Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/z9jAB1RbxoKNWwmVjYmd5jy63xw.roa
File: z9jAB1RbxoKNWwmVjYmd5jy63xw.roa (raw, json)
Hash identifier: MyZaTyb0SPmGE4CT3WwHJZQ7pYcjSs6CcGS82/7ks6Y=
Subject key identifier: CF:D8:C0:07:54:5B:C6:82:8D:5B:09:95:8D:89:9D:E6:3C:BA:DF:1C
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 0188B402355EC0557D8E3B43E689D8B6F339
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/z9jAB1RbxoKNWwmVjYmd5jy63xw.roa
Signing time: Tue 13 Jun 2023 09:07:03 +0000
ROA not before: Tue 13 Jun 2023 09:07:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41436
IP address blocks: 83.229.83.0/24 maxlen: 24
83.229.82.0/24 maxlen: 24
103.13.210.0/24 maxlen: 24
63.250.56.0/24 maxlen: 24
63.250.57.0/24 maxlen: 24
185.220.204.0/24 maxlen: 24
185.220.205.0/24 maxlen: 24
195.238.121.0/24 maxlen: 24
45.91.168.0/24 maxlen: 24
45.91.169.0/24 maxlen: 24
194.146.38.0/24 maxlen: 24
194.146.39.0/24 maxlen: 24
5.180.180.0/24 maxlen: 24
103.45.247.0/24 maxlen: 24
5.180.182.0/24 maxlen: 24
5.180.183.0/24 maxlen: 24
5.180.181.0/24 maxlen: 24
2a06:c5c0:200::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b4:02:35:5e:c0:55:7d:8e:3b:43:e6:89:d8:b6:f3:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Jun 13 09:07:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cfd8c007545bc6828d5b09958d899de63cbadf1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:bd:2c:5d:b0:79:56:51:16:17:9a:81:4d:9b:
83:55:21:f7:90:d1:4e:32:96:e6:5a:29:f6:f0:d4:
12:99:7a:df:3f:0e:4f:b7:db:96:bb:53:bd:b6:a1:
f5:1f:3e:35:d1:28:cd:77:9f:39:1a:b1:3a:29:83:
46:4c:c5:7b:14:d6:f0:c4:44:ac:cd:7d:78:be:dc:
87:f6:2e:40:05:49:aa:6f:d0:a6:55:d7:80:91:cb:
4f:9b:54:99:52:c7:1b:51:9e:68:32:7e:61:5f:47:
e1:8d:74:ab:47:8a:a3:ba:20:70:7a:fa:86:a3:84:
3f:67:d8:30:f4:ce:81:ac:b8:4f:3e:e0:5c:ec:3f:
e8:8a:44:09:ed:37:27:cf:0e:87:08:d9:cb:c9:72:
72:79:3b:7f:d0:e0:bc:4f:dd:69:2c:41:d8:63:9e:
1d:c7:03:83:3d:88:dc:50:37:4a:79:cb:f4:61:65:
3d:b0:9b:0c:82:ff:61:a2:29:f1:63:43:cd:e3:64:
a2:24:f5:28:d1:ab:82:38:4f:d5:2a:ef:60:58:ac:
c1:c5:f6:55:4b:80:81:aa:72:f1:2c:4a:77:fd:04:
da:4c:c8:d6:84:14:9d:8c:a6:77:3d:45:ed:6e:43:
be:79:17:27:df:fb:e0:a5:cb:fd:54:81:da:20:bd:
31:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:D8:C0:07:54:5B:C6:82:8D:5B:09:95:8D:89:9D:E6:3C:BA:DF:1C
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/z9jAB1RbxoKNWwmVjYmd5jy63xw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.180.0/22
45.91.168.0/23
63.250.56.0/23
83.229.82.0/23
103.13.210.0/24
103.45.247.0/24
185.220.204.0/23
194.146.38.0/23
195.238.121.0/24
IPv6:
2a06:c5c0:200::/48
Signature Algorithm: sha256WithRSAEncryption
43:da:2b:61:7c:d6:68:76:c7:0f:6c:a8:3c:ee:86:b1:f1:2e:
ac:98:4e:5d:eb:d1:cb:97:77:44:ae:67:63:1a:04:70:9e:4f:
10:36:70:32:32:9e:92:30:51:65:9b:45:4f:27:18:e6:b8:9e:
04:e9:9e:ac:e2:68:ae:4d:5b:76:62:5c:e0:61:25:4f:47:7a:
76:5b:4a:fe:06:99:ee:ae:d7:b5:41:b7:d0:eb:3a:3d:50:06:
bf:8b:cd:97:07:85:4e:ec:69:6f:02:3b:13:28:6c:a7:e1:9a:
e8:30:c9:60:b3:ba:d1:c5:82:cc:6d:03:69:e7:d9:b6:a4:ad:
83:f5:54:3e:38:a8:4f:bd:fb:11:8a:46:3a:c7:12:bf:7c:34:
6d:eb:e7:75:48:fd:19:ed:30:7f:58:2a:2f:22:22:37:50:90:
67:ad:5a:27:59:f6:44:60:45:74:64:36:63:d5:23:9c:5b:33:
1f:76:4f:d0:e9:a4:29:ec:4b:2e:c7:10:d5:57:32:03:12:c4:
e5:9b:93:57:d9:5b:4e:07:37:0c:1e:a8:8c:35:eb:25:c3:e5:
ee:75:74:e1:3e:18:07:84:52:71:e9:28:04:9d:f4:3d:da:e9:
f8:4c:b4:c5:60:dc:b5:7a:1b:b8:14:16:a7:06:92:9a:c3:88:
93:58:96:78
-----BEGIN CERTIFICATE-----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Generated at Sun Oct 1 11:57:31 2023 by rpki-client on console-fra.rpki-client.org