Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/ca734b-5a0b-4a03-8131-cfefeaee865e/1/TApvSIJ2K_VSa9lsZVDJcqWc7EI.roa
File: TApvSIJ2K_VSa9lsZVDJcqWc7EI.roa (raw, json)
Hash identifier: nl7N0VyLFDO1KhX9dQWRqPPfas2udWsEwJkiM7NhdiY=
Subject key identifier: 4C:0A:6F:48:82:76:2B:F5:52:6B:D9:6C:65:50:C9:72:A5:9C:EC:42
Certificate issuer: /CN=ec5ada0dc900a13c83b70ac3f587fb8c2e1df030
Certificate serial: 01905545D677AA65DA3E44509614DA9E34B3
Authority key identifier: EC:5A:DA:0D:C9:00:A1:3C:83:B7:0A:C3:F5:87:FB:8C:2E:1D:F0:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7FraDckAoTyDtwrD9Yf7jC4d8DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/ca734b-5a0b-4a03-8131-cfefeaee865e/1/TApvSIJ2K_VSa9lsZVDJcqWc7EI.roa
Signing time: Wed 26 Jun 2024 15:59:18 +0000
ROA not before: Wed 26 Jun 2024 15:59:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51580
IP address blocks: 31.193.16.0/20 maxlen: 24
46.17.152.0/21 maxlen: 24
80.66.208.0/20 maxlen: 24
89.105.76.0/22 maxlen: 24
109.238.16.0/20 maxlen: 24
141.105.152.0/21 maxlen: 24
145.14.160.0/19 maxlen: 24
178.218.148.0/22 maxlen: 24
178.250.64.0/21 maxlen: 24
185.5.180.0/22 maxlen: 24
185.55.88.0/22 maxlen: 24
185.121.148.0/22 maxlen: 24
185.139.28.0/22 maxlen: 24
185.180.180.0/23 maxlen: 24
194.110.56.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 11:48:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:55:45:d6:77:aa:65:da:3e:44:50:96:14:da:9e:34:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec5ada0dc900a13c83b70ac3f587fb8c2e1df030
Validity
Not Before: Jun 26 15:59:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4c0a6f4882762bf5526bd96c6550c972a59cec42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:ab:54:19:b3:54:ad:8f:7a:2b:41:4e:87:68:
de:d3:0b:81:24:23:e3:de:af:c6:cb:28:48:02:00:
12:a9:83:dc:9a:4f:5f:81:0c:65:66:4b:5c:5a:cc:
c9:b9:4f:91:8c:fc:f7:c4:55:fa:ac:ab:58:d8:36:
8e:ae:61:74:67:0d:35:12:0e:9e:f5:6a:56:94:eb:
8c:48:6a:f1:d4:79:29:2e:7d:d4:ab:80:1e:31:41:
51:40:65:96:e3:5a:f3:5b:39:85:be:8f:0b:eb:a7:
77:79:af:26:f2:0e:ad:b9:cd:5b:96:e6:03:af:63:
d4:81:2e:df:09:46:ca:d2:f3:3f:40:3e:ec:06:85:
45:ad:65:52:b6:a8:02:fa:2c:07:a5:49:5d:62:9f:
d1:92:f9:00:e4:95:c4:4f:19:54:96:66:c9:ec:a4:
f2:be:24:4a:0f:08:b5:42:50:00:64:96:3f:51:86:
36:65:eb:92:a6:56:2d:73:16:d9:7f:0a:76:f7:c6:
76:42:5d:c8:17:bc:88:50:4c:65:67:b2:0e:73:63:
cc:0c:63:aa:6e:63:65:53:24:69:1a:d5:f8:cc:2c:
db:5d:88:f7:44:f3:3a:e3:80:51:1b:00:0e:f2:4d:
36:84:2a:95:1f:4b:b3:69:81:6d:94:37:05:64:b0:
5a:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:0A:6F:48:82:76:2B:F5:52:6B:D9:6C:65:50:C9:72:A5:9C:EC:42
X509v3 Authority Key Identifier:
keyid:EC:5A:DA:0D:C9:00:A1:3C:83:B7:0A:C3:F5:87:FB:8C:2E:1D:F0:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7FraDckAoTyDtwrD9Yf7jC4d8DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/ca734b-5a0b-4a03-8131-cfefeaee865e/1/TApvSIJ2K_VSa9lsZVDJcqWc7EI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/ca734b-5a0b-4a03-8131-cfefeaee865e/1/7FraDckAoTyDtwrD9Yf7jC4d8DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.193.16.0/20
46.17.152.0/21
80.66.208.0/20
89.105.76.0/22
109.238.16.0/20
141.105.152.0/21
145.14.160.0/19
178.218.148.0/22
178.250.64.0/21
185.5.180.0/22
185.55.88.0/22
185.121.148.0/22
185.139.28.0/22
185.180.180.0/23
194.110.56.0/22
Signature Algorithm: sha256WithRSAEncryption
4e:5a:17:05:37:98:a7:ed:4a:a3:f0:40:c3:b4:a4:43:ad:a4:
9a:ae:53:03:72:1b:8a:b6:33:06:bc:61:d9:6c:5c:39:aa:06:
87:43:4a:cb:cc:9f:3b:88:c3:a1:1a:d8:c1:7f:ab:12:b8:23:
ad:dc:b6:0b:5d:c5:60:11:f7:a2:70:67:f2:31:f8:ff:81:2d:
2f:40:74:7d:fa:dd:28:74:97:7d:9f:23:fc:82:5c:c3:3b:fa:
6a:cd:28:90:87:75:8b:a8:1d:b8:44:1d:5d:29:12:01:75:4d:
bd:1d:b4:e5:52:9a:3c:a3:f5:41:b2:55:9b:ab:1d:c2:5d:12:
54:b4:4d:d5:e2:35:8c:cc:0e:c6:9b:95:73:2e:99:f4:ef:dd:
86:ba:54:b3:ca:a6:ed:5f:56:ce:51:74:a9:c8:b1:17:00:ca:
c4:ca:8a:b6:86:41:14:3f:48:d8:aa:5e:46:a1:d8:a8:5c:d7:
6f:e6:7a:cd:ff:8c:b7:ee:a1:b2:10:62:61:7b:fd:00:46:25:
8d:56:53:b1:c4:a6:30:ab:75:ab:d4:18:c4:79:36:e2:59:55:
cf:b7:3c:5b:8d:68:e1:96:e5:6e:be:2c:08:b6:ef:0b:20:7a:
ec:82:4b:b2:d1:8e:20:45:be:e0:b1:67:9d:38:59:fa:86:a8:
04:8f:3a:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:22:40 2025 by rpki-client