc:99:aa:03:50:
62:61:27:cb:83:a0:f6:80:0e:4d:ef:40:9f:a0:d2:
84:1b:be:e7:cd:b8:1c:40:c2:a6:de:56:56:61:a0:
f5:8c:e6:ea:6d:56:a2:5f:83:7e:49:46:18:ea:83:
e6:e2:97:36:cc:5a:1a:c8:be:b3:bc:68:36:04:06:
46:4b:14:0e:11:5f:d7:0c:9d:98:9a:07:30:31:4a:
1d:c3:f5:27:78:23:b7:c9:85:d2:d6:c9:35:51:09:
1b:b6:d6:72:4a:52:8a:25:0c:60:94:d8:a0:4f:5d:
8d:2f:04:8e:dc:77:55:3c:2d:80:52:11:44:ef:28:
50:1a:d9:de:63:fa:0a:a2:cd:60:32:36:cd:16:16:
c1:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:75:73:8C:CD:97:39:71:90:C9:E7:B0:42:B0:64:9A:61:2C:93:22
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/SXVzjM2XOXGQyeewQrBkmmEskyI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.170.0/24
63.250.58.0/24
81.28.4.0/23
83.229.68.0/23
83.229.75.0/24
91.202.170.0/24
91.223.236.0/24
103.13.208.0/23
103.241.64.0/23
185.53.211.0/24
185.127.16.0/22
185.181.9.0/24
185.181.11.0/24
185.227.109.0/24
185.237.12.0/23
185.237.98.0/23
185.247.116.0/24
185.247.119.0/24
194.37.82.0/24
194.146.24.0/23
195.238.123.0/24
212.86.104.0/23
IPv6:
2a06:c5c0:600::/48
2a07:3b80:1::-2a07:3b80:2:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
0d:cf:73:d9:0a:62:87:be:63:1c:f6:cc:d3:52:99:3f:0d:ea:
c5:d1:de:b8:78:f3:ba:68:0c:5d:78:16:05:f8:a2:d2:c3:a8:
60:4d:4b:b9:a1:25:c9:7f:bb:d5:96:0d:9b:6e:9c:b4:8b:b2:
7f:96:d3:0e:1b:ed:b8:32:85:35:1f:05:2d:74:95:f8:be:a6:
f8:5e:6d:eb:65:6c:8b:ff:9c:8c:a7:e3:36:b5:a5:08:5e:29:
26:22:33:e4:17:65:25:c4:4d:26:48:2d:ed:0d:a7:92:2a:56:
8b:fb:f1:79:97:0d:52:34:78:02:41:01:ca:e5:ce:72:8e:b7:
65:96:5a:cb:60:7d:a8:c5:4e:4a:c9:bd:bc:e8:da:d1:5f:3f:
0f:d1:3f:c3:6a:31:17:55:13:42:9f:f7:e2:5c:24:4c:b8:c8:
ff:6e:17:79:47:4c:b6:76:91:a5:3c:c1:3e:94:3a:e0:cb:05:
ed:f9:52:c9:ff:b7:9e:36:1a:2f:8a:ea:cf:fc:c1:17:25:f6:
a1:5c:fd:95:bb:66:28:24:4f:57:0e:e2:93:15:ca:d3:62:36:
a7:17:4a:2a:3b:47:73:af:93:cc:46:94:85:27:66:fb:46:92:
db:34:be:0c:9b:64:18:41:48:6e:bc:a5:7c:16:9c:a2:7c:00:
0a:20:7f:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 14 07:21:07 2024 by rpki-client on console-fra.rpki-client.org