Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/s3bKS48H3-YouobaRdtbzDUIhws.roa
File: s3bKS48H3-YouobaRdtbzDUIhws.roa (raw, json)
Hash identifier: C1kC+KUoVDqpsYNk3/eEqeuYwkjKmynV/Tj7ww17uqI=
Subject key identifier: B3:76:CA:4B:8F:07:DF:E6:28:BA:86:DA:45:DB:5B:CC:35:08:87:0B
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 018D0DA6807159A40F5F319EF089ABD955FF
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/s3bKS48H3-YouobaRdtbzDUIhws.roa
Signing time: Mon 15 Jan 2024 15:03:52 +0000
ROA not before: Mon 15 Jan 2024 15:03:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 36007
IP address blocks: 193.168.172.0/24 maxlen: 24
103.13.211.0/24 maxlen: 24
185.139.228.0/24 maxlen: 24
45.91.171.0/24 maxlen: 24
185.53.209.0/24 maxlen: 24
103.241.66.0/24 maxlen: 24
103.241.67.0/24 maxlen: 24
103.45.245.0/24 maxlen: 24
103.45.246.0/24 maxlen: 24
185.47.172.0/24 maxlen: 24
91.223.169.0/24 maxlen: 24
91.202.170.0/24 maxlen: 24
2a06:c5c0:1500::/48 maxlen: 48
2a06:c5c0:1600::/48 maxlen: 48
2a06:c5c0:1700::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 26 Mar 2024 07:40:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:0d:a6:80:71:59:a4:0f:5f:31:9e:f0:89:ab:d9:55:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Jan 15 15:03:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b376ca4b8f07dfe628ba86da45db5bcc3508870b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:b1:26:86:8e:d6:03:2e:b4:43:f0:cc:d9:0b:
e1:86:96:84:0e:3f:57:9b:20:db:f4:47:90:1c:82:
49:0b:9f:7f:ed:e6:af:b5:41:39:25:4a:0a:08:ff:
7f:f7:c6:84:95:48:6f:5e:8e:90:72:d0:71:f7:df:
8a:ed:93:fd:36:71:19:fd:ad:c1:29:fa:e3:10:74:
fa:d4:8c:01:ab:0c:ce:9d:b1:c6:6d:b9:71:a6:f7:
f6:8b:16:2f:f5:67:b6:f6:9b:d0:89:84:32:9c:d8:
a9:ea:6f:5c:26:9a:b3:bb:3c:37:5f:65:56:18:26:
7f:00:cd:06:e4:c6:c4:13:30:a6:27:cc:57:e9:1f:
6b:f5:a6:3b:5a:d7:54:02:84:62:0a:20:85:8a:7a:
92:0c:b6:81:78:cf:7e:ce:81:b3:4d:b0:65:b0:4f:
e6:18:02:1c:89:bb:f6:d9:e1:3a:ed:95:3d:80:b9:
93:fc:22:6c:16:1e:ee:d4:61:3f:de:6c:f0:73:c4:
3f:bb:48:bc:3f:2a:cf:05:78:22:7d:19:4a:f6:b9:
b4:cf:9d:1f:9b:87:af:18:5c:85:a7:0c:4a:c7:2a:
98:64:78:85:c8:3e:76:ae:ca:d1:07:83:61:9e:cf:
a1:98:2d:28:7b:04:28:44:9c:56:56:4e:79:68:3d:
bf:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:76:CA:4B:8F:07:DF:E6:28:BA:86:DA:45:DB:5B:CC:35:08:87:0B
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/s3bKS48H3-YouobaRdtbzDUIhws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.171.0/24
91.202.170.0/24
91.223.169.0/24
103.13.211.0/24
103.45.245.0-103.45.246.255
103.241.66.0/23
185.47.172.0/24
185.53.209.0/24
185.139.228.0/24
193.168.172.0/24
IPv6:
2a06:c5c0:1500::/48
2a06:c5c0:1600::/48
2a06:c5c0:1700::/48
Signature Algorithm: sha256WithRSAEncryption
9a:7f:f5:d3:56:66:4b:4a:85:f0:05:70:8f:70:b8:db:ed:5a:
fa:66:ef:05:79:7a:6c:9c:9d:79:19:64:66:36:c8:72:29:77:
e4:ff:7b:8a:54:11:14:89:5e:6c:38:4a:7d:c7:74:df:f3:04:
9b:f2:21:0a:f3:8e:0c:4e:16:a6:d8:f1:a0:a0:a3:9c:56:6c:
cd:57:b2:cf:7d:56:df:f0:52:f8:3e:dc:18:38:05:e8:31:cc:
2c:21:87:eb:d9:f8:e2:0f:77:0a:2f:78:ef:46:3a:66:54:2f:
fc:41:23:e3:3f:4c:a0:56:dc:b1:49:e2:e5:41:22:57:2d:e6:
ed:e8:ba:cb:4c:19:97:12:8f:2d:ed:93:16:41:3f:e5:3e:f6:
3b:5a:e4:7c:d3:8c:ad:5d:a6:f5:89:48:ab:76:63:c8:ca:4a:
61:6b:ca:f4:37:cd:9a:97:12:e0:1d:16:34:1e:c8:ab:3f:24:
3d:11:a8:f8:e0:35:75:f5:09:93:07:67:7c:b5:30:19:e4:1a:
b9:9b:d2:ce:12:85:01:13:15:77:19:25:47:a7:70:fb:f3:ae:
61:d4:70:11:03:15:b4:44:4e:a3:bd:b0:29:2d:52:40:1c:22:
32:99:f2:1b:76:7d:6b:75:9d:ac:be:01:4c:18:52:66:d6:16:
22:13:e1:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:36 2024 by rpki-client on console-ams.rpki-client.org