Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/J8Y6M-rTzjkwTi4CCYVUDmsB7OU.roa
File: J8Y6M-rTzjkwTi4CCYVUDmsB7OU.roa (raw, json)
Hash identifier: NQC+auFCcfPaFPZ8Z2EqagYoFF60oKXcJnU+WF0m3Qc=
Subject key identifier: 27:C6:3A:33:EA:D3:CE:39:30:4E:2E:02:09:85:54:0E:6B:01:EC:E5
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 018ECBC0B1650C04C4A6912A695E695A4F1E
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/J8Y6M-rTzjkwTi4CCYVUDmsB7OU.roa
Signing time: Thu 11 Apr 2024 06:03:06 +0000
ROA not before: Thu 11 Apr 2024 06:03:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15723
IP address blocks: 5.178.10.0/24 maxlen: 24
5.178.12.0/24 maxlen: 24
5.178.13.0/24 maxlen: 24
5.178.15.0/24 maxlen: 24
46.23.100.0/22 maxlen: 22
62.217.129.0/24 maxlen: 24
62.217.131.0/24 maxlen: 24
62.217.134.0/24 maxlen: 24
62.217.138.0/24 maxlen: 24
62.217.141.0/24 maxlen: 24
62.217.142.0/24 maxlen: 24
62.217.146.0/24 maxlen: 24
62.217.147.0/24 maxlen: 24
62.217.148.0/24 maxlen: 24
62.217.149.0/24 maxlen: 24
62.217.151.0/24 maxlen: 24
62.217.156.0/24 maxlen: 24
62.217.157.0/24 maxlen: 24
62.217.158.0/24 maxlen: 24
62.217.159.0/24 maxlen: 24
188.64.8.0/24 maxlen: 24
188.64.9.0/24 maxlen: 24
188.64.10.0/24 maxlen: 24
188.64.11.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 03 May 2024 10:14:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:cb:c0:b1:65:0c:04:c4:a6:91:2a:69:5e:69:5a:4f:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Apr 11 06:03:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=27c63a33ead3ce39304e2e020985540e6b01ece5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:f7:fd:b4:c9:a0:ed:dd:f9:4f:6b:d9:e0:28:
a6:fa:a7:26:7f:b1:08:70:fa:e5:39:e1:e5:b0:24:
89:90:52:a7:dc:fa:1e:01:23:df:5f:1c:c4:96:e9:
49:d4:25:ad:17:e9:96:fa:02:69:e5:fe:ac:7b:f6:
92:f5:5c:fd:0a:df:1e:eb:8c:bc:f9:0d:e8:fe:19:
40:38:1e:da:86:fa:9b:72:6d:18:ad:4a:70:8d:07:
05:47:7e:83:b5:ce:e4:30:ab:c3:65:38:a8:56:41:
1d:c4:70:b9:79:80:e6:1e:0c:d1:71:b8:45:be:29:
e3:7a:f4:31:91:90:ec:d4:b1:18:76:a6:b3:33:d1:
3a:6a:d0:45:c2:07:b4:71:fb:27:22:34:39:5c:71:
7d:55:06:54:b3:8e:6d:6e:4e:05:30:d9:64:e4:30:
b7:ab:21:3a:0d:86:a3:de:87:6c:af:15:dc:5a:33:
8e:87:8b:d3:7b:ce:b0:4a:cf:4e:33:75:18:b8:f3:
cd:41:3e:94:83:eb:fb:29:d3:cf:51:88:d4:8a:89:
9d:47:e7:08:dc:43:c2:d5:ce:21:64:3f:0a:28:9f:
0e:a0:d7:8d:ce:d7:8a:6e:54:e9:d4:ed:79:f1:7c:
f2:95:a9:ef:e6:1f:f1:cc:ee:d3:2f:18:02:46:02:
de:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:C6:3A:33:EA:D3:CE:39:30:4E:2E:02:09:85:54:0E:6B:01:EC:E5
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/J8Y6M-rTzjkwTi4CCYVUDmsB7OU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.10.0/24
5.178.12.0/23
5.178.15.0/24
46.23.100.0/22
62.217.129.0/24
62.217.131.0/24
62.217.134.0/24
62.217.138.0/24
62.217.141.0-62.217.142.255
62.217.146.0-62.217.149.255
62.217.151.0/24
62.217.156.0/22
188.64.8.0/22
Signature Algorithm: sha256WithRSAEncryption
91:17:4a:72:4b:95:41:23:89:e3:25:ef:ac:50:e6:f6:e2:64:
f7:99:96:57:d9:b6:f7:50:b0:49:3a:b5:ab:d6:c4:4e:a1:69:
70:ca:f2:8e:1b:9c:b9:c2:91:ca:9c:54:18:a0:9c:e8:09:44:
90:ec:76:1e:ed:dc:9d:d7:fb:6a:6c:a1:a1:4c:d4:06:97:a4:
4d:83:5d:24:a8:4c:f4:75:b2:b7:6b:18:92:59:72:09:99:61:
05:93:e2:42:05:4b:b2:be:86:3a:5f:70:51:35:63:d9:61:aa:
dd:71:68:bf:d9:97:ac:91:ab:fb:52:05:48:c1:fc:08:39:2e:
8c:0e:ae:ed:cb:3c:ed:96:76:47:d2:db:9d:f9:e9:e0:18:76:
f7:2d:48:d4:2f:95:d6:6c:2a:6d:c5:08:5f:81:fc:bb:b6:35:
10:ea:43:36:ec:34:77:61:7a:f4:f9:55:52:d6:ef:96:55:ed:
8a:c2:c6:ec:8d:29:87:71:3a:99:16:3e:84:f5:12:b4:19:05:
ce:50:cf:87:b3:f3:79:a7:06:ae:d2:05:31:3e:f6:de:ff:db:
65:3e:cd:b8:c6:0b:e3:03:58:22:6c:c7:77:5c:d6:9e:12:75:
8c:52:57:03:b3:67:f7:4e:e9:cc:f2:fc:a8:3d:92:03:48:47:
de:f4:12:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 14:10:57 2024 by rpki-client on console-fra.rpki-client.org